Michael Aldridge

1. By policy, don't make changes outside of Terraform. This will slow you down a little to start with, but developing the culture of infrastructure via terraform pushes is part of what makes IaC successful. Obviously you should maintain break-glass capability, but doing all changes via Terraform will get you what you want.

2. Its much better to think of them as two tools that complement each other. In Void Linux we use terraform for setting up resources on clouds and setting up SDN links between them. Provisioning hosts on the other hand is best left to a tool that is designed for that, and Ansible is a good tool for this. There are certainly points where I would rather have a single tool to rule them all, but I suspect in that case it wouldn't do either task particularly well.

If you absolutely had to pick one tool to do both use cases, I'd go with Terraform and have it invoke an ansible-like provisioning process.

I'm currently on PagerDuty, but I'm about to add enough users to go out of the starter tier, which will dramatically increase my license cost. PagerDuty is, in my experience, quite clunky, and I'm looking for alternatives. Squadcast is one I've found, and another is xMatters. Between the three, I'm currently leaning towards xMatters, but I'd like to know what people suggest.

Your development environment should ideally match the production environment as closely as possible. Though it will be more work, it will prevent weird issues from creeping into your code over time as developers try to engineer around differences in the test environment. I make the assumption you are running Kubernetes in prod, but the recommendation stands regardless.

If you don't want to run full k8s take a look at alternate API compatible distributions such as k3s, and remember that in a development install, you don't need to maintain the same reliability or integrity promises that you make in prod.