Scale-Out Delivery Platform→
Complexity is inevitable. Tame it and gain your competitive advantage.
Capabilities
Pipelines→
Build the CI/CD workflows you need.
Test Engine→
Remove flaky tests, split tests, optimize performance.
Package Registries→
Speed up builds, lock down security.
Mobile Delivery Cloud→
Supercharge your mobile app delivery.
Bring your own compute
Self-hosted agents Self-hosted Kubernetes Self-hosted AWS Self-hosted Google Cloud
Hosted compute
Mac hosted agents Linux hosted agents
Replace Jenkins
Shift your software delivery into high gear.
Workflows for AI/ML
Tame the chaos of model delivery today to prepare for 10× tomorrow.
Testing at scale
Deliver quickly and confidently, at any scale.
Monorepo mojo
Scale your monorepo without scaling your problems.
Bazel orchestration
Unlock full-speed Bazel with dynamic pipelines and unlimited scale.
Webinars
Register for upcoming sessions or watch on-demand recordings.
Blog
Insights from the team building Buildkite.
Case studies
Real-world customer success stories.
Events
Join us at industry conferences and community meetups.
Changelog Plugins Releases

About

The company behind Scale-Out Software Delivery.

Careers

Join the team!

name: "Join Buildkite"
description: "Fetch all jobs, filter by relevance, and apply"
steps:
  - command: "curl -X GET 'https://boards-api.greenhouse.io/v1/boards/buildkite/jobs' \ -H 'Content-Type: application/json' \ -v"
    label: ":terminal: Fetch latest jobs"

Press and news Legal Brand assets

Follow Buildkite

Sign in Get started

Platform
/
Pipelines
/
Templates
/
CI/CD for AWS using Pulumi

CI/CD for AWS infrastructure using Pulumi

Preview and deploy AWS infrastructure changes using Pulumi.

Use template →

env:
  AWS_ROLE_ARN: arn:aws:iam::AWS-ACCOUNT-ID:role/SOME-ROLE
  PULUMI_STACK: xxx

steps:
  - label: ":pulumi: Preview"
    commands:
      - npm install
      - pulumi preview -s $PULUMI_STACK | tee preview
      - printf '```\n%b\n```\n' "$(cat preview)" | buildkite-agent annotate --style "info"
    plugins:
      - aws-assume-role-with-web-identity#v1.0.0:
          role-arn: $AWS_ROLE_ARN
      - docker#v5.9.0:
          image: "pulumi/pulumi-nodejs"
          propagate-aws-auth-tokens: true
          mount-buildkite-agent: true
          environment:
            - PULUMI_ACCESS_TOKEN

  - block: "Deploy?"

  - label: ":pulumi: Deploy"
    commands:
      - npm install
      - pulumi stack select $PULUMI_STACK
      - pulumi up -s $PULUMI_STACK --yes
    plugins:
      - aws-assume-role-with-web-identity#v1.0.0:
          role-arn: $AWS_ROLE_ARN
      - docker#v5.9.0:
          image: "pulumi/pulumi-nodejs"
          propagate-aws-auth-tokens: true
          mount-buildkite-agent: true
          environment:
            - PULUMI_ACCESS_TOKEN

Languages: JavaScript
Use cases: Infrastructure as code, Continuous integration, Continuous deployment
Platforms: Docker, AWS
Tools: Pulumi

CI/CD for AWS using Pulumi

Preview and deploy AWS infrastructure changes using Pulumi.

Use template →

CI/CD for AWS infrastructure using Pulumi

This template gives you a continuous integration and continuous deployment (CI/CD) pipeline that previews a Pulumi change before deploying it to AWS.

At a glance:

For Pulumi projects
Uses Node.js and npm
Requires Docker
Prompts for confirmation before deploying
Deploys to AWS

How it works

This template:

Assumes a role in AWS using Buildkite’s OIDC.
Installs Node dependencies using npm.
Prints a preview of the Pulumi change in an annotation on the build.
Asks for manual confirmation to deploy the change.
Deploys the Pulumi change to AWS with pulumi up.

The runtime environment uses a Docker image with the Pulumi CLI and Node.js.

Next steps

After you select Use template, you’ll:

Connect the Git repository with your Pulumi code.
Set Buildkite as an OIDC provider in AWS.
Set the AWS_ROLE_ARN environment variable to a role with permission to deploy Pulumi changes to your AWS account.
Set the PULUMI_STACK environment variable to the Pulumi Stack being deployed.
Store PULUMI_ACCESS_TOKEN in your pipeline secrets.
Configure the compute—run locally, on-premises, or in the cloud.
Run the pipeline.

You can then play around with the pipeline settings. For example, run the pipeline locally while you iterate on the definition or set a schedule to trigger a nightly build.

If you need help, please check our documentation, raise an issue , or reach out to support.

Platform

Hosting options

Resources

Company

Solutions

Legal

Support

© Buildkite Pty Ltd 2025