ControlMonkey

IaC automation platform that reverse-engineers cloud resources to Terraform and reviews PRs for blast radius and compliance drift.

Provision

Visit website

Last reviewedMay 15, 2026

How we review

Overview

ControlMonkey is an end-to-end IaC automation platform built around Terraform and OpenTofu. It connects to cloud accounts (AWS, Azure, GCP, VMware) via cloud APIs and to Git repositories via VCS integrations, maintaining a live inventory of all cloud resources and comparing it against the declared state in your repositories.

Resources that exist outside Terraform — created manually or via scripts — are detected as unmanaged. An AI import engine converts unmanaged resources into Terraform code and state files automatically. Once resources are under management, ControlMonkey runs an infrastructure CI/CD loop: plan on PR open, policy evaluation as a quality gate, apply on approval.

The billing unit is the stack, equivalent to a Terraform state file — this differs from HCP Terraform's per-resource-under-management model. In November 2025, ControlMonkey extended the platform to VMware, bringing on-premises workloads under the same governance pipeline as public cloud. Founded by the Spot.io team (acquired by NetApp for $450M); raised $7M seed in January 2025.

Key Features

AI-powered Terraform code generation: reverse-engineers any cloud resource (AWS, Azure, GCP, VMware) into production-grade Terraform code and state file in one click, enabling 100% IaC coverage without manual rewriting

Continuous drift detection and auto-remediation: scans live cloud configuration against IaC definitions and alerts or auto-corrects divergence before it becomes a production incident

Infrastructure CI/CD with policy gates: runs plan on PR open, enforces compliance and cost policies as quality gates, and executes apply with approval — stack-based pricing rather than per-resource billing

Self-service environment catalog: platform teams publish pre-approved Terraform blueprints; other teams deploy compliant environments in minutes without writing HCL

Cloud disaster recovery: daily configuration snapshots across cloud and VMware; point-in-time restore enables rapid recovery from accidental deletions or critical failures

Unified hybrid governance: single policy, audit trail, and approval workflow spanning AWS, Azure, GCP, and VMware — announced November 2025

Integrations

No integrations on file.

Pricing

No pricing data on file.

Compliance

0 / 6 attested

SOC 2

HIPAA

GDPR

FedRAMP

PCI DSS

ISO 27001

No compliance attestations on file. Confirm directly with the vendor before procurement.

Freshness

Heartbeatverified · 4d ago

Listings are re-verified on a recurring sweep. If the website 200s and pricing hasn't shifted since the last check, the heartbeat stays green.

UpdatedJun 18, 2026

What does AI Enhanced mean?

AI maturity is an independent editorial rating assigned by infraplz.dev — not a vendor self-claim. We assess how meaningfully each tool actually uses AI in production workflows, cutting through marketing copy.

AI NativeAI is the core product — the tool wouldn't exist without it.
AI EnhancedAI is a first-class feature that materially changes the workflow.
AI AdjacentAI features exist but are superficial or bolt-on additions.
AI MinimalNo meaningful AI features; listed as a critical platform engineering tool.

AboutSubmit a tool