The Terraform Provider for Stacklet: Faster, Easier, and AI-Ready

Organizations relying on Cloud Custodian or other governance tooling have historically had to manage a lot of moving parts – VPCs, EC2/Lambda compute resources, monitoring systems, policy execution pipelines, and custom CI/CD workflows. While Cloud Custodian is powerful, standing up these environments required significant time and effort before delivering value at enterprise scale.

Stacklet was created to change that equation. By providing a fully automated and managed platform, Stacklet became the “easy button” for cloud governance – removing the operational burden and enabling teams to focus on outcomes across FinOps, security, and compliance. With the addition of Jun0, Stacklet’s AI agent, teams can now create policies and run queries even faster, accelerating the path from question to action.

Now, with the new Terraform Provider for Stacklet, the easy button just got even easier.

Terraform Provider for Stacklet: “Stacklet as Code”

The Terraform Provider for Stacklet brings “Stacklet as Code” to life by allowing teams to standardize, codify, and manage their Stacklet configuration using the same Terraform artifacts and workflows they already know and trust. Instead of relying on manual processes or bespoke scripts in the Stacklet console, teams can now manage Stacklet objects declaratively through Terraform. The provider supports a wide range of Stacklet objects, including:

• Policy Repositories
• Policies
• Policy Collections
• Accounts
• Account Groups
• Bindings (Policy Deployments)
• SSO Groups
• Notification Configuration & Integration Profiles

The Terraform Provider for Stacklet unlocks several high-impact use cases that customers have been asking for, such as:

• Deploying policies against specific accounts.
• Standardizing notifications and messaging across clouds and resources.
• Managing Stacklet repositories directly within Terraform.
• Managing SSO group membership and RBAC rules in Terraform.

First, we can create a new policy repository in Stacklet which will mirror the policies in a git repo. We also create a policy collection which will automatically update the collection as policies are created, updated or deleted:

Next, we can fetch our “Production” account group, which was automatically created by Stacklet when importing your organization:

Finally, we add the policy collection we created and the account group together in a binding to deploy the policies:

You can put all the code blocks together in a main.tf file and use terraform init, terraform plan and terraform apply commands to deploy your policies.

Benefit: Codified Governance for Speed, Scale, and Control.

• Faster Policy Deployment and Rollbacks: Deploy governance policies in minutes using familiar Terraform apply workflows. Teams can push changes rapidly, and just as easily roll them back by reverting to a previous Terraform state.
• Increased Operational Efficiency: Eliminate click ops and manual configuration drift. Cloud engineers can now deploy and manage governance infrastructure with a few lines of Terraform – leveraging their existing Terraform knowledge, CI/CD pipelines, and workflows to move faster with less overhead.
• Standardized Governance Infrastructure and Templates: Bring consistency to how governance is deployed across accounts and clouds. Teams can codify notifications, messaging rules, RBAC policies, and policy group structures as reusable Terraform templates. This approach ensures standardization across environments, reduces misconfiguration risks, and makes governance easier to scale.
• Easier Policy Execution Control: Programmatically manage policy execution with precision. Users can disable and re-enable schedules across multiple bindings and account groups with a single command. By leveraging Terraform state, teams gain a deterministic way to rebuild configurations or roll back unintended policy deployments – especially critical during outages or incidents.

Pathways to AI-Driven Governance: Easier, Smarter, Faster

The Terraform Provider for Stacklet not only accelerates deployments today – it also lays the groundwork for AI-driven governance. LLMs are already capable of generating Terraform code, and by standardizing on Terraform, customers gain a safe, practical pathway to leverage AI.

With Jun0, this vision is starting to take shape. Jun0 helps teams create policies, run queries, and move from question to action faster. Looking ahead, Jun0 will work with the Terraform Provider to speed and standardize policy configurations – such as notifications and RBAC rules – making them easier for technical and non-technical users alike.