TNS
SUBSCRIBE
Join our community of software engineering leaders and aspirational developers. Always stay in-the-know by getting the most important news and exclusive content delivered fresh to your inbox to learn more about at-scale software development.
REQUIRED
 
It seems that you've previously unsubscribed from our newsletter in the past. Click the button below to open the re-subscribe form in a new tab. When you're done, simply close that tab and continue with this form to complete your subscription.
Welcome and thank you for joining The New Stack community!
Please answer a few simple questions to help us deliver the news and resources you are interested in.
REQUIRED
REQUIRED
REQUIRED
REQUIRED
REQUIRED
Great to meet you!
Tell us a bit about your job so we can cover the topics you find most relevant.
REQUIRED
REQUIRED
REQUIRED
REQUIRED
REQUIRED
 
Welcome!

We’re so glad you’re here. You can expect all the best TNS content to arrive Monday through Friday to keep you on top of the news and at the top of your game.

What’s next?

Check your inbox for a confirmation email where you can adjust your preferences and even join additional groups.

Become a TNS follower on LinkedIn.

Check out the latest featured and trending stories while you wait for your first TNS newsletter.

PREV
of
NEXT
VOXPOP
As a JavaScript developer, what non-React tools do you use most often?
Angular
0%
Astro
0%
Svelte
0%
Vue.js
0%
Other
0%
I only use React
0%
I don't use JavaScript
0%
 
