|
|
|
|
|
|
by cactus2093
2130 days ago
|
|
|
I think you have mostly the same problems in Terraform, Pulumi, or Cloudformation though right? Is there anything that makes it easier to accidentally do in k8s? One layer of defense in all of these cases is keeping the IAM credentials that the configuration management tool uses from having any deletion permissions. |
|
|
Also, set the DeletionPolicy in CF to false.