Meet Cloud Compass: AI-assisted IaC Coverage Audit and Risk Mitigation
Cloud Compass enhances your cloud resource management. Using AI-assisted logic, it auto-analyzes IaC coverage blind spots and trends over time, helping you quickly close any gaps.
The OpenTofu 1.9 release introduces updates to make infrastructure management more efficient. Key additions include the -exclude flag and for_each functionality for providers.
The "build vs. buy" debate shapes IaC automation. This post examines the challenges of scaling IaC with general tools like GitHub Actions and how platforms like env0 offer solutions.
Join Hassan Khajeh Hosseini, CEO of InfraCost, and Andrew Hay, env0's Director of Customer Success, for a 30-minute lightning talk exploring the synergy between Infrastructure as Code (IaC) and FinOps.
Discover how managed IaC self-service empowers developers and DevOps teams alike. Explores key benefits, best practices, and how to maximize efficiency and control with Infrastructure as Code.
This guide will introduce Ansible Playbooks and demonstrate how they work through an example deployment of a Flask application on an Apache server with a PostgreSQL database.
In this blog, we’ll explain what Terraform maps are, explore their use cases, and share practical examples and best practices for effectively using them—and more.
We’re thrilled to be part of this year’s KubeCon, the leading cloud-native event, happening from November 12th to 15th at Salt Lake City. Come see us at Booth P6
The latest upgrade to our Environment Discovery feature improves how you onboard your existing environments to env0, making the process quicker and smoother than ever before!
Join our webinar to learn about the connection between FinOps and IaC management, the role of FinOps in cloud environments, and practical ways to optimize cloud costs with FinOps and IaC tools.
The OpenTofu registry UI is now live! To mark this occasion, here's a quick guide to help you explore its use cases, key features, and ways to contribute.
Terraform for loop helps you write simplified, repeatable code used to deploy resources. In this article, we’ll explore 'for' loops using 'for_each' and 'count', how and when to use them, example scenarios, best practices, and much more.
In this tutorial, we'll cover the fundamentals of working with Ansible, from installation to creating your first playbook. In later sections, we'll dive into practical hands-on examples for advanced use cases and show why Ansible has become a go-to solution for many modern DevOps practices.
The Terraform/OpenTofu 'lookup' function helps maintain clean, DRY, and reusable code. In this blog, we'll explore the various scenarios where the 'lookup' function can be used, and provide some practical examples for both common and more advanced use cases.
In this blog, we’ll learn more about count, describe its use cases, and show how you can use it to create multiple resources with ease - with or without conditional expressions.
Join Sergey Korolev of Rakuten Viber to learn how his team automates and manages Infrastructure as Code, and how mature IaC practices improve developer experience, reduce technical debt, and streamline operations at scale.
As OpenTofu quickly nears its next stable release, we delve into its new features, discuss their use cases, and explore the challenges they will address for OpenTofu users.
Recent events are prompting companies to reconsider their TFC subscriptions. At this critical moment, let’s take a closer look at TFC—explore its features, limitations, and pricing model, and review potential alternatives that might better meet your needs.
The 'validate' command helps you check the syntax of your Terraform or OpenTofu code before deployment. Learn how to use it effectively for seamless infrastructure provisioning.
env0 Workflows provides a structured approach to managing groups of related environments and their dependencies. Learn how you can use it to streamline complex IaC deployments.
Terraform functions are essential for creating effective infrastructure code. In this blog post, we'll provide a 360° review of Terraform/OpenTofu functions, with practical and detailed examples.
Variable sets can be linked to an entire Organization or to specific Projects, Templates, Workflows, or Environments, which serves to reduce clutter and ensures maximal flexibility.
Our latest feature enhances env0 Workflows, simplifying sharing outputs of one environment with another in the same project or workflow, and storing them securely on the env0 platform.
In this blog, we will discuss best practices you should follow for writing clean, scalable, and efficient Terraform code, and how to achieve them with env0.
We are thrilled to announce an upgrade to the navigation experience on the env0 platform, designed to make project management smoother and more intuitive.
The launch of OpenTofu 1.7 brings a highly anticipated update: state file encryption. In this post, we take a deep dive into this feature and other new improvements.
Discover best practices for Terraform configuration files and folder structures to optimize your IaC workflow and avoid future complex reorganizations.
