|
|
|
|
|
|
by arkadiyt
2380 days ago
|
|
|
I've seen lots of comments (not just on HN) about how Pulumi/CDK are easier, more powerful, etc. This is probably true from the perspective of someone writing infrastructure as code. Working in security I spend more time _reading_ pull requests for infrastructure as code, and I think Terraform's declarative syntax is 100% superior in that regard. Being able to see the infrastructure without trying to mentally execute code, and being able to run static analysis tools against your infrastructure, make it my preferred infrastructure as code tool. |
|
|
Is the Pulumi/CDK code too dynamic to support static analysis?