Listen to this Post
The latest Terraform Weekly newsletters (219 and 220) cover critical topics for DevOps and cloud engineers working with Infrastructure as Code (IaC). Below are the key insights and practical implementations.
Issue 220 Highlights
- How We Run Terraform At Scale – Christian Monaghan discusses strategies for managing large-scale Terraform deployments.
- AWS Multi-Account IaC Sandwich – Tarlan Huseynov explains combining Terragrunt, Terraform, and CloudFormation for multi-account AWS setups.
- GitOps and IaC at Scale – Alejandro Velez demonstrates using AWS, ArgoCD, Terragrunt, and OpenTofu.
- Infracost – Madhubanti Jash details cost prediction for Terraform infrastructure before provisioning.
Issue 219 Highlights
- Systematically Terraforming Brownfield Infrastructure – Aditya A. shares migration strategies.
- Accessing Amazon EKS from a Jumphost – John Ajera’s guide on secure EKS access.
- TF_IN_AUTOMATION Environment Variable – Sampark Mehrotra explains its role in CI/CD pipelines.
- AWS and Docker Hub Limits – Dmytro Sirant’s workaround for April 2025 changes.
- Pre-Cache Terraform Provider Plugins – Zachary Loeber’s optimization technique.
Open-Source Projects
- GitOps Bridge – Best practices for Kubernetes cluster creation and GitOps management (ArgoCD/FluxCD).
- Infracost – Open-source cost estimation for Terraform plans.
Relevant URLs:
You Should Know: Essential Terraform Commands & Practices
1. Running Terraform at Scale
Initialize Terraform terraform init Plan and apply with parallelism (faster execution) terraform plan -out=tfplan terraform apply -parallelism=20 tfplan Workspace management for multi-environment scaling terraform workspace new dev terraform workspace select prod
2. AWS Multi-Account IaC with Terragrunt
Terragrunt CLI for modular stacks
terragrunt plan-all
terragrunt apply-all
Dynamically fetch AWS account IDs
data "aws_caller_identity" "current" {}
3. GitOps with ArgoCD & OpenTofu
Sync Kubernetes manifests via ArgoCD argocd app sync my-terraform-app OpenTofu (Terraform fork) tofu init tofu apply -auto-approve
4. Cost Estimation with Infracost
Install Infracost curl -fsSL https://raw.githubusercontent.com/infracost/infracost/master/scripts/install.sh | sh Generate cost report infracost breakdown --path .
5. Pre-Caching Terraform Providers
Cache plugins to avoid downloads terraform providers mirror ~/.terraform.d/plugin-cache export TF_PLUGIN_CACHE_DIR="$HOME/.terraform.d/plugin-cache"
- Handling Docker Hub Rate Limits in AWS
Use ECR instead of Docker Hub aws ecr create-repository --repository-name my-app docker push 123456789.dkr.ecr.us-east-1.amazonaws.com/my-app:latest
What Undercode Say
Scaling Terraform requires automation, modularity, and cost control. Key takeaways:
– Use Terragrunt for DRY IaC.
– GitOps (ArgoCD/FluxCD) ensures declarative Kubernetes management.
– Infracost prevents budget overruns.
– Pre-caching providers speeds up CI/CD pipelines.
– AWS ECR avoids Docker Hub throttling.
For large teams, enforce remote state locking (S3 + DynamoDB):
terraform {
backend "s3" {
bucket = "my-terraform-state"
key = "global/s3/terraform.tfstate"
dynamodb_table = "terraform-locks"
}
}
Expected Output:
A scalable, cost-efficient IaC pipeline leveraging Terraform, Terragrunt, GitOps, and AWS best practices.
Relevant URLs:
References:
Reported By: Antonbabenko Issue – Hackers Feeds
Extra Hub: Undercode MoN
Basic Verification: Pass ✅
