Pulumi — Trivia & Interesting Facts¶
Surprising, historical, and little-known facts about Pulumi.
Pulumi was founded by a former Microsoft VP¶
Joe Duffy, who led the .NET compiler team and the Midori research OS at Microsoft, founded Pulumi in 2017. His experience building programming languages directly influenced Pulumi's core thesis: that infrastructure should be defined in real programming languages (TypeScript, Python, Go, C#) rather than domain-specific languages like HCL. Pulumi launched publicly in June 2018.
Pulumi uses the same providers as Terraform — literally¶
Pulumi's provider ecosystem is largely built by bridging existing Terraform providers through the pulumi-terraform-bridge. This means the AWS, Azure, and GCP providers in Pulumi call the exact same Go code underneath as their Terraform equivalents. As of 2024, over 150 Pulumi providers are bridged from Terraform, giving Pulumi near-instant parity for new cloud resources.
The state backend supports S3, Azure Blob, GCS, and a managed service¶
Unlike Terraform, which started with only local state and later added remote backends, Pulumi launched with a managed state service (Pulumi Cloud, formerly app.pulumi.com) from day one. The self-managed backend options were added later in response to enterprise demand. The managed service stores encrypted state and provides a web UI with drift detection, policy enforcement, and audit logging.
Pulumi Automation API lets you embed infrastructure provisioning in applications¶
Released in 2020, the Automation API allows developers to programmatically create, update, and destroy Pulumi stacks from within application code — no CLI required. This enables use cases like platform engineering portals, self-service infrastructure, and infrastructure-as-a-service products. No other major IaC tool offered this capability at launch.
Pulumi AI was one of the first generative AI features in IaC¶
In mid-2023, Pulumi launched Pulumi AI, which uses large language models to generate Pulumi programs from natural language descriptions. Because Pulumi programs are written in general-purpose languages, LLMs can leverage their existing training on TypeScript/Python/Go to produce infrastructure code more fluently than they can produce HCL, which has far less representation in training data.
CrossGuard policies use real code, not a policy DSL¶
Pulumi's policy-as-code framework (CrossGuard) lets you write compliance rules in TypeScript or Python — the same languages used for the infrastructure itself. Policies can enforce rules like "no public S3 buckets" or "all EC2 instances must use encrypted EBS volumes." This contrasts with Sentinel (Terraform) and OPA/Rego, both of which require learning a separate policy language.
Component resources enable true infrastructure abstractions¶
Pulumi's component resource model allows engineers to create reusable, composable infrastructure building blocks that behave like native resources in the dependency graph. A team can publish a "VPC" component to a package registry (npm, PyPI) that encapsulates dozens of underlying resources with sensible defaults. This leverages the host language's existing package management rather than requiring a custom module registry.