is there a way to use pulumi to execute HCL code without converting it ?

no, this is not supported. Would love to hear your use case, but we'll likely not support any DSL

well, terraform is not exactly straight forward in terms of automation within pipelines and executing it programmatically. At the same time I am leaning towards switching to pulumi entirely however there is a tone of HCL code pre-created within the team so it's going to be quite difficult to convince people to switch. Thought that if there would be a way to run native HCL programmatically as it is possible with pulumi it would be a good starting point to convince the others to switch

tf2pulumi should help, and if you need help having the conversations internally, we can run workshops and do demos to show the value proposition of programming languages over DSLs, happy to connect over a call if that helps?

I see, right now I'm trying to write few examples of pulumi automation and how it can solve some of the problems we encounter daily in my org and then if the feedback is positive we could probably think of trying to do some convincing organization wide.

there's some automation api examples here: https://github.com/pulumi/automation-api-examples/ https://github.com/komalali/pulumi-automation-api-experiments

Awesome. Thanks. I'll read through and see if I am able to achieve what I have in mind which currently is. 1. Having only single .py file 2. Configure azure "backend" against single azure subscription 3. Import single resource 4. TBD All within single .py file. Do you think this is possible with azure_native plugin and automation API ?

by "backend" do you mean the state storage?

sorry, I meant configure the provider, not the backend. AKA, just configure it to be pointing at particular azure subscription to perform operations

oh yeah totally possible! https://github.com/pulumi/automation-api-examples/blob/main/python/inline_program/main.py#L72

ha! beautiful, and if I want to import and not create I'm assuming it would be to to with

stack.import_stack

?

you want to import an existing resource, you mean?

erm, yeah. I just want to import existing resource for a start

automation API is a higher level, so it's a different SDK, you'd need to define the state of your resource you want to import inside a Pulumi program, add the

import

resource option and then put that Pulumi program as an inline rogram like this: https://github.com/pulumi/automation-api-examples/blob/main/python/inline_program/main.py#L9

I see, I'll give it a try. thanks

you need to use

--refresh

I see, well that makes sense. Is there some sort of tutorial for folks coming form terraform with gems like this ?

not at the moment, but this is a good example of something we should have a documentation point

I also noticed some behaviours which I don't think is right. For example the securityRules parameter of networkSecurity group are detected as change when they are just swapped around in a list. Technically it is a change however it is not to the state on azure so it should be ignored. Also removal of the rule is detected as change rather than deletion which makes sense from API perspective but not from what people are used to from terraform. Where's the appropriate place for feedback like this ? Github issues or here?

Morning! GitHub issues on the provider is the best place for feedback, However in the situation you're talking about, we aren't looking for an exact match to terraforms experience. There will be some differences in behavior that is expected