NEW! Try Stackie AI
Cloud Native Ecosystem Containers Databases Edge Computing Infrastructure as Code Linux Microservices Open Source Networking Storage
3 Factors Many Platform Engineers Still Get Wrong
May 27th 2025 8:00am, by Doug Sillars
Cloud Realities Are Slowing AI Ambitions
May 23rd 2025 4:18pm, by Mike Hicks
Red Hat's AI Platform Now Has an AI Inference Server
May 21st 2025 12:00pm, by Steven J. Vaughan-Nichols
6 IaC Tips for Cloud Practitioners
May 21st 2025 9:00am, by Ido Neeman
How To Accelerate Edge Application Deployment at Scale
May 20th 2025 1:30pm, by Alexsander Petrenko
Future-Proofing AI: Repeating Mistakes or Learning From the Past?
Jun 3rd 2025 7:00am, by Alex Zenla
How To Fill the Open Source Cracks in Your Container Foundation
Jun 2nd 2025 9:00am, by Vicki Walker
WizOS: A New Enterprise Linux Built on Alpine’s Secure Foundation
Jun 2nd 2025 6:00am, by Steven J. Vaughan-Nichols
Docker’s Best-Kept Secret: How Observability Saves Developers’ Sanity
May 31st 2025 10:00am, by Aditya Gupta
Build GenAI Applications Locally With Docker Model Runner
May 23rd 2025 6:00am, by Janakiram MSV
The Power of TIG Stack: Mastering Time Series Data Management
Jun 3rd 2025 9:00am, by Anais Dotis-Georgiou
Enterprise AI Success Demands Real-Time Data Platforms
Jun 2nd 2025 7:00am, by Tim Rottach
TanStack Adds Database, WordPress Creates AI Team
May 31st 2025 5:00am, by Loraine Lawson
Top 4 Observability Risks
May 30th 2025 9:10am, by Abby Ross
PostgreSQL 18 Delivers Significant Performance Gains for OLTP and Analytics
May 28th 2025 6:00am, by Jelani Harper
How To Accelerate Edge Application Deployment at Scale
May 20th 2025 1:30pm, by Alexsander Petrenko
How to Use AI to Detect PPE Compliance in Edge Environments
May 13th 2025 7:00am, by Sathiyadev Thangaswamy
Remote MCP Servers: Inevitable, Not Easy
May 12th 2025 12:00pm, by Michael Field
Q&A: Nutanix CEO Rajiv Ramaswami on the Cloud Native Enterprise
May 12th 2025 7:00am, by Joab Jackson
Build Edge Native Apps With WebAssembly
May 7th 2025 8:00am, by Matt Butcher
Why CI/CD Alone Won’t Cut It for Infrastructure as Code
May 29th 2025 10:00am, by Marcin Wyszynski
The AI Code Generation Problem Nobody's Talking About
May 29th 2025 8:00am, by Michelle Gienow
Red Hat Ansible and HashiCorp Terraform Will Be Coming Together
May 28th 2025 7:00am, by Steven J. Vaughan-Nichols
6 IaC Tips for Cloud Practitioners
May 21st 2025 9:00am, by Ido Neeman
IaC Is Too Complicated. Where’s That ‘Easy Button’?
May 19th 2025 6:06am, by Vicki Walker
WizOS: A New Enterprise Linux Built on Alpine’s Secure Foundation
Jun 2nd 2025 6:00am, by Steven J. Vaughan-Nichols
OpenSUSE Tumbleweed: A Powerhouse, Rock-Solid Linux Desktop Distro
May 31st 2025 6:00am, by Jack Wallen
Red Hat Goes All in on AI-Powered Lightspeed System Admin Tools 
May 30th 2025 6:00am, by Steven J. Vaughan-Nichols
Linux Kernel 6.15 Boosts Virtualization, GPU, and CPU Performance
May 29th 2025 5:00am, by Damon M. Garn
Ubuntu Budgie 25.04: One of the Best Desktops on the Market
May 24th 2025 8:00am, by Jack Wallen
Reimagining Environments for Cloud Native Architectures
May 19th 2025 11:00am, by Arjun Iyer
Why Microservice Environments Break: Lack of Unification
May 12th 2025 6:07am, by Anirudh Ramanathan
Why Coordinating Microservice Changes Is Still a Mess
Apr 24th 2025 10:00am, by Anirudh Ramanathan
How to Implement the Saga Architectural Pattern in Microservices
