Pulumi has introduced four new features to enhance cloud security, automation, and access control, according to a report by SiliconAngle.The updates include automated secrets rotation in Pulumi ESC, a secure GitHub Actions integration, granular role-based access control (RBAC), and expanded policy-as-code capabilities in Pulumi Insights.The automated secrets rotation feature mitigates risks by dynamically cycling credentials, ensuring secure and seamless updates. Meanwhile, Pulumi ESC GitHub Action reduces credential exposure in CI/CD workflows.The new RBAC system provides fine-grained access control, allowing organizations to customize permissions across Pulumi Cloud. Lastly, Pulumi Insights now extends policy-as-code governance beyond infrastructure as code (IaC), covering all discovered cloud resources.
With these updates, Pulumi aims to strengthen compliance, security, and operational efficiency across major cloud platforms, including AWS, Azure, Oracle Cloud, and Kubernetes. The company has raised $99 million in venture funding, including $41 million in its Series C round in 2023.
An In-Depth Guide to Cloud Security
Get essential knowledge and practical strategies to fortify your cloud security.
Safe-seeming cloud services like Google Drive and Trello have everything attackers need to remotely control infected hosts, and most defenders have no idea.
Security Affairs reports that cloud tenants in the education industry have been targeted by the Storm-1977 threat operation in password spraying attacks that facilitated cryptomining activities during the past 12 months.
