Nowadays, most organizations use tools like CDK, Terraform, or CloudFormation to create their infrastructure following IaC principles.

However, when it comes to maintaining these cloud resources over time, many resort to an assortment of scripts to fulfill specific maintenance needs. Such scripts introduce inconsistencies across the organization.

Resoto provides quick access to your entire infrastructure inventory and lets you modify or clean up cloud resources. But up until now, you needed to write custom Python plugins to perform actions Resoto doesn't support out of the box.

We've introducing a powerful new feature in Resoto 3.5: Resoto Infrastructure Apps.

Infrastructure Apps extend Resoto's base functionality, empowering you to perform custom tasks like fixing untagged resources, identifying abandoned load balancers, sending notifications to other systems, or calling webhooks.

Last month, we merged a total of 33 pull requests and released Resoto 3.4.1.

This release introduces the Security Benchmarks CLI as well as a new Neighborhood View.

Managing and tracking cloud resources can be challenging, especially when multiple teams are involved. Cloud resource tagging, which involves labeling resources with metadata, is essential for improving visibility and cost control over these resources.

Resoto's TagGuard module simplifies the tagging process.

In this blog post, we'll provide a brief overview of the benefits of implementing a tagging policy and best practices for creating and enforcing it, based on our recently published white paper.

Performing security benchmarks on your cloud resources is an important step in ensuring the security and compliance of your organization's cloud environment.

While security benchmarks are often associated with large corporations, they provide invaluable insights and guidance for organizations and individuals of all sizes. Benchmarks offer a wealth of information on potential security risks, best practices, and compliance requirements that can help fortify your cloud environment—even if you're not legally obligated to adhere to them.

In this blog post, we'll explore the benefits of performing security benchmarks on your cloud resources and introduce Resoto Sentinel, the Resoto security module designed to simplify the benchmarking process.

Resoto offers an open-source approach to use infrastructure data to solve today's most pressing cloud problems: cost, resilience, security, and compliance.

In this post, I share the story of how D2iQ, an enterprise Kubernetes provider, used Resoto to reduce their annual cloud bill by 78% and save $5.4M per year.

Last month, we merged a total of 64 pull requests and released Resoto 3.3 just before the end of March. This release delivers the Security Benchmarks we announced in January, along with numerous smaller features and improvements.

In this blog post, I'll share the reasoning behind some of the tech stack decisions for the Resoto UI. Our goal from the outset was to build an interesting and fun UI that encourages users to explore their cloud in new and exciting ways.

As companies grow, their cloud infrastructure quickly becomes fragmented and gets out of control. Data about what resources exist and how resources they relate to each other is tedious to acquire.

In practice, this means that the infrastructure layer often remains a mystery, and engineering teams are unable to see what's happening in their infrastructure. This makes capacity planning impossible, limits organizations' ability to control cloud costs, and leaves teams in the dark about potential security vulnerabilities.

The data to understand cloud growth exists as cloud resource metadata describing the state, configuration, and dependencies of cloud resources. Acquiring and unifying this "infrastructure data" into a single place is the solution for a lot of the problems that infrastructure engineers deal with today—not just cost, but also security and reliability.

But infrastructure is fragmented. Data is locked behind cloud APIs, and the tools that use those APIs to control the deployment of cloud resources. In this post, I'll explain how Resoto acquires infrastructure data, and then uses that data to write code.

Hi there fellow cloud enthusiast 🖖

In this blog post, we'll delve into infrastructure fragmentation, exploring what it entails, why it impacts every organization utilizing the cloud, and how building a reactive infrastructure brings order to chaos.

Infrastructure Fragmentation: A Laptop Analogy​

For an analogy let's take your laptop. Over time, performance declines due to a variety of factors, including the accumulation of unnecessary files, software conflicts, and the buildup of outdated or redundant software. And despite your best cleaning efforts, after a year or two its performance is just not what it used to be and everything is a bit more cluttered and disorganized than what it was like when brand new.

Now instead of just you working with that laptop, imagine there were tens, hundreds or even thousands of users. Imagine every cloud user in your organization was working on it as well. That is what your cloud infrastructure looks like.

Infrastructure fragmentation, also known as cloud fragmentation or cloud sprawl, refers to the phenomenon where an organization's cloud infrastructure becomes decentralized and uncoordinated due to the widespread adoption of cloud services by independently operating teams or individuals and a lack of centralized governance.

In other words, infrastructure fragmentation is the uncontrolled proliferation of cloud services and providers within an organization. Resulting in a disorganized and difficult-to-manage cloud infrastructure.

Infrastructure fragmentation can create various problems, such as security issues, quota and performance problems as well as increased costs due to redundancies, leaked or abandoned resources and Infrastructure as Code (IaC) drift.

EC2 instances often account for the largest portion of your AWS bill. Yet, it's notoriously difficult to get a simple list of all EC2 instances across all regions and accounts, as threads on StackOverflow and Reddit show.

You also then want to use that list to ask questions about your inventory, such as:

• How many total instances are there?
• Which instances are running?
• Which instances are missing tags?
• Which resources have an expiration date?

In this post, I'll describe how to use Resoto to build an EC2 cloud asset inventory. The baseline inventory is a list with all EC2 instances, which you then can use to create more narrow and detailed views.