you could also use the protect: true on those thin...
# general
you could also use the protect: true on those things once you're happy with them (
Yeah considered that too. But it's easy to just remove it (though that might not be a refactoring but more deliberate altering)
I'm not sure if you're aware (I wasn't), it's not the same as a terraform
, you have to use the CLI to remove it... making it quite useful when combined with users not have access to the CLI
i.e. once you've added it, it's there, you can't just remove the code and it will destroy it.
In Azure I've coupled that with a lock on the resource for extra protection.
This also works in CI scenarios?
Thanks for info 🙂
I've hit it in CI (which is where I noticed it), but I was using the Azure Blob backend, I'm not sure if that's a nuance of the Azure blob backend though. When you look at the CLI though, it does seem to suggest that it's the only way to remove the protect bit from the state