All companies share the same fundamental infrastructure needs.
Thoughtfully opinionated, built for and proven in production at enterprise scale, from the makers of Terragrunt.
300+ best-practice Terraform/OpenTofu modules
Every commit goes through a suite of automated unit and integraiton tests written with Terratest
Every module is thoroughly documented and includes example code
Built with security-first principles, validated with security scanning, and compliant with CIS AWS Foundations Benchmark
Modules are continually updated so your infrastructure never falls out of compliance
Clear release notes and auditable logs show when updates and fixes happen
SMEs are actively making updates, additions, and fixes to the library
Updates cover the most current best practices on AWS, and the latest Terraform/OpenTofu versions
Automatically stay updated to the latest releases when you use Gruntwork Patcher
Empower your developers with a curated catalog of approved modules they can quickly scaffold and deploy.
Combine and configure modules to create your own catalog of modules that meets your company's requirements
Gruntwork’s git repo conventions organize your private module catalog so devs know what’s approved and available for use
Devs can browse your catalog even across repos using the terragrunt catalog command, and then quickly scaffold new code for new instances
Quickly search the entire catalog of approved modules with the terragrunt catalog command
Leverage our open source Boilerplate tool to create templates for common module usage patterns
Scaffold code from the modules and templates in your repos using the terragrunt scaffold command. Just fill in the required inputs and create a PR!
-1.svg){kind=logo}
-1.svg){kind=small}
Account baselines compliant with the CIS AWS Foundations Benchmark out-of-the-box
Lambda, API Gateway, Fargate, Aurora, Serverless, and more
VPC, Transit Gateway, IPAM, DualStack/IPv6 (beta), Application Load Balancer, CloudFront, Route 53 and more
Secrets management, Encryption, Intrusion detection, policy as code
EKS (Kubernetes), Helm, ECS, EC2, Auto Scaling Gruops, and more
Metrics, Logs, Dashboards, Alerts, Observability
MySQL, Postgres, Aurora, Redis, Memcached, S3, ECR, EBS, EFS, and more
Elasticsearch, MSK (Kafka), SQS, Kinesis, Redshift and more
Account baselines, Control Tower integration, SSO, IAM, OIDC, GuardDuty, CloudTrail, AWS Config, Macie and more
