Increased exposure
The more tools you have, the harder it is to maintain security and compliance.
Limited access control
Enabling more developers to self-serve requires granting broader permissions, increasing your attack surface.
No Golden Paths
Lack of standardized infrastructure practices leads to a fragmented tech stack and delays in adopting new, more secure processes.
Unauthorized changes
Changes made outside your workflow — like manual interventions, custom scripts, and CLI-based resource changes — introduce drift.
Spacelift enables you to rapidly provision and configure infrastructure in a single integrated workflow while giving you the control to manage risk and meet compliance requirements.
Speed product innovation and developer-based provisioning without giving up security:
Meet your developers where they are, with the ability to self-manage their application and infrastructure deployment entirely in Kubernetes.
Enforce security best practices with Contexts to ensure environments meet requirements.
Keep track of who made what changes and detect what caused issues during deployment with Audit Trail.
Control access and permissions to provision, configure, and manage infrastructure:
Employ least privilege principles so team members have the minimum access required, with Spaces.
Ensure security and reduce the need to manage permissions, with SSO integration.
Implement an additional layer of security to protect data, with MFA.
Make it easy for developers to use predefined definitions and best practices:
Ensure resources respect your organization’s requirements with plan policies.
Provide Golden Paths via the UI or API with Blueprints you define.
Boost security and compliance with policies that put limits and controls on developer activity.
Spacelift monitors for drift within your infrastructure and optionally remediates it for you:
Get visibility into all resources deployed with your Spacelift account, even those that have drifted.
Bring resources back to expected state automatically with drift remediation.
Achieve a true GitOps workflow with drift detection that makes Git the single source of truth for your infrastructure state.
See how Spacelift makes it easy for you to manage your IaC, Ansible, and Kubernetes pipelines.
“The best part is that not only does Spacelift detect the drift, it automatically remediates it.”
Erik Osterman
CEO
"Because it’s based on Open Policy Agent rather than a vendor-specific language, it’s easier to work with. We’ve used it to build our own pipeline inside of Spacelift. It can do the plans for us across all of our pull requests, and generate a clear, easy-to-understand report that sticks around long enough that our developers can see it, without creating noise inside of their comments section"
Bo Beckwith
Senior Site Reliability Engineer
“To streamline our IaC process we built a strategy around policy and TF registry so that all modules are automatically approved based on a scoring system, removing the manual workaround, to free up the IaC DevOps team from reviews.”
Timur Bublik
Senior DevOps Engineer
“We can apply policies like ‘every Amazon resource must include one of these tags’. If anyone tries to submit a pull request which doesn’t have a tagged resource there’ll be an error and they can just go and fix that themselves. It is automating a considerable amount of manual work and getting rid of a lot of the toil involved in managing infrastructure systems.”
Alex Jurkiewicz
Team Lead, Senior Site Reliability Enginer
“The best part is that not only does Spacelift detect the drift, it automatically remediates it.”
Erik Osterman
CEO
"Because it’s based on Open Policy Agent rather than a vendor-specific language, it’s easier to work with. We’ve used it to build our own pipeline inside of Spacelift. It can do the plans for us across all of our pull requests, and generate a clear, easy-to-understand report that sticks around long enough that our developers can see it, without creating noise inside of their comments section"
Bo Beckwith
Senior Site Reliability Engineer
Learn how to integrate security tools into your workflows with Spacelift Custom Inputs.
Learn how to integrate security tools into your workflows with Spacelift Custom Inputs.
Learn moreSee how Spacelift’s number one priority is and always will be security. With our product, you not only minimize the chances of unauthorized access, but you also get improved resilience and reliability.
See how Spacelift’s number one priority is and always will be security. With our product, you not only minimize the chances of unauthorized access, but you also get improved resilience and reliability.
Learn moreIn this tutorial, you'll learn how to initiate the configuration of a worker pool in Spacelift
In this tutorial, you'll learn how to initiate the configuration of a worker pool in Spacelift
Learn more