Apr 21st 2025 6:28am, by Zziwa Raymond Ian
Scale Microservices Testing Without Duplicating Environments
Apr 15th 2025 9:00am, by Arjun Iyer
AI Agents Let Developers Kiss These 4 Chores Goodbye
May 30th 2025 7:40am, by Loraine Lawson
PostgreSQL 18 Delivers Significant Performance Gains for OLTP and Analytics
May 28th 2025 6:00am, by Jelani Harper
How Java Sparked an Open Source Revolution 30 Years Ago
May 27th 2025 4:00pm, by Darryl K. Taft
Open Source KubeVirt: VM Management With Kubernetes Is a Work in Progress
May 27th 2025 12:16pm, by B. Cameron Gain
Traceloop Launches an Observability Platform for LLM-Based Apps
May 27th 2025 8:30am, by Frederic Lardinois
Companies Must Embrace Bespoke AI Designed for IT Workflows
May 23rd 2025 10:00am, by Ramprakash Ramamoorthy
CNCF and Synadia Reach an Agreement on NATS
May 5th 2025 7:33am, by Steven J. Vaughan-Nichols
Gateway API or Ingress: A Developer’s Guide to Kubernetes Routing
May 2nd 2025 6:00am, by Janakiram MSV
Synadia Attempts To Reclaim NATS Trademark Back From CNCF
Apr 29th 2025 8:00am, by Steven J. Vaughan-Nichols
NVIDIA GTC 2025 Wrap-Up: 18 New Products to Watch
Apr 18th 2025 11:00am, by Keith Pijanowski
Why Streaming Is the Power Grid for AI-Native Data Platforms
Jun 2nd 2025 11:00am, by Tyler Rockwood
Modernization: Storage Strategies for the Cloud Era
May 28th 2025 1:00pm, by Carol Platz
Nutanix Unveils Major Platform Expansions at .NEXT 2025
May 8th 2025 12:00pm, by Chris J. Preimesberger
Eliminate Application Timeouts With Software-Defined Storage
May 8th 2025 9:00am, by Carol Platz
Kafka Tiered Storage: Store More, But Pay Less
May 7th 2025 2:00pm, by Anil Inamdar
AI AI Engineering API Management Backend development Data Frontend Development Large Language Models Security Software Development WebAssembly
A Chief AI Officer Won't Fix Your AI Problems
Jun 3rd 2025 1:00pm, by
Dream 7B: A Powerful and Open Diffusion Language Model
Jun 3rd 2025 10:00am, by
OpenAI’s Sam Altman: AI Is Now Ready for the Enterprise
Jun 3rd 2025 8:25am, by
Future-Proofing AI: Repeating Mistakes or Learning From the Past?
Jun 3rd 2025 7:00am, by
Snowflake Streamlines Data Analysis for Enterprise AI
Jun 3rd 2025 6:00am, by
Future-Proofing AI: Repeating Mistakes or Learning From the Past?
Jun 3rd 2025 7:00am, by
Snowflake Streamlines Data Analysis for Enterprise AI
Jun 3rd 2025 6:00am, by
Microsoft Targets AI 'Holy Grail' With Windows ML 2.0
May 31st 2025 9:00am, by
Claude Opus 4 With Claude Code: A Developer Walkthrough
May 31st 2025 8:00am, by
AI Agents Let Developers Kiss These 4 Chores Goodbye
May 30th 2025 7:40am, by
How to Use Docusign APIs to Embed Custom Document Signing in an App
May 28th 2025 2:00pm, by
Boomi Delivers Agentstudio for AI Agent Development
May 22nd 2025 4:00pm, by
Beyond API Uptime: Modern Metrics That Matter
May 22nd 2025 6:17am, by
5 'Cheat Codes' for Building Better APIs
May 21st 2025 8:00am, by
Why APIs Are Essential and MCP Is Optional (for Now)
May 8th 2025 8:00am, by
Next.js Deployment Spec Simplifies Frontend Hosting
May 6th 2025 12:00pm, by
A Practical Guide To Building a RAG-Powered Chatbot
May 5th 2025 12:00pm, by
JavaScript's Missing Link: Wasp Offers Full Stack Solution
Mar 26th 2025 2:00pm, by
Pagoda: A Web Development Starter Kit for Go Programmers
Mar 19th 2025 6:10am, by
Apollo: GraphQL Now Connects to REST APIs With Little Fuss
Mar 11th 2025 7:30am, by
The Power of TIG Stack: Mastering Time Series Data Management
