does anyone use cloud build to deploy cloud run? we add environment variables during build that aren’t knowable during pulumi up, e.g. the code version being deployed. this causes problems because when we run

pulumi up

, those environment variables are removed by pulumi because they’re not defined in our pulumi cloud run profile

So caveat that I haven't used Cloud Build with Pulumi just yet. However, are the variables that aren't knowable during pulumi up defined in code somewhere that you could reference the same code with your Pulumi program?

they’re things like the build tag, which aren’t knowable until the build is run, which is after code has been committed

ahh, got it. Looks like there's some default substitutions; they all should be available to your Pulumi program just as they would be for any of your code: https://cloud.google.com/build/docs/configuring-builds/substitute-variable-values. They'd then get set with this key: https://www.pulumi.com/registry/packages/gcp/api-docs/cloudbuild/trigger/#substitutions_python (I've got it set to Python for me, but you can flip to another language with the language switcher at the top of the page)

brilliant, this should work for our use case, thanks a ton @great-queen-39697!

Ah, I'm pretty sure that's an output you get from running the cloudbuild step (meaning it's returned as a Pulumi output). Try appending something like this (this is Python), assuming you assign the cloudbuild.trigger call to a variable `image`:

pulumi.export('id', image.id)

and see if it dumps the correct string to your Pulumi terminal output. If it doesn't, I'll hunt down the correct one