No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

hmmm... Maybe the trick is to provide a full kubeconfig file contents so that the user can't change them and then provide a way for an individual user to override how they authenticate (e.g. if they need a proxy) so they can replace just the `user` part of the config?

Seems ugly but should work...