Introduction
inforge is a Go toolchain that turns declarative YAML resource definitions into real cloud deployments using Pulumi and GitHub Actions. It enforces an opinionated, multi-region, multi-provider infrastructure model with built-in runtime secret delivery for services.
What inforge does
- Validates your resource definitions against JSON schemas
- Previews what Pulumi would create, update, or destroy
- Deploys your infrastructure via the Pulumi Automation API
- Delivers secrets to services — writing each service's provider coordinates and a host-key-encrypted machine-identity credential to the host, so the service fetches its own secrets at runtime (no secret value is ever baked into an artifact)
- Provides reusable GitHub Actions so consumer repos get preview/deploy/reconcile
workflows with a single
uses:line
Supported providers
| Provider | Resources |
|---|---|
| Hetzner Cloud | Network, Compute |
| Cloudflare | DNS |
| Neon | Database (PostgreSQL) |
| Infisical | Secrets |