I want to do some eni cleanup when security groups are being destroyed

blue-carpenter-4997

07/17/2025, 6:03 PM

I want to do some eni cleanup when security groups are being destroyed

💡 1

little-cartoon-10569

07/17/2025, 9:38 PM

You can do this with a custom resource provider. Dynamic resource providers are the easiest to create. https://www.pulumi.com/docs/iac/concepts/resources/dynamic-providers/#deleteid-props

little-cartoon-10569

07/17/2025, 9:38 PM

However I'm not certain that it will be called during a destroy. It will be called when a resource needs to be deleted during an

up

blue-carpenter-4997

07/17/2025, 11:11 PM

I think the real fix here is to figure out why I’m getting orphaned ENIs

little-cartoon-10569

07/17/2025, 11:39 PM

Yes. I'm guessing you're not declaring them in code, that rarely happens. Are they associated with an EC2 instance, an LB, NAT, IG, or what?

echoing-dinner-19531

07/18/2025, 7:02 AM

Might also want to take a look at the new resource hooks: https://www.pulumi.com/blog/resource-hooks/ That lets you register a callback to run when resources are deleted

🙌 1

✅ 1

🎉 1

blue-carpenter-4997

07/18/2025, 5:29 PM

I’ve been waiting so long for this feature!

great-sunset-355

08/10/2025, 6:07 PM

This has made my day! 🎉 🎉 🎉 🎉

Open in Slack

Previous Next

Pulumi Community

No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.