Jun 3rd 2025 9:00am, by
Snowflake Streamlines Data Analysis for Enterprise AI
Jun 3rd 2025 6:00am, by
Why Streaming Is the Power Grid for AI-Native Data Platforms
Jun 2nd 2025 11:00am, by
Can OpenSearch Shut Down Those Bad Vector Search Results? 
May 30th 2025 10:56am, by
Top 4 Observability Risks
May 30th 2025 9:10am, by
TanStack Adds Database, WordPress Creates AI Team
May 31st 2025 5:00am, by
When To Use Progressive Web Apps and When To Go Native
May 29th 2025 2:00pm, by
Empowering IT Teams Through Seamless UI and AI Agents
May 27th 2025 6:00am, by
How to Build Multistep Forms in React
May 22nd 2025 12:00pm, by
Ladybird: That Rare Breed of Browser Based on Web Standards
May 21st 2025 2:00pm, by
Dream 7B: A Powerful and Open Diffusion Language Model
Jun 3rd 2025 10:00am, by
Claude Opus 4 With Claude Code: A Developer Walkthrough
May 31st 2025 8:00am, by
TanStack Adds Database, WordPress Creates AI Team
May 31st 2025 5:00am, by
New Tools Help LLM Developers Choose Better Pre-Training Data
May 29th 2025 9:00am, by
Self-Aware AI: Building Adaptive LLM Decision Agents
May 29th 2025 7:00am, by
How To Fill the Open Source Cracks in Your Container Foundation
Jun 2nd 2025 9:00am, by
WizOS: A New Enterprise Linux Built on Alpine’s Secure Foundation
Jun 2nd 2025 6:00am, by
What HAL 9000 Teaches Us About AI-Driven Authorization
May 30th 2025 12:00pm, by
Linux Kernel 6.15 Boosts Virtualization, GPU, and CPU Performance
May 29th 2025 5:00am, by
Security Firm Snyk Tackles AI Coding's Perfect Storm
May 28th 2025 10:06am, by
What Is Output Formatting in Python and How Do You Do It?
Jun 2nd 2025 3:00pm, by
Scratch That Itch for Young Developers
Jun 1st 2025 6:01am, by
Microsoft Targets AI 'Holy Grail' With Windows ML 2.0
May 31st 2025 9:00am, by
Claude Opus 4 With Claude Code: A Developer Walkthrough
May 31st 2025 8:00am, by
Google Study: 65% of Developer Time Wasted Without Platforms
May 30th 2025 3:00pm, by
The State of JavaScript Debugging in WebAssembly
May 19th 2025 1:30pm, by
Build Edge Native Apps With WebAssembly
May 7th 2025 8:00am, by
GraalVM (Finally) Gets Java for WebAssembly
Apr 22nd 2025 4:00pm, by
Hyperlight Wasm: Azure Goes the Final Wasi Mile
Apr 3rd 2025 9:00am, by
Endor: WebAssembly-Based Server in the Browser
Mar 29th 2025 1:00pm, by
AI Operations CI/CD Cloud Services DevOps Kubernetes Observability Operations Platform Engineering
Why Streaming Is the Power Grid for AI-Native Data Platforms
Jun 2nd 2025 11:00am, by Tyler Rockwood
Time Series Forecasting: An Open Source, No-Code Solution
May 27th 2025 8:00am, by Anais Dotis Georgiou
AI Is Quickly Making IT Teams and Developers From Invisible to Indispensable
May 23rd 2025 11:00am, by Neil McRae
Developers Can Now ‘Uber’ GPUs With NVIDIA’s Lepton Platform
May 20th 2025 11:30am, by Agam Shah
SAP Unveils New AI Tools for Developers
May 20th 2025 7:20am, by Loraine Lawson
Why 90% of Microservices Still Ship Like Monoliths
Jun 3rd 2025 8:00am, by Arjun Iyer
Why CI/CD Alone Won’t Cut It for Infrastructure as Code
May 29th 2025 10:00am, by Marcin Wyszynski
Why Mobile App Reliability Is So Complicated
May 28th 2025 8:00am, by Virna Sekuj
Build an AI Chat Assistant With Stream and OpenAI
May 23rd 2025 12:00pm, by Danny Adams
CodeRabbit's AI Code Reviews Now Live Free in VS Code, Cursor
May 22nd 2025 1:00pm, by Darryl K. Taft
SAP Simplifies ERP Data Access for Developers
May 28th 2025 5:00pm, by Loraine Lawson
