Pulumi CrossGuard for cert-manager
CrossGuard is Pulumi’s new Policy as Code offering. CrossGuard empowers you to set guardrails to enforce compliance for resources so developers within an organization can provision their own infrastructure while sticking to best practices and security compliance. Using Policy as Code, you can write flexible business or security policies. When policies are executed as part of a Pulumi deployment, any violation will gate or block that update from proceeding.