Skip to main content

AI Is Changing How We Write Infrastructure, But It’s Not Solving How We Control It

Over the past year, AI has fundamentally changed how software is written. Infrastructure code is no exception. Tasks that once required deep familiarity with tools, syntax, and workflows can now be handled through natural language. Engineers are no longer starting from a blank file. In many cases, reviewing and modifying code generated for them has become the norm.

At a high level, this looks like progress, and in many ways, it is. Teams can move faster, the barrier to entry is lower, and experimentation is easier. But there is a growing gap that many organizations are only beginning to recognize: AI is accelerating how infrastructure is created, but it is not solving how infrastructure is understood, controlled, or governed.

The Shift from Writing to Generating

Traditionally, infrastructure as code assumed that the person writing the configuration understood what it would do. That assumption no longer holds.

Today, it is increasingly common for infrastructure definitions to be generated rather than authored. The learning curve for tools and languages has effectively collapsed. This opens the door for more engineers and even non-specialists to interact directly with infrastructure. That shift is powerful; however, it also introduces a new kind of risk.

It is possible to generate a correct-looking configuration without fully understanding its impact. In application development, this is often manageable. A faulty deployment can usually be rolled back with limited consequences. Infrastructure is different. A misconfigured resource, an unintended dependency, or an incorrect policy can have immediate and widespread impact. In some cases, it can affect the availability, security, or integrity of entire systems. Stated differently: you can restart the database, but probably not the data itself? Different problems.

The problem is not that AI makes mistakes. The problem is that it enables changes to be made faster than organizations can safely reason about them.

Let’s explore this.

The Growing Tension: Speed vs. Control

Platform teams are now operating under two opposing pressures. On one side, there is a clear expectation to move faster. AI has raised the baseline for productivity across engineering, and infrastructure teams are expected to keep pace.

On the other side, the requirements for infrastructure have not changed. Systems still need to be secure, compliant, and stable. In many industries, those requirements are becoming more stringent, not less.

This creates a tension that cannot be resolved by simply adding more automation. Moving faster without control increases risk. Enforcing control without adapting workflows slows teams down. Most organizations today are caught somewhere in between.

Why Existing Models Don’t Hold

Before AI became part of everyday workflows, infrastructure teams typically operated in one of two modes.

The first was informal and manual. Engineers would make changes directly in cloud consoles or through ad hoc scripts. This allowed for speed, but at the cost of visibility, consistency, and governance.

The second was highly structured. Infrastructure changes would go through a defined pipeline: code written, reviewed, validated, and deployed through policy checks. This improved control, but introduced friction.

Both models are still present today. Neither fits the current reality. AI makes it easier to bypass structured workflows, because generating a change is no longer the hard part. At the same time, the cost of mistakes remains high. What used to be a tradeoff between speed and control is now a mismatch between how quickly changes can be made and how slowly they can be validated.

The Real Gap: Understanding and Decision-Making

One of the less discussed effects of AI-assisted workflows is the loss of context. When engineers write infrastructure manually, they build an implicit understanding of dependencies, constraints, and failure modes. That understanding is part of the safety model.

When infrastructure is generated, that context is no longer guaranteed. You can ask for a system to be created in precise terms. The system may be created correctly. But if you cannot fully interpret the result, you are operating with partial understanding. In infrastructure, partial understanding is often not enough.

This is where many current approaches fall short. They focus on improving generation—better prompts, better models, faster execution. But generation is not the limiting factor anymore. The limiting factor is decision-making.

Guardrails, Not Just Automation

If AI is going to play a meaningful role in infrastructure, it needs to operate within clearly defined boundaries. These boundaries cannot rely on probabilistic systems alone. They need to be deterministic, enforceable, and transparent. In practice, this means shifting focus from how infrastructure is generated to how it is governed.

Policies, access controls, and approval workflows are not new concepts. What is changing is their role. They are no longer just safeguards around human actions. They are becoming the primary mechanism for controlling both human and AI-driven changes.

