LLM-powered blast radius and risk assessment for deployments. Analyzes incoming code and infrastructure changes against a real-time dependency graph of the cloud environment, delivering natural language predictions of downstream failures before rollout executes. Identifies hidden dependencies like schema changes that break downstream services — catches outages before a single user is affected.
Overmind is a blast radius and change risk assessment tool for Terraform. It builds a real-time dependency graph of the cloud environment by crawling the cloud account — security groups, IAM roles, VPC networking, DNS, database schemas — and maps each node's relationships to dependent services and resources.
When a Terraform plan is submitted, Overmind traverses the dependency graph to identify which downstream services are affected by the proposed change, then generates a natural-language explanation of predicted failures before the plan is applied. PR integration triggers analysis on every pull request touching Terraform files.
Currently supports AWS; GCP and Azure on the roadmap. Free tier for small environments; paid tiers for larger estates.
Key Features
Real-time cloud dependency graph: crawls AWS account resources — security groups, IAM roles, VPC networking, DNS, RDS schemas, ALBs — and maps their relationships to dependent services
Pre-apply blast radius analysis: traverses the dependency graph against a Terraform plan to identify downstream services that will be affected before `terraform apply` runs
Natural-language impact explanation: describes predicted failures and affected services in plain English rather than requiring engineers to trace dependency chains manually
PR integration: triggers dependency analysis on every pull request touching Terraform files, making blast radius visible during code review
Hidden dependency detection: surfaces non-obvious relationships — a security group change breaking dependent services, a schema migration affecting downstream consumers — invisible from the Terraform plan alone
AWS-native crawling: reads live cloud state from AWS APIs in real time rather than relying on tags or manually maintained service catalogs; GCP and Azure on roadmap
Integrations
8 total
scm
GitHubGitLab
ci / cd
Terraform
cloud
AWSGCPAzure
orchestration
Kubernetes
messaging
Slack
Pricing
3 tiers
Free
Free
Free tier: Single repository; unlimited usage and full feature access
Pro
—
Multiple repositories; custom pricing
Enterprise
Contact sales
Custom quote
Compliance
0 / 6 attested
SOC 2
HIPAA
GDPR
FedRAMP
PCI DSS
ISO 27001
No compliance attestations on file. Confirm directly with the vendor before procurement.
