Terraform 1.10: Ephemeral Resources and Values

This 25-minute talk by Elif Samedin from HashiCorp explores the new ephemeral values feature introduced in Terraform 1.10, designed to enhance security for sensitive data. Learn how ephemeral values prevent sensitive information like private keys and API tokens from being stored in plaintext within Terraform's state or plan files, eliminating potential security vulnerabilities. Discover the importance of this security enhancement for protecting your infrastructure, implementation strategies, and best practices for safeguarding sensitive data between operations. The presentation addresses previous security concerns where secrets extracted from data sources or created by resources (such as random passwords) were vulnerable to disclosure if state files were improperly accessed, and demonstrates how the new feature creates a more secure infrastructure automation workflow.