terraform apply should be against a saved plan
#1301
Assignees
Comments
karareinsel
removed
the
unprioritized
|
I was possibly bit by this today. Triggered a concourse build against a commit that had already run, and somehow that build ended up rebuilding a database. I have no idea what changed, since the apply used |
|
Closing in favor of cloud-gov/terraform-provision#741 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Our
cg-provisionpipeline (alsoaws-brokerand maybe others) is configured to runterraform plan, and in a later job runterraform apply. However, thatapplydoesn't make use of a saved plan file. This means infrastructure drift during plan review and before the apply job is triggered can result in unexpected and possibly destructive changes.Instead, we should save the plan output from the
terraform planjob and make use of it in the apply job.The text was updated successfully, but these errors were encountered: