Pulumi MCP Server (Official)

Official Pulumi MCP server enabling AI agents to interact with Pulumi's infrastructure-as-code platform — deploying stacks, querying resource state, managing cloud infrastructure, and accessing Pulumi AI documentation.

Evaluated Mar 06, 2026 (0d ago) vcurrent
Homepage ↗ Repo ↗ Developer Tools pulumi iac infrastructure-as-code mcp-server official cloud devops kubernetes
⚙ Agent Friendliness
78
/ 100
Can an agent use this?
🔒 Security
87
/ 100
Is it safe for agents?
⚡ Reliability
81
/ 100
Does it work consistently?

Score Breakdown

⚙ Agent Friendliness

MCP Quality
80
Documentation
85
Error Messages
80
Auth Simplicity
80
Rate Limits
62

🔒 Security

TLS Enforcement
100
Auth Strength
85
Scope Granularity
78
Dep. Hygiene
85
Secret Handling
85

HTTPS enforced. Token-based auth with team access controls. OIDC for CI/CD. Encrypted state storage. SOC 2 Type II, ISO 27001.

⚡ Reliability

Uptime/SLA
85
Version Stability
82
Breaking Changes
80
Error Recovery
78
AF Security Reliability

Best When

An agent needs to deploy, update, or query infrastructure defined in Pulumi stacks — especially when used alongside Pulumi AI for code generation.

Avoid When

You're using Terraform, AWS CDK, or other IaC tools — Pulumi-specific tooling won't help.

Use Cases

  • Querying Pulumi stack state for current infrastructure overview
  • Deploying infrastructure updates from agent-driven IaC workflows
  • Listing stack outputs for configuration values in agent workflows
  • Checking Pulumi Cloud deployment history and status
  • AI-assisted infrastructure generation using Pulumi AI

Not For

  • Teams using Terraform, CDK, or other IaC tools — use those integrations
  • Direct cloud provider API calls (use cloud provider MCPs instead)
  • Pulumi is a programming model — not suitable for one-off infrastructure queries

Interface

REST API
Yes
GraphQL
No
gRPC
No
MCP Server
Yes
SDK
Yes
Webhooks
Yes
OpenAPI Spec ↗

Authentication

Methods: api_token oidc
OAuth: No Scopes: Yes

Pulumi Cloud API tokens with team-based access controls. OIDC for CI/CD environments. Personal tokens for individual agents. Team tokens for shared agents.

Pricing

Model: per-seat
Free tier: Yes
Requires CC: No

Pulumi is free for individual use. MCP server is open source. Team features require paid plan.

Agent Metadata

Pagination
cursor
Idempotent
Partial
Retry Guidance
Documented

Known Gotchas

  • Pulumi operations can be long-running (minutes) — agents must handle async deployment status
  • Stack state is stored in Pulumi Cloud — operations require network access to state backend
  • Deployment previews (dry runs) should be run before applies in agent workflows
  • Cloud provider credentials must be configured separately from Pulumi credentials
  • Stack outputs can contain sensitive values — agents should not log these
  • Multi-stack deployments require careful ordering — dependency management is complex

Alternatives

azure aws-mcp terraform-cloud-api

Full Evaluation Report

Detailed scoring breakdown, competitive positioning, security analysis, and improvement recommendations for Pulumi MCP Server (Official).

$99
API endpoint ↗ Agent guide ↗ Report inaccuracy

Scores are editorial opinions as of 2026-03-06.

5220
Packages Evaluated
26151
Need Evaluation
173
Need Re-evaluation
Community Powered