AWS Revives and Updates Its Customer Carbon Footprint Tool
May 28th 2025 11:00am, by Charles Humble
Cloud Realities Are Slowing AI Ambitions
May 23rd 2025 4:18pm, by Mike Hicks
Clouds, Code, and Control: The New Open Source Power Struggle
May 22nd 2025 10:10am, by Dawn Foster
Running AI Workloads Responsibly in the Cloud
May 14th 2025 11:00am, by Sam Prakash Bheri
A Chief AI Officer Won't Fix Your AI Problems
Jun 3rd 2025 1:00pm, by Rohit Choudhary
Red Hat Ansible and HashiCorp Terraform Will Be Coming Together
May 28th 2025 7:00am, by Steven J. Vaughan-Nichols
AI Is Quickly Making IT Teams and Developers From Invisible to Indispensable
May 23rd 2025 11:00am, by Neil McRae
IaC Is Too Complicated. Where’s That ‘Easy Button’?
May 19th 2025 6:06am, by Vicki Walker
Keeping Up With AI: The Painful New Mandate for Software Engineers
May 16th 2025 11:15am, by Manjunath Bhat
Kubernetes vs. Docker Compose: Which Orchestration Tool Should You Choose?
Jun 3rd 2025 4:00am, by Sunny Yadav
From YAML to Platforms: The Kubernetes Deployment Journey
May 29th 2025 11:00am, by Bhushan Nemade
Open Source KubeVirt: VM Management With Kubernetes Is a Work in Progress
May 27th 2025 12:16pm, by B. Cameron Gain
How To Remove a Deployment in Kubernetes: Methods, Steps and Tools
May 22nd 2025 5:00am, by Sunny Yadav
OrbStack: A Deep Dive for Container and Kubernetes Development
May 16th 2025 6:00am, by Janakiram MSV
Zymtrace Launches End-to-End GPU and CPU Observability
Jun 3rd 2025 11:00am, by Charles Humble
Bridging the Gap Between Monitoring and Incident Resolution
Jun 2nd 2025 8:00am, by Cristina Dias
Docker’s Best-Kept Secret: How Observability Saves Developers’ Sanity
May 31st 2025 10:00am, by Aditya Gupta
Can OpenSearch Shut Down Those Bad Vector Search Results? 
May 30th 2025 10:56am, by B. Cameron Gain
Fluent Bit, a Specialized Event Capture and Distribution Tool
May 30th 2025 10:00am, by Phil Wilkins
Aptori Is Building an Agentic AI Security Engineer
Jun 3rd 2025 12:00pm, by Frederic Lardinois
Zymtrace Launches End-to-End GPU and CPU Observability
Jun 3rd 2025 11:00am, by Charles Humble
Bridging the Gap Between Monitoring and Incident Resolution
Jun 2nd 2025 8:00am, by Cristina Dias
Fluent Bit, a Specialized Event Capture and Distribution Tool
May 30th 2025 10:00am, by Phil Wilkins
Red Hat Goes All in on AI-Powered Lightspeed System Admin Tools 
May 30th 2025 6:00am, by Steven J. Vaughan-Nichols
Google Study: 65% of Developer Time Wasted Without Platforms
May 30th 2025 3:00pm, by Todd R. Weiss
Fluent Bit, a Specialized Event Capture and Distribution Tool
May 30th 2025 10:00am, by Phil Wilkins
3 Factors Many Platform Engineers Still Get Wrong
May 27th 2025 8:00am, by Doug Sillars
To Fix Platform Engineering, Build What Users Actually Want
May 18th 2025 10:00am, by Shweta Vohra
Building Trust in AI-Driven QA: Ensuring Transparency and Explainability With GenAI
May 16th 2025 5:00am, by Saqib Jan
C++ Developer tools Go Java JavaScript Programming Languages Python Rust TypeScript
How to Build Multistep Forms in React
May 22nd 2025 12:00pm, by Vinod Pal
EngFlow Makes C++ Builds 21x Faster and Software a Lot Safer
Apr 3rd 2025 3:00pm, by Darryl K. Taft
Memory-Safe C: TrapC's Pitch to the C ISO Working Group
Mar 12th 2025 7:00am, by David Cassel
Bjarne Stroustrup on How He Sees C++ Evolving
Mar 7th 2025 6:00am, by David Cassel
Curl's Daniel Stenberg on Securing 180,000 Lines of C Code
