Yes. If we use a null_resource that has the hashes of the source code files as a... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		felixhuttmann on Dec 31, 2020 \| parent \| context \| favorite \| on: AWS Lambda Terraform Cookbook with working example... Yes. If we use a null_resource that has the hashes of the source code files as a trigger, then in the `local-exec` provisioner of the null_resource, we can run the build. The build can also be run remotely (we use google cloud build) to be independent of the developer's machine architecture and operating system, which is important for native dependencies. Terraform will not re-run the null resource provisioner so long as the source code does not change, there is no need for a reproducible build.

talideon on Jan 1, 2021 [–]

For various reasons (mainly auditing purposes, but it also reduces any incidental infrastructure churn, and makes it easier to guarantee a rollback happened as expected), we need to ensure reproducibility, so it's a bit more important for us that we guarantee the artifacts produced are exactly what we expect.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact