Announcing Infisical Providers for Pulumi ESC: Dynamic Login and Dynamic Secrets

Pulumi ESC has enhanced its integration capabilities by incorporating Infisical, an open-source secrets management platform, thereby expanding its ecosystem for seamless and secure access to stored secrets. This update introduces two dynamic providers: infisical-login and infisical-secrets. The infisical-login provider facilitates secure authentication by generating short-lived OIDC access tokens, addressing the security risks of long-lived credentials. This is particularly useful for direct interaction with Infisical using CLI or SDKs without storing static tokens. The infisical-secrets provider allows users to dynamically fetch secrets from Infisical projects into the Pulumi ESC environment, centralizing secret consumption. Pulumi ESC acts as a robust broker by securely handling the generation of temporary authentication credentials and fetching application secrets from various providers, including Infisical and cloud platforms like AWS, Azure, and GCP. These enhancements aim to improve security and streamline workflows, encouraging users to explore these new capabilities through detailed configuration options and community support.