Feb 23rd 2025 6:00am, by David Cassel
The AI Code Generation Problem Nobody's Talking About
May 29th 2025 8:00am, by Michelle Gienow
How to Use Docusign APIs to Embed Custom Document Signing in an App
May 28th 2025 2:00pm, by Karissa Jacobsen
The New Bottleneck: AI That Codes Faster Than Humans Can Review
May 27th 2025 11:00am, by Michelle Gienow
Exploring the JetBrains AI Assistant for Visual Studio Code
May 24th 2025 7:00am, by David Eastman
CodeRabbit's AI Code Reviews Now Live Free in VS Code, Cursor
May 22nd 2025 1:00pm, by Darryl K. Taft
Prepare Your Mac for Go Development
Apr 12th 2025 7:00am, by Damon M. Garn
Pagoda: A Web Development Starter Kit for Go Programmers
Mar 19th 2025 6:10am, by Loraine Lawson
Microsoft TypeScript Devs Explain Why They Chose Go Over Rust, C#
Mar 18th 2025 7:00am, by David Cassel
Go Power: Microsoft's Bold Bet on Faster TypeScript Tools
Mar 12th 2025 1:00pm, by Darryl K. Taft and Loraine Lawson
Introduction to Go Programming Language
Jan 17th 2025 9:00am, by TNS Staff
How Java Sparked an Open Source Revolution 30 Years Ago
May 27th 2025 4:00pm, by Darryl K. Taft
Azul CTO: Java at 30 Still Rules Enterprise Dev
May 23rd 2025 1:00pm, by Darryl K. Taft
Dead Code Detection Just Got Easier for Java Developers
May 15th 2025 5:00pm, by Darryl K. Taft
Java at 30: The Genius Behind the Code That Changed Tech
May 15th 2025 9:00am, by Darryl K. Taft
GraalVM (Finally) Gets Java for WebAssembly
Apr 22nd 2025 4:00pm, by B. Cameron Gain
How to Use Docusign APIs to Embed Custom Document Signing in an App
May 28th 2025 2:00pm, by Karissa Jacobsen
The State of JavaScript Debugging in WebAssembly
May 19th 2025 1:30pm, by B. Cameron Gain
Does LLM Write Performant Code? Study Says No
May 17th 2025 5:00am, by Loraine Lawson
Build a Real-Time Voting App With Stream Chat and Next.js
May 14th 2025 7:00am, by Ankur Tyagi
Svelte Adds Asynchronous Sync Inside Components
May 10th 2025 7:00am, by Loraine Lawson
What Is Output Formatting in Python and How Do You Do It?
Jun 2nd 2025 3:00pm, by Jack Wallen
How Java Sparked an Open Source Revolution 30 Years Ago
May 27th 2025 4:00pm, by Darryl K. Taft
Azul CTO: Java at 30 Still Rules Enterprise Dev
May 23rd 2025 1:00pm, by Darryl K. Taft
How to Build Multistep Forms in React
May 22nd 2025 12:00pm, by Vinod Pal
Java at 30: The Genius Behind the Code That Changed Tech
May 15th 2025 9:00am, by Darryl K. Taft
What Is Output Formatting in Python and How Do You Do It?
Jun 2nd 2025 3:00pm, by Jack Wallen
Time Series Forecasting: An Open Source, No-Code Solution
May 27th 2025 8:00am, by Anais Dotis Georgiou
Python Pandas Ditches NumPy for Speedier PyArrow
May 27th 2025 7:00am, by Joab Jackson
Python's Security Savior: Chainguard Battles Supply Chain Risk
May 14th 2025 9:00am, by Darryl K. Taft
Python's Open Source DNA Powers Anaconda's New AI Platform
May 13th 2025 4:00pm, by Jeffrey Burt
Microsoft TypeScript Devs Explain Why They Chose Go Over Rust, C#
Mar 18th 2025 7:00am, by David Cassel
Go Power: Microsoft's Bold Bet on Faster TypeScript Tools
Mar 12th 2025 1:00pm, by Darryl K. Taft and Loraine Lawson
Oracle Won’t Release ‘JavaScript’ Without a Fight
Jan 11th 2025 5:00am, by Loraine Lawson
The Year in JavaScript: Top JS News Stories of 2024
Dec 27th 2024 6:30am, by Loraine Lawson
How OOP Developers Can Get To Know TypeScript Through Deno
Oct 19th 2024 8:00am, by David Eastman
CI/CD / Infrastructure as Code

