https://pulumi.com logo
Title
q

quaint-salesmen-18327

10/14/2022, 6:58 AM
Is there a way to constrain the organization(s) to which a stack may be deployed? We want to prevent leaking of company secrets into developers' accounts.
e

echoing-dinner-19531

10/14/2022, 7:37 AM
Not currently, could maybe be done by adding a way to set the org in Pulumi.yaml
Although this is only "prevent mistakes" protection, a developer could just remove the line and deploy into their own stack if they wanted to be malicious
q

quaint-salesmen-18327

10/14/2022, 8:02 AM
Thanks @echoing-dinner-19531. What would be your suggested approach to protect company secrets when a developer leaves the company?
e

echoing-dinner-19531

10/14/2022, 8:23 AM
Oh lordy that's a big topic and I am not an expert on that.
q

quaint-salesmen-18327

10/14/2022, 8:44 AM
🙈