Gruntwork Library

IaC Module Catalog for AWS

A module catalog for the enterprise

The Gruntwork Library contains over 300K lines of reusable, battle-tested, production-ready infrastructure code for AWS.

Find a module

Browse the docs

Built for

Benefits

Speed, quality, cost: pick three

Leverage a mature, battle-tested, reusable library of infrastructure code proven in production for years by hundreds of companies.

Infrastructure as code

Over 300K lines of code written in OpenTofu, Go, Python, and Bash. You get access to 100% of the code.

Thoughtfully opinionated

Opinionated, best-practice modules that are highly configurable so you can extend and compose them to meet your needs.

Tested

Every commit goes through a suite of automated unit and integration tests written with Terratest.

Documented

Every module includes example code and thorough documentation.

Secure & Compliant

Built with security-first principles, validated with security scanning, and compliant with the CIS AWS Foundations Benchmark out-of-the-box.

Supported

Gruntwork provides commercial maintenance and support. We continually make updates, additions, and fixes to the library.

Trusted by

What’s Included

Landing Zone

Account baselines, Control Tower integration, SSO, IAM users/groups/roles, OIDC, GuardDuty, CloudTrail, AWS Config, Macie.

App Orchestration

EKS (Kubernetes), Helm, ECS, EC2, Auto Scaling Groups.

Networking

VPC, Transit Gateway, IPAM, DualStack/IPv6 [BETA], Application Load Balancer, CloudFront, Route 53.

Data Storage

MySQL, Postgres, Aurora, Redis, Memcached, S3, ECR, EBS, EFS.

Serverless

Lambda, API Gateway, Fargate, Aurora Serverless.

Compliance

Account baselines compliant with the CIS AWS Foundations Benchmark out-of-the-box.

Search & Analytics

Elasticsearch, MSK (Kafka), SQS, Kinesis, Redshift.

CI / CD

OpenTofu & Terraform workflows, AMI & Docker scripts, Git scripts, Monorepo scripts.

Browse all available modules

Using the library

Create your own centralized, vetted module catalog

Module Catalog

Your ops team creates a catalog of approved, standardized modules

Combine and compose the modules from the Gruntwork Library to create your own catalog of modules that are tested, standardized, and approved to meet your company's requirements.

Developer self-service

Your dev team deploys infrastructure from your module catalog

Scaffold new modules with a keystroke, with intelligent prompts for any configurations exposed in the selected template.

How we compare

The Gruntwork difference

How does using the Gruntwork Library compare to building a module catalog from scratch or paying a DevOps consultant to do it?

	Do it yourself	Consultant
Starting point	From scratch	From scratch	300K lines of battle-tested code
Time to launch	6 – 24 months (highly variable)	6 – 24 months (highly variable)	~1 week (highly predictable)
Quality	Unproven code	Unproven code	Mature code proven in production at 100s of companies
Maintenance	100% up to you	None	On-going maintenance, updates, security patches
Support	None	None	Commercial support

Gruntwork Library by the numbers

500+

Companies using our modules

230+

Modules in library

300,000+

Lines of code

Part of Gruntwork DevOps Foundations

Leverage Gruntwork Library as part of an end-to-end DevOps lifecycle to enable automated deployments and developer self-service.

Learn more

Testimonials

What our customers have to say about the Gruntwork Library

“We’ve been truly impressed with Gruntwork, the team, the responses, the community. It probably has saved us at least mid 6 figures if we had home rolled our infrastructure ourselves.”
Solomon White
CTO
“The quality that Gruntwork produces and maintains is outstanding. It has proven time and time again to be a huge accelerator bringing companies forward in terms of stability and quality. It also enables closer collaboration across the engineering organization.”
Markus Burger
4 time repeat customer
“We ended up going with Gruntwork. I highly recommend. Jim Brikman of Gruntwork was the top infrastructure engineer during my tenure at LinkedIn, so I already knew what to expect. It was fantastic to see how they delivered our awesome AWS + Terraform infrastructure on time and well under budget.”
Erem Boto
Senior Software Engineer

Bootstrap your IaC module catalog

You get 100% of the code and keep full rights even if you cancel after 1 year. Chat with a DevOps expert and learn how to leverage the Gruntwork Library for your own infrastructure.

Book a demo

FAQS

Frequently Asked Questions

How do I access the code?

What clouds do you support?

Can I use the code for my own customers?

What versions of Terraform / OpenTofu do you support?