Why CI/CD Alone Won’t Cut It for Infrastructure as Code

As infrastructure grows in complexity, relying solely on CI/CD leads to drift, bottlenecks, and breakdowns — dedicated orchestration is the next step in IaC maturity.
May 29th, 2025 10:00am by
Featued image for: Why CI/CD Alone Won’t Cut It for Infrastructure as Code
Photo by Tudor Baciu on Unsplash.

Let’s be honest, Infrastructure as Code (IaC) was supposed to make everything easier.

And for a while after you start using it, that’s what happens. The first time you swap manual provisioning for Terraform or Ansible, it feels like magic. No more clicking through cloud dashboards. No more “who made this change?” mysteries. Everything is version-controlled, repeatable, and, in theory, collaborative.

But at some point, the honeymoon ends.

Your infrastructure scales, your team grows, and suddenly, that neatly organized IaC repo turns into a sprawling, interconnected mess. Engineers start stepping on each other’s toes. A single typo in a shared module can take down production (don’t ask me how I know). Your DevOps team becomes a bottleneck instead of an enabler.

And here’s the kicker: this isn’t just your team’s problem.

In a recent survey commissioned by Spacelift, 45% of organizations believe they have a high level of infrastructure automation, but only 14% do. There’s a huge gap between perception and reality. Companies think they’re operating at a mature level, but in practice, they’re still running into the same pitfalls: inconsistency, governance struggles, and the classic tradeoff between speed and control.

So, how do you know where you stand? And more importantly, how do you level up?

The 4 Stages of IaC Maturity

Infrastructure automation isn’t binary — it’s a spectrum. Some teams are just starting, while others have built robust, self-service platforms with guardrails and automation-first workflows.

To map this out, we used the survey results to build an Infrastructure Automation Leadership Index. It breaks maturity into four stages:

  1. Experimenter – You’re testing the waters. Some automation, lots of manual workflows.
  2. Adopter – You’ve committed to IaC, but standardization is a challenge.
  3. Optimizer – You’ve streamlined deployments, but gaps remain in security, compliance, and scalability.
  4. Leader – Infrastructure is fully automated, self-service is the norm, and security is built-in.

Most organizations fall somewhere between Adopter and Optimizer. They’ve seen the value of IaC, but they’re struggling to scale it.

And this is where IaC orchestration comes into play.

When Does IaC Orchestration Make Sense?

IaC orchestration isn’t for teams just experimenting with automation. If you’re still figuring out Terraform basics, you don’t need orchestration yet.

But once you’re in Adopter territory, you start seeing patterns: Some good — hey, we can spin up entire environments in minutes! Some not-so-good — why does every team have a slightly different way of provisioning infrastructure?

At this stage, teams often misapply DevOps best practices to IaC. They treat infrastructure like application code, running it through general-purpose CI/CD pipelines. And for small-scale deployments, this might work.

But as complexity grows, you hit a wall.

IaC is not like application code.

Application deployments are stateless — today’s build doesn’t care about last week’s. Infrastructure is stateful. Your Terraform config today includes the database you created last year, the DNS entries from last month, and the load balancer from last week.

That’s why treating IaC like app code fails. It’s why infrastructure requires dedicated orchestration, just like databases have schema migration tools.

So if you’re an Adopter trying to become an Optimizer, orchestration will give you the most significant boost. And if you’re aiming for Leader status, it’s a must-have.

Two Big Misconceptions About IaC Orchestration

I’ve had a lot of conversations with DevOps leaders who hesitate on orchestration. Usually, they bring up one of two concerns:

1. ‘Can’t we just use our existing CI/CD tools?’

