Recipe

Terraform / Pulumi IaC change review

Automate infrastructure-as-code pull-request reviews. Meridian diffs your plan output against policy, flags drift, and enforces tagging before merge.

Triggers

• PR opened against main
• terraform plan or pulumi preview pushed
• Scheduled nightly drift scan

Policy checks

• S3 buckets must block public access
• Security groups forbid 0.0.0.0/0 ingress
• Required tags present (cost-center, owner)
• Instance types within approved families

Output

Meridian posts a threaded review on the PR: pass/fail per resource, suggested fixes inline, and a summary comment with a compliance score.

Back to docs Try it →