In this post, we cover best practices and considerations to ensure the effective and safe execution of 'terraform destroy' within your infrastructure management processes.
With Environment Discovery, you can maintain your directory-based structure in your VCS. This enables you to use your existing approval workflows, take advantage of CodeOwners, ensure auditability, and stay aligned with Infrastructure as Code (IaC) best practices!
In this post, we've selected a range of the most popular IaC tools to provide a quick overview of the IaC ecosystem and help you find the option best suited for your organization or project.
Learn how to use env0 to create a unified platform that combines Kubernetes scalability with Terraform's provisioning strength and Helm's deployment dexterity!
Looping constructs provide a way to generate similar resources dynamically based on a collection or count. Learn how to use 'terraform for_each' for efficient infra management.
The Terraform registry is an essential asset for every Terraform user. In this blog, we provide a practical guide for how it can be used to streamline and standardize cloud infrastructure provisioning.
Born out of frequent customer requests, our TFC migration tool simplifies and accelerates the transfer from Terraform Cloud to env0, at any scale. Visit here to see it in action.
In this post, we'll compare Terraform and AWS CF, discuss their pros and cons, and demonstrate how they can be used with env0, leveraging the platform’s multi-framework support.
We introduce two new improvements to our ‘Remote Backend’ - ‘Self-Hosted Remote State’ and ‘Remote Apply’, both addressing common requests from our customers.
Today we are happy to announce the rollout of our new multi-region architecture, designed to elevate the reliability of our platform, enabling it to achieve an RTO goal of 30 minutes!
OpenTofu is now generally available as a stable, tested, production-ready Terraform alternative! To support the release we are rolling CI Testing, leveraging the new 'tofu test' capability!
In this blog post, we will compare the two tools, and then consider examples of how to use them together for a more efficient and comprehensive approach to infrastructure management.
All programming languages have a way to express and store values within the context of a code block. In the case of Terraform, that functionality is delivered through Terraform locals.
The release introduces several bug fixes, security improvements, and updates to documentation, the details of which you can find in our change log. Most importantly, it marks the introduction of our new OpenTofu public registry!
Terraform providers are essential to the functionality of Terraform. Learn how to install and use them to interact with diverse infrastructure services - AWS, Kubernetes,GitHub and more.
Pulumi is an open source Infrastructure-as-Code framework that provisions resources utilizing common programming languages. Learn more about it and how to easily make it work with env0.
This post showcases the orchestration of Terraform deployments using Jenkins in a real-world scenario. It also delves into the pros and cons of choosing Jenkins for IaC management.
Learn how to combine our trio of capabilities — drift detection, scheduling, and approval policies — to automatically ensure consistent and compliant infrastructure.
Heading to KubeCon NA? Our team has got you covered with a guide on how to maximize your conference experience, including can’t-miss talks, networking events, and even places to explore in Chicago!
Developed out of one of our hackathons, this extension makes it easy to work with your env0 environments, making your development process faster and simpler.
What began as a mere idea and a handful of individuals burning the midnight oil to craft a manifesto just a few weeks ago has swiftly evolved into a full-fledged Linux Foundation project.
OpenTF became a focal point for extensive media coverage, heated debates, and insightful conversations. In this post, I’ll try to recap some of these, in a way that (I hope) would provide helpful context for people new to this story.
The latest milestone in the OpenTF journey is the release of OpenTF’s public repository. Within the first 12 hours, the repo already reached over 2,700 stars...
We’re proud to announce an open-source fork of Terraform called OpenTF. We also completed all documents to become part of the Linux Foundation. Details about the next steps and FAQs are inside.
On August 10th, HashiCorp made an important announcement, signaling a shift in its product licensing strategy. Here's what env0 customers need to know.
Essential building blocks of the Internet, such as Linux, Kubernetes, and Terraform need to be truly open source: that's the only way to ensure that we are building on top of solid and predictable underpinnings.
In this post, we'll walk through how GitHub Actions work, how to use them to automate Terraform operations, and how to embrace and enhance your current workflow.
One of the foundational commands at the heart of Terraform is terraform init. This command is what sets the stage for all the subsequent operations that you perform with Terraform. It prepares a new or existing directory for Terraform usage by creating initial files, loading any remote state, downloading modules, and installing provider plugins.
ArgoCD is a declarative, GitOps continuous delivery tool for Kubernetes applications that uses Git repositories as the source of truth for defining the desired application state. It automates application deployment and lifecycle management, making it easy to understand and audit.
