AWS Infrastructure Rules for Pulumi
Domains
RDS - Aurora Serverless v2 capacity, engine support, promotion tiers, mixed clusters See rds/
S3 - Encryption, versioning, lifecycle rules See s3/ (planned)
IAM - Connecting resources, least privilege policies See iam/
Quick Reference
RDS
- •
capacity- ACU ranges, scaling behavior, auto-pause configuration - •
engine-support- Serverless v2 compatible engine versions - •
workload-shaping- Choosing provisioned vs serverless by workload pattern - •
resource-mapping- Pulumi resource structure, writer ordering, instance classes - •
promotion-tiers- Failover priority, tier 0-1 vs 2-15 scaling behavior - •
mixed-instances- Combining provisioned and serverless in one cluster
IAM
- •
connecting-resources- Service-to-service IAM permissions matrix - •Individual connection rules:
lambda-to-dynamodb,eventbridge-to-lambda,sns-to-sqs, etc.
Workflow
- •Identify AWS service being configured
- •Read relevant domain rules
- •Apply constraints and patterns
- •Validate with
pulumi preview