Hashiconf Day 1: https://www.youtube.com/live/68DdUtHoG-I
Hashiconf Day 2: https://www.youtube.com/live/Wkw0X7-C6WU
Want bespoke video updates for your platform? Visit: merge-ready.com
HashiConf 2025 review: IBM + HashiCorp updates to Terraform, Vault, Packer, Boundary, HCP; Kubernetes and Docker DevOps workflows; AI, infrastructure as code, OpenShift and Ansible integrations; security, cost, compliance.
Get a concise, technical recap of HashiConf 2025 from San Francisco. Theme: scale, security, AI automation. I cover Terraform Stacks GA, Terraform Search bulk import, Terraform Actions with Ansible, Azure Copilot integration, cost governance, HYOK, Sentinel, Packer SBOMs, Vault 1.21, Boundary, and Project Infragraph. Built for platform, SRE, and DevSecOps teams.
Key takeaways
Terraform Stacks (GA): Manage dev, staging, prod as one unit. Unified CLI, VCS CI/CD, self-hosted agents.
Terraform Search (beta): Discover and bulk-import brownfield resources to state. Reduce drift and manual IDs.
Terraform Actions + Ansible (beta): Day-2 ops inside plans. Harden, rotate keys, tag cost centres, enforce encryption.
AI assistance: Azure Copilot + HashiCorp MCP generates or edits Terraform in VS Code or Azure Portal.
Cost governance: Cloudability run task injects estimates and policy checks into plan and apply.
Security: HYOK in HCP Terraform for customer-managed keys. Sentinel policies aligned to NIST 800-53 rev5.
Packer: HCP Packer stores SBOMs and package inventories for supply-chain visibility and audits.
Vault 1.21: K8s CSI secret injection, SPIFFE workload identity, static Azure creds, MCP assistant, post-quantum progress.
HCP Vault: Private DNS, AWS PrivateLink, Secrets Inventory for usage and rotation evidence.
Vault Radar: VS Code secret detection, Jira scanning, Radar MCP for incident queries.
Boundary: RDP credential injection to remove password handling.
Project Infragraph (preview): Real-time infra and app graph in HCP for agentic operations and optimisation.
Why it matters:
Faster brownfield to IaC.
Day-2 automation in the Terraform workflow.
Stronger zero-trust and supply-chain assurances.
Tighter GitOps and controller patterns for Kubernetes.
Clear budget and compliance guardrails pre-deploy.
Foundation for AI-assisted operations across cloud estates.
How to apply this now:
Pilot Terraform Search in one low-risk account. Import by domain to fresh workspaces.
Wire Actions, Sentinel, and FinOps run tasks. Enforce HYOK for state.
Standardise with modules. Track % estate under Terraform and drift per workspace.
Plan Vault 1.21 upgrade and adopt CSI secret injection for clusters.
Evaluate HCP integrations where governance and support are priorities.
Chapters:
00:00 Intro
00:20 Terraform Stacks GA
00:42 Terraform Search (bulk import)
02:16 Ansible and Terraform Actions
02:47 AI Assistants with Azure Copilot
03:06 Cost and policy guardrails
03:24 HYOK
03:31 Packer SBOMs and image insights
03:46 Vault 1.21 and HCP Vault
05:18 Vault Radar and Boundary
05:52 Project Infograph preview and AI
06:21 Ecosystem integrations
Информация по комментариям в разработке