Rootconf Mini 2024

Geeking out on systems and security since 2012

Tickets

Loading…

Agastya Dev Addepally

@devagastya

Terraform Custom Module Management: A simple CLI tool solving a tech debt landmine ready to happen

Submitted Oct 28, 2024

Terraform custom modules are the cornerstone of most IaC implementations. In places where they are extensively used, it often leads to a state where you’re not able to track the custom module versions upstream leading to issues such as:

  • Latest changes in infra not reflecting as the team working on and updating the module is different from the team using the module
  • Security fixes not propagating unless manually updated downstream
  • Using latest tag for module version can lead to a unintentional breaking changes to be propagated indiscriminately(which is undesirable)

This is also the case for Hashicorp registry modules/Providers that are constantly updated.

To solve this issue, an open source tool: https://github.com/Darth-Tech/samwise-cli

A lightweight CLI tool written in GoLang that can be downloaded as a simple binary without much overhead to integrate with any CI/CD setup or as a standalone program for local usage.

The goal is to allow developers to be aware and if necessary, pitch the updates to the module so that the developers don’t have to scour through hundreds of lines of code to figure out which modules need updates and by which version.

Takeaways:

  • Understanding the versatilty of Terraform custom modules and complex terraform setups
  • How Samwise-CLI will help simplify the management of custom modules
  • Comparision with other tools available
  • Why the tool is named after a simple Hobbit from the Lord of the Rings

Audience

  • IaC developers
  • Open Source Enthusiasts

Comments

{{ gettext('Login to leave a comment') }}

{{ gettext('Post a comment…') }}
{{ gettext('New comment') }}
{{ formTitle }}

{{ errorMsg }}

{{ gettext('No comments posted yet') }}

Hybrid Access Ticket

Hosted by

We care about site reliability, cloud costs, security and data privacy