Terragrunt Scale
Terragrunt Scale is a GitOps platform that extends Terragrunt with production-grade infrastructure automation. It runs entirely within your own CI/CD environment (GitHub Actions or GitLab CI), giving you full control with no black boxes.
What You Get
Section titled “What You Get”Terragrunt Scale includes three core products:
-
Pipelines — CI/CD for Terragrunt, built by the creators. Plan on PR/MR, apply on merge, with blast radius minimization and OIDC authentication.
-
Drift Detection — Scheduled scans that compare your deployed infrastructure against your Terragrunt code, with automatic pull requests to remediate drift.
-
Patcher — Automated dependency updates that open PR/MRs when your OpenTofu/Terraform modules or Terragrunt units/stacks have new versions available, including handling of breaking changes.
How It Works
Section titled “How It Works”Terragrunt Scale integrates directly with your version control system and CI/CD platform:
- A GitHub App or GitLab machine user connects to your repositories.
- Infrastructure changes trigger plan/apply workflows in your own CI/CD runners (GitHub Actions or GitLab CI).
- OIDC handshakes acquire temporary, least-privilege credentials for each environment.
- Terragrunt’s directed acyclic graph (DAG) ensures resources are created, updated, and destroyed in the correct order.
All operations run inside your infrastructure and runners. Terragrunt Scale never has direct access to your cloud accounts or state files.
Supported Platforms
Section titled “Supported Platforms”- VCS: GitHub, GitLab, GitHub Enterprise, GitLab Self-Managed
- IaC: Terragrunt, OpenTofu, Terraform
- Cloud: AWS, GCP, Azure (and any other platform supported by OpenTofu/Terraform with custom authentication)
Learn More
Section titled “Learn More”- Installation — Get started with Terragrunt Scale
- Full documentation — Detailed guides and reference on the Gruntwork docs site