No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

Hello, we are running into issues with an endpoint protected by a private CA cert.
Our Kubernetes system recently updated its certs and started using a private CA. We run Pulumi from a container from Jenkins. I have added the necessary certs to the certificate store in the container image. Curl works and trusts the certificate. Pulumi still complains: `tls: failed to verify certificate: x509: certificate signed by unknown authority`
Does Pulumi not use the certificate store in the container image?

Never mind, some more investigation and I solved it. It wasn't Pulumi itself that had the problem, it was something for Kubernetes.
After updating the kubeconfig (which seems to have its own copy of the cert chain?), it now works.