I get it — why add another tool when you already have Jenkins, GitHub Actions, or whatever your team prefers?

But here’s the thing: CI/CD pipelines weren’t designed for infrastructure. They’re optimized for quick, stateless deployments — not for managing dependencies across thousands of interwoven cloud resources.

Teams try to brute-force through this by bolting on custom scripts and workarounds. But eventually, they run into race conditions, drift, or — worst case — accidentally take down a live production database.

The reality is that once you reach a certain scale, you need an orchestration layer built for infrastructure, not application code.

2. ‘Won’t this create lock-in?’

No one wants to be trapped in a proprietary ecosystem. That’s why the best IaC orchestration solutions use open standards—storing Terraform state externally, using Docker for execution environments, and leveraging Open Policy Agent for governance.

Lock-in happens when you build a fragile, in-house solution that only your team understands. Good orchestration reduces lock-in by standardizing workflows, not boxing you into a specific vendor.

Avoiding the Common IaC Traps

Even with orchestration, DevOps teams fall into two common pitfalls.

1. The ‘IaC Monolith’ Problem

Some teams consolidate all their infrastructure into a single massive project. That sounds efficient, right? One place to manage everything?

Wrong.

Monoliths become impossible to manage at scale. They take forever to sync, get throttled by cloud APIs, and eventually crash. A common example is a Terraform monolith, also known as a Terralith: it sounds like a good idea at the start, but it becomes complicated and troublesome as your infrastructure grows.

But the opposite extreme — breaking everything into tiny, fragmented IaC projects — is just as bad. It adds too much overhead and makes dependency management a nightmare.

The key is finding the right level of modularization for your team’s needs.

2. Overly Prescriptive vs. Wild West

If you’re rolling out self-service infrastructure, you need guardrails. But too many restrictions frustrate developers, forcing them to constantly ask DevOps for special exceptions.

On the other hand, too much freedom leads to chaos. Teams deploy infrastructure in entirely different ways, security vulnerabilities creep in, and costs spiral out of control.

The sweet spot? Provide open-ended building blocks with built-in policies for security and cost control.

How To Move Up the IaC Maturity Curve

So, where do you go from here? Consider these steps to make forward progress:

  1. Assess your current stage. Are you an Adopter struggling with standardization? An Optimizer working through governance challenges? Be honest about where you are.
  2. Identify your roadblocks. Are you dealing with infrastructure bottlenecks, compliance headaches, or constant rework? Prioritize what’s slowing you down.
  3. Adopt a gradual approach. Don’t try to build the perfect IaC setup from day one. Start small, iterate, and adjust as you go.
  4. Invest in orchestration when you’re ready. If you’re hitting scaling challenges, now’s the time to move beyond basic automation.

At the Leader stage, automation isn’t just about speed — it’s about control, security, and developer enablement. That’s where the real ROI comes in.

Final Thought: The ‘Speed-Control Paradox’

One of the most interesting findings from our survey was what we call the Speed-Control Paradox.

Teams early in their IaC journey focus on speed — deploying infrastructure faster. But as they mature, they realize the real challenge is control — governance, compliance and security.

The best teams — the Leaders — balance both. They build fast, but with governance built into every process. They enable developers while keeping security and compliance in check.

And at the end of the day, that’s the goal.

TRENDING STORIES
Created with Sketch.
Marcin Wyszynski is the co-founder and Chief R&D Officer at Spacelift; he is also a co-founder of the OpenTofu project. He started his career as an SRE for Google, then moved into software engineering at Facebook. An entrepreneur at heart,...
Read more from Marcin Wyszynski
SHARE THIS STORY
TRENDING STORIES
TNS owner Insight Partners is an investor in: Spacelift, Control, Docker.
TRENDING STORIES
TNS DAILY NEWSLETTER Receive a free roundup of the most recent TNS articles in your inbox each day.