Many Terraform users still rely on static credentials (API keys, passwords, certificates, etc.) to authenticate workloads with cloud providers (AWS, Google Cloud, Azure). However, relying on this practice poses both operational and security challenges. Managing static, long-lived credentials does not scale well without tedious and time-consuming manual intervention. Additionally, users set credentials as workspace variables or variable sets in Terraform, adding additional complexity to their authentication process. This practice of manually securing static secrets only increases the likelihood ..read more

Today we’d like to share the latest improvement to HCP Terraform’s permissions capabilities: read-only permission to the HCP Terraform audit trails endpoint. Available now in HCP Terraform, this new feature enables organization owners to generate a dedicated API key for least-privilege access to audit trails. HCP Terraform audit trails let organization administrators quickly review the actions performed by members of their organization. It includes details such as who performed the action, what the action was, and when it was performed. It also contains the evaluation results of compliance-rel ..read more

We’re excited to share the latest enhancement to HashiCorp Terraform’s permissions capabilities: Admins can now control whether team members can manage their team’s API token. Now generally available in HCP Terraform and coming soon to Terraform Enterprise, this addition helps organizations improve their security posture for API token management by limiting the exposure of team tokens. API token management Within HCP Terraform, three types of API tokens exist to facilitate programmatic access: User API tokens that belong to a specific user Team API tokens that belong to a specific team withou ..read more

This post takes a hands-on look at implementing a Microsoft Azure AI text search application that leverages the Azure OpenAI GPT3 models and Pinecone (a vector database) combined with HashiCorp Vault to provide encryption and decryption capabilities that help protect the integrity of data in the RAG-based, large language model (LLM) application. Generative AI chatbots such as ChatGPT, Google’s Gemini, and Microsoft’s Copilot, are powerful tools that generate human-like text based on user prompts. However, the ability of these generative AI systems to follow instructions also makes them vulnera ..read more

HashiCorp Terraform 1.9 is now generally available, ready for download, and immediately available for use in HCP Terraform. Terraform 1.9 includes several new features that have been highly requested by the Terraform community, along with a number of improvements to existing capabilities to enhance developer productivity. Cross-object referencing for input variable validations Input variable validations, first introduced in Terraform 0.13, ensure that input variable values meet specific requirements before execution. This reduces the likelihood of provisioning errors and misconfigurations caus ..read more

The HashiCorp Terraform ecosystem continues to expand with new integrations that provide additional capabilities to HCP Terraform, Terraform Enterprise, and Community Edition users as they provision and manage their cloud and on-premises infrastructure. Terraform is the world’s most widely used multi-cloud provisioning product. Whether you're deploying to Amazon Web Services (AWS), Microsoft Azure, Google Cloud, other cloud and SaaS offerings, or an on-premises datacenter, Terraform can be your single control plane, using infrastructure as code for infrastructure automation to provision and ma ..read more

AWS re:Inforce is an immersive cloud security learning event kicking off Monday, June 10, in Philadelphia. HashiCorp once again has a major presence at the event, including breakout sessions, expert talks, and product demos. Earlier this year, HashiCorp announced The Infrastructure Cloud and showed how Security Lifecycle Management (SLM) helps users protect sensitive elements of their infrastructure, inspect their security posture, and securely connect machines, users, and services. The AWS re:Inforce security conference offers an opportunity to detail the new additions and improvements we hav ..read more

Today at HashiDays in London, we are excited to announce new capabilities across our Infrastructure Lifecycle Management (ILM) portfolio, including HashiCorp Terraform, Packer, Nomad, and Waypoint, to help customers build, deploy, and manage infrastructure. New announcements today include: HCP Terraform in Europe (limited availability) to help meet European data compliance requirements HCP Terraform agent enhancements (limited availability) for private VCS access and private policy enforcement HCP Waypoint actions (public beta available soon) will expose Day 2 operations and CI/CD golden work ..read more

The AWS Cloud Control (AWSCC) provider, built around the AWS Cloud Control API and designed to bring new services to HashiCorp Terraform faster, is now generally available. The 1.0 release of the AWSCC provider represents another step forward in our effort to offer launch day support of AWS services. Initially launched in 2021 as a tech preview, the Terraform AWS Cloud Control provider is automatically generated based on the Cloud Control API published by AWS, which means the latest features and services on AWS can be supported right away. The AWSCC provider gives developers access with severa ..read more

The cloud provides an environment where developers can create and deploy applications rapidly. However, many organizations that limit their focus to accelerating application delivery end up struggling to find cloud success. Because the cloud dramatically expands their infrastructure footprint across different environments, it gets harder to maintain visibility and control, slowing developer productivity and making it harder to realize the promised business value. Addressing the challenges of these dynamic environments across people, processes, and tools requires a modern, holistic approach to ..read more