Just checked policy-packs for the first time. Seems really promising 👍 1. Can you “acknowledge” a CrossGuard-policy,

enforcementLevel: "advisory"

, directly at the resource? To get this check out of the list of policy violations. Similar like

nolint

flags. 2. How can you check if a value is a secret value, i.e. encrypted in the stack? Just read that secrets are unencrypted in policy-pack checks.

Thanks for the questions, Dominik!

Can you “acknowledge” a CrossGuard-policy, enforcementLevel: “advisory”, directly at the resource? To get this check out of the list of policy violations. Similar like nolint flags.

We don’t currently have a way to do this, but it’s on our radar. I thought we had an existing issue tracking this, but couldn’t find it, so I went ahead and opened https://github.com/pulumi/pulumi-policy/issues/240.

How can you check if a value is a secret value

There isn’t currently a way to do this so I’ve opened https://github.com/pulumi/pulumi-policy/issues/241 to track the suggestion. Please feel free to upvote and add more details on these issues. Thanks!

@microscopic-pilot-97530 Thanks for the answers & issues. Just one note: We’re a Pulumi customer. Just mentioning this as you normally note this in the issues, I guess for prioritising stuff 🙂

Edited those issues to indicate they indeed came from a customer. Great suggestion on adding the repo topics, thanks! Done. 😄

Yeah 👍 Now the repos have enough marketing topics 😉