This article examines three Infrastructure as Code tools—Terraform, Pulumi, and Crossplane—highlighting their unique approaches to managing cloud infrastructure. It details how each tool fits into modern practices and discusses their strengths, weaknesses, and operational differences.

Identifying ownership of non-human identities (NHIs) created through Infrastructure as Code (IaC) poses significant challenges, particularly when automated processes are involved. A tag-based approach is proposed to help determine the human responsible for IaC-generated identities by linking code commits to the resources created, although this requires careful analysis of various components within the IaC framework.