No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

unsure of any checkov integration, however you can validate your resources using <https://www.pulumi.com/docs/guides/crossguard/core-concepts/#:~:text=Policies%20validation%20functions%20are%20executed,up%20into%20a%20final%20report>.

<https://github.com/bridgecrewio/checkov/issues/568>

I linked that issue in my original message :stuck_out_tongue:

and I would greatly prefer not to reimplement the entirety of checkov

haha sorry, long day :joy: yeah of course, that would be a pain. I’d maybe suggest bumping that post or contributing maybe :shrug:

I commented on the issue; we'll see where it goes from here

lmk if you hear anything positive back, would be interested to have a play with it

welp, if I end up having to write my own on company time, I'll see if I can get legal clearance to put them in a public repo or open a PR to Pulumi's

i was thinking of doing something similar, we have a ticket to enforce tagging policies in our next sprint which starts on monday, so could probably get a core policy set knocked out in a sprint and then publish, if I beat you to it I’ll share a link

<@U03B4FY29JR> did you end up taking a look at this?

hey, sorry no not just yet. priorities changed! we enforced the tagging policy but didnt do any other stuff just yet