Terraform backends are a native Terraform feature, which saves the state file in a remote location, rather than a local file. Terraform backends make sure that the work on the stack stays true to the state of our resources, and that we don’t run over our colleagues' work.
Terraform Cloud is a hosted service developed by HashiCorp that provides a collaborative workspace for teams to use Terraform, an open-source Infrastructure as Code (IaC) software tool. It enables teams to manage infrastructure provisioning, compliance, and management across various cloud providers, data centers, and services. This tutorial will walk you through the key features and benefits of Terraform Cloud.
Terraform CLI is a command-line interface tool that enables you to manage Infrastructure as Code (IaC) using the HashiCorp Configuration Language (HCL). With Terraform CLI, you can define, provision, and manage infrastructure resources in a human-readable format that can be versioned, reused, and shared across teams.
Terraform 'for' expression is widely used, particularly in Terraform Modules. A "For Expression" allows you to create complex type values by transforming other complex type values. This feature is not only beneficial in modules but also in your Main Infrastructure Code.
Terraform is a powerful infrastructure as code (IaC) tool that enables you to define and manage your cloud infrastructure in a declarative manner. One of the key features of Terraform is the ability to use variables, which allow you to parameterize your configurations and make them more flexible and reusable.Did you know that you could also order Domino's Pizza with Terraform? In this blog post, we will have fun with the Domino's Pizza Terraform provider while exploring the world of Terraform variables. We'll understand how to effectively use them in your infrastructure deployments.
Embracing Infrastructure as Code is a key step in your journey to cloud native operations. It also opens the door to approach other aspects of your operations as code, and a great example of this is using code to define and evaluate policy. This post will introduce you to the concepts behind policy as code, and how to use Open Policy Agent (OPA) to implement policy as code with your existing Terraform configurations.
Terragrunt is a thin wrapper for Terraform that provides extra tools for keeping your Terraform configurations DRY (Don't Repeat Yourself). With Terragrunt, you can easily manage remote states and multiple environments. It also helps you keep your codebase clean and organized.
Atlantis is a tool that automates Terraform operations through pull requests. It allows developers and operators to collaborate on infrastructure changes without leaving their version control system.
env0 has released 3 key features this month, directly helping new and existing customers. One of our features (Private provider registry) has already been covered in a separate blog—and this month's highlighted feature will be Remote state access control.
Terraform Plan aims to help you review and verify your configuration before applying it. It gives you a chance to catch any errors or inconsistencies in your terraform code, and to make sure that you are not making any unwanted changes to your infrastructure. It also helps you communicate and collaborate with your team members, by showing them what you intend to do and getting their feedback.
env0’s Provider Registry feature allows users to store Providers in a public or private repository and reference it for use within code. Best of all, you are able to pull different versions of the code with simple changes. When running inside env0 we will even handles the authentication without the need for any additional steps or configuration.
Infrastructure as Code is first and foremost code, and a chief principle of writing good software is leveraging abstractions to make your code reusable, scalable, and consistent. Terraform modules are the abstraction provided by HashiCorp to take logical groupings of resources and package them together in a reusable object.
Today, organizations are still figuring out how best to implement new IaC practices in their existing DevOps frameworks. This article covers a variety of options for multiple frameworks to support even the most demanding business-critical environments.
In this blog post, we will compare three popular IaC scan tools: Checkov, TFsec, and Terrascan. We will compare them based on their features, performance, usability, and compatibility.
Checkov works by scanning IaC files for common security and compliance issues, such as open security groups, unencrypted storage buckets, or missing encryption keys.
tfsec is a security scanner for your Terraform code. It performs static analysis of your code and detects potential misconfigurations that could lead to security risks.
Terrascan is a tool that helps you to scan your Infrastructure as Code for security and compliance policy violations. It supports various IaC languages such as Terraform, Kubernetes, Dockerfile, and more.
In this blog post, we examined three of the most popular tools to scan your infrastructure. These are Checkov, tfsec, and Terrascan. We saw the benefits and key features of each tool.
As our codebase becomes more complex, it often becomes an issue to maintain one IaC stack for our entire deployment, and we might think of splitting our IaC stack into smaller, more manageable components, with the relevant IaC for the job. The question is how can we pass outputs between deployment stacks? Read on to learn more.