No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

Hello folks !

I need to verify TLS certs in my pods and for that I mount a large file downloaded from <https://support.globalsign.com/ca-certificates/root-certificates/globalsign-root-certificates> and added as ConfigMap to `/etc/ssl/certs/` .
When I want to automated with pulumi like so
```const cacertificates = new k8s.yaml.ConfigFile("ca-certificates", {
        file: "ca-certificates.yaml",
    }
);```
While ca-certificates.yaml is larg file about 271 KB containing `GlobalSign Root CA` .

It works only if I use `kubectl create` .

Reding about related issues like in here <https://github.com/argoproj/argo-cd/issues/820> . It seems like Pulumi is also using `kubectl apply` to manage resources which leads to failure in my case. `resource default/ca-certificates was not successfully created by the Kubernetes API server : ConfigMap "ca-certificates" is invalid: metadata.annotations: Too long: must have at most 262144 characters`.

Any hints/workaround this problem ?

Appreciated : )