Infrastructure as code leader Pulumi today introduced Pulumi for Platform Teams, a complete set of capabilities that increase agility, compliance, and security. It includes Pulumi Developer Portal for self-serve provisioning, a CNCF Backstage plugin, Compliance-ready Policies and Remediation Policies, for automatic adherence to organizational best practices. The company also announced general availability of Pulumi Deployments for deployment orchestration.
Internal developer portals (IDPs) enable developers to quickly provision approved infrastructure, boosting productivity with pre-configured architectures and automated testing. Instead of choosing between using expensive, inflexible platforms or building resource-intensive in-house solutions, companies can now use Pulumi’s building blocks for creating and customizing IDPs. These platforms are inherently many-cloud and frequently center around the adoption of Kubernetes.
New Pulumi capabilities for platform teams include:
Pulumi Developer Portal – Enable Self-Serve Infrastructure
Pulumi Developer Portal provides platform teams with an out-of-the-box Service Catalog experience so that developers can deploy from Pulumi Cloud. It supports advanced integration with source control, CI/CD, and custom workflows through a rich REST API. It is available in all Pulumi Cloud offerings, with private template hosting offered in both the Enterprise and Business Critical editions.
Pulumi Backstage Plugin – Integrate with Existing Self-Serve Portals
The new plugin integrates Pulumi Developer Portal with CNCF’s Backstage, enabling developers to browse, provision, and monitor infrastructure using both platforms. It is available on the Backstage and Roadie Marketplaces immediately.
Compliance-ready Policies – Enforce Rules on AWS, Azure, Google Cloud, and Kubernetes
Platform teams can now use hundreds of Pulumi CrossGuard policies for automating compliance and best practices, eliminating custom policy creation. Teams can build policy packs for any cloud, service, and topic (e.g. Network, Encryption, Logging, or Storage), with support for key compliance frameworks, such as PCI DSS, ISO 27001, SOC 2, and CIS.
Remediation Policies – Automatically Fix Compliance Issues
With Remediation Policies, Pulumi’s policy as code engine allows platform teams to author policies that automatically correct configuration violations, such as auto-tagging, Internet access control, and enabling storage encryption. Remediation is available in the open-source engine with organization-wide configuration and enforcement for Business Critical customers.