Several of this year’s HashiTalks speakers presented useful Terraform, Packer, and CI/CD tips and tricks. Learn from this list of highlights.
In our previous HashiTalks 2022 blog posts, we highlighted talks on observability, Consul-Terraform-Sync, Nomad experimentation, case studies, Vault and Boundary strategies, and Kubernetes integrations. This is the final post spotlighting HashiTalks 2022 content, and it focuses on useful Terraform, Packer, and CI/CD strategies.
Ned Bellavance answers some big questions about what to do when out-of-band changes happen in HashiCorp Terraform. Learn how Terraform's decision matrix works and see what techniques you can use to get things back in sync after one of these out-of-band changes. Then find out how you can prevent these changes from happening in the first place.
Leonardo Rodrigues de Oliveira shares his best practices for writing scalable, reusable, and organized modules for Terraform. Learn about useful tooling, repository templates, tips, patterns, and anti-patterns for scalable Terraform modules.
Samuel Baena Hayas talks about the lessons learned at Glovo while importing critical resources into Terraform Cloud. Importing resources into a remote Terraform Cloud backend can be dangerous, especially when dealing with workspaces used by many engineers at the same time. We encourage DevOps practitioners and site reliability engineers (SREs) who have to deal with frequently used Terraform workspaces or generally deal with Terraform at scale to check this one out.
Rita Sokolova showcases how to use Terraform, Terraform Cloud, and GitHub Actions to automatically create preview environments for your code changes. Preview environments let you review and test proposed changes to your services and infrastructure, allowing you to verify new features before releasing them.
Shlomo Bielak demonstrates and explores the benefits of a Terraform pipeline that destroys environments — and can help you save 40-50% on an average cloud bill. This pipeline aims to help you remove idling, orphaned infrastructure instances in a more automated way.
Jirawat Uttayaya has written two blog posts on the best practices for Terraform AWS tags, and in this session he presents a compilation of those best practices. Terraform default tags for AWS are an easy way to add metadata to all AWS resources. They can be very powerful in maintaining your infrastructure code and implementing cost controls.
Owen Rumney shows how you can use tfsec to scan
.tf.json files for mis-configurations to prevent them from reaching production. You’ll also learn how to use the tfsec VSCode extension and GitHub Actions to catch issues early.
Mihai Criveti and Elif Samedin provide an end-to-end demo of a Terraform, Vault, and Packer-based CI/CD workflow for building secure and compliant operating system images, triggering Ansible and OpenSCAP for OS-image compliance and post-install steps.
Caleb Albers explores how our team at HashiCorp leverages HCP Packer and GitHub Actions in production to help automate our image build, test, and deployment pipeline. Learn about the challenges we faced tracking Packer build metadata, testing images across multiple operating systems, and promoting builds to production, and see how HCP Packer helped us simplify and solve these challenges as we built our fleet of self-hosted GitHub Actions runners for Linux, macOS, and Windows.
Tracey Jaquith shows how — in less than 15 lines of YAML and one CI/CD
NOMAD_TOKEN secret — you can have full CI/CD pipelines to build, test, and deploy your Git repo to a Nomad cluster. Tracey also explains how archive.org moved Kubernetes to Nomad/Consul and shares tips and tricks for managing deployments, dealing with large repos, and more.
We’ve already posted HashiTalks 2022 highlight blogs covering helpful Vault and Boundary techniques, Nomad explorations, observability, Consul-Terraform-Sync, and Kubernetes integration, as well as insightful customer stories. To view all of this year’s HashiTalks recordings, visit our HashiTalks 2022 YouTube playlist.
Native Open Policy Agent (OPA) support allows customers who have standardized on OPA to bring their policies into Terraform Cloud.
Dynamic provider credentials for Terraform Cloud provide a simple and safe authentication workflow for Vault and official cloud providers.
Ancestry tracking for HCP Packer provides visibility into image dependencies across your cloud environment for image lifecycle management.