No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

yes, it would. Are you using a launchTemplate or directly on an ec2 instance?

Using it in a call to new aws.ec2.Instance

yeah you don't want `mostRecent` in that case, launchTemplates would help here because it would mean the new ec2 instance would have the latest but it wouldn't replace the existing instances

Thanks, any way to correct it without importing the instance? If I just change the ami to the full name of the one used will Pulumi stop recommending the upgrade?

Yea, if you change your `debian-10-amd64-*` filter to `debian-10-amd64-YYYMMDD` or whatever the exact name is that will _pin_ it.

You could also add `{ ignoreChanges: ["ami"] }` to your instance to ignore any changes that might come through the AMI lookup - <https://www.pulumi.com/docs/intro/concepts/programming-model/#ignorechanges>.

And lastly, you could `{ protect: true }` to ensure that no changes (AMI or otherwise) would result in the instance being destroyed or replaced - <https://www.pulumi.com/docs/intro/concepts/programming-model/#protect>.