Azure Container Instances (ACI)
Runs one or more containers on Azure Container Instances without VMs or an orchestrator — secure by default with no privileged containers, redacted secret fields, and an optional managed identity.
Verification
Live-testedReally deployed, verified, idempotent and destroyed in a cloud sandbox.
Conformance
- Static validation (fmt · validate · tflint)
- Security scan (Checkov)
- Plan tests (mocked: validation rules · outputs)
Provenance
- SHA-256 checksum
- Signature (pending)
Functional
- Live-tested — applied, verified, destroyed
Last verified 2026-06-30 · how we verify
Documentation
azure-container-instances
Run one or more containers on Azure Container Instances (ACI) without VMs or
an orchestrator — a azurerm_container_group deployed into an existing resource
group. Fast and cheap: billed per-second for the requested vCPU/memory only while
running. Out of the box it deploys a single public Linux hello-world container
(0.5 vCPU / 1.0 GB on port 80) so a bare apply gives you a reachable endpoint;
override containers for real workloads. Secure by default: no privileged
containers, secrets passed only through provider-redacted fields
(secure_environment_variables, secret volumes, registry credentials), and an
optional managed identity for passwordless registry pulls and CMK. Works with
Terraform and OpenTofu (>= 1.6), azurerm provider >= 4.0, < 5.0.
Requirements
| Requirement | Version |
|---|---|
| Terraform / OpenTofu | >= 1.6 |
hashicorp/azurerm | >= 4.0, < 5.0 |
Verification
Static-validated (fmt, validate, tflint). Live apply/destroy testing pending cloud sandbox availability — see catalog status.
License
Commercial — IaC Bazaar EULA. © IaC Bazaar. Original work (not derived from a third-party module).
Usage code & full reference unlock after purchase
The complete copy-paste usage, the full input/output reference, and operational notes ship with your licence — shown here and bundled in the download.
- Usage
- Inputs
- Outputs
- Security notes