This is not fundamentally different from how organizations have managed risk in the past. Humans are also non-deterministic. We have always relied on guardrails to ensure consistency and safety. The same principle applies here.

Building Trust Incrementally

One of the more pragmatic approaches emerging in organizations today is incremental adoption. Rather than moving directly to full automation, teams start with visibility. They use AI to understand infrastructure state, identify issues, and suggest changes. Over time, as confidence grows, they allow more direct interaction with systems. This progression is important.

Trust in infrastructure systems is not built through capability alone. It is built through predictability. Teams need to understand not just what a system can do, but how it behaves under constraints. AI can accelerate workflows. It cannot replace the need for that trust.

A Shift in Operating Model

The broader implication is that infrastructure is entering a new operating model. More people will interact with it. Changes will happen faster. The distinction between writing and operating infrastructure will continue to blur.

In this environment, the differentiator will not be how quickly organizations can generate infrastructure. It will be how effectively they can control it.

AI is already changing how infrastructure is written. That part is inevitable. The harder and more important question is how we ensure it remains safe, predictable, and aligned with the needs of the business.

That is not a problem AI will solve on its own.



from DevOps.com https://ift.tt/ZPOhrxI
Labels:

Comments

Post a Comment

Popular posts from this blog

Cursor’s New SDK Turns AI Coding Agents Into Deployable Infrastructure

For most of its life, Cursor has been an IDE. A very good one. But with the public beta of the Cursor SDK, the company is making a different kind of move — one that should get the attention of DevOps teams. The Cursor SDK is a TypeScript library that gives engineers programmatic access to the same runtime, models, and agent harness that power Cursor’s desktop app, CLI, and web interface. In short, the agents that used to live inside an editor can now be invoked from anywhere in your stack. That’s a meaningful shift in how AI coding tools fit into software delivery pipelines. From the Editor to the Pipeline If you’ve used Cursor before, the workflow is familiar — you interact with an agent in real time, asking it to write functions, fix bugs, or review code. The SDK breaks that dependency on interactive use. Now you can call those same agents programmatically, from a CI/CD trigger, a backend service, or embedded inside another tool. Getting started is a single inst...
Post a Comment
Read more

Mistral Moves Coding Agents to the Cloud — and Gets Out of Your Way

For the past year or so, AI coding agents have been tethered to your local machine. You kick off a task, watch the terminal, and babysit every step. It works — but it’s not exactly hands-free. Mistral just changed that. On April 29, the Paris-based AI company announced remote coding agents for its Vibe platform, powered by a new model called Mistral Medium 3.5. The idea is simple: Instead of running coding sessions on your laptop, they now run in the cloud — asynchronously, in parallel, and without you watching over them. What’s Actually New Coding sessions can now work through long tasks while you’re away. Many can run in parallel, and you no longer become the bottleneck at every step the agent takes. That’s the core pitch. You start a task from the Mistral Vibe CLI or directly from Le Chat — Mistral’s AI assistant — and the agent handles the rest. When it’s done, it opens a pull request on GitHub and notifies you, so you review the result inste...
Post a Comment
Read more

GitHub Resets Copilot Pricing as AI Compute Costs Surge

The development community saw this one coming: GitHub will transition its Copilot service to a usage-based billing model on June 1, replacing its existing system of fixed subscriptions supplemented by premium request limits. As reported last week, GitHub suspended new sign-ups for several of its Copilot subscription tiers as it faced a surge in demand from agentic coding workflows. To address that, under GitHub’s new pricing model, customers across individual, business, and enterprise tiers will receive a monthly allocation of AI credits, which are consumed based on token usage. This includes input, output, and cached data processed by underlying models. Once those credits are exhausted, users can purchase additional capacity at published rates. The change leaves base subscription prices intact. Individual plans remain priced at $10 per month for Pro and $39 for Pro+, while business and enterprise tiers continue at $19 and $39 per user per month, respectively. Each plan’s monthly ...
Post a Comment
Read more