No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

Background:  we are experimenting with Pulumi on Azure with GoLang.
Noobie question: After we created a new `containerservice.ManagedCluster`, we would like to retrieve the generated default security group for the agent pools, and apply a more stringent set of traffic rules.     I tried to use `network.LookupNetworkSecurityGroup` to do so, but there doesn't seem to have a way to resolve a `pulumi.StringOutput` `managedCluster.nodeSecurityGroup`  promises back to a string within subsequent codes in the same custom module.  If this is not possible, what are the recommended mechanism to achieve what we wanted to do?  (create a resource then modify some of the azure generated / created properties within the same stack)
```network.LookupNetworkSecurityGroup(
    ctx, &amp;network.LookupNetworkSecurityGroupArgs{
      ResourceGroupName: &lt;- this parameter requires a concrete string type,
    },```

Is the expected solution either 1) construct the managed networksecurity group name since it is a well know pattern, or 2) do the tightening of the security group in a separate stack using stack export / import mechanism?

Generally: don't use resources created automatically by the provider. Just create your own always.