I was doing a project called flight-deck for the go-team to perform large scale configuration to repositories using OpenTofu and terragrunt.
The repo keeps track of the state using HCL syntax and it makes sure the configurations are up to date with the rules defined (like branch protections and so on).
So for example if a user decides to unprotect a branch and it's being tracked by the flight-deck tool it will rollback the configuration to the previous state next time it runs until the change is actually made as code and merged in the main branch.
A beta is already available to start onboarding/tracking packages.
https://salsa.debian.org/go-team/flight-deckThe documentation on how to use it is available on the README.md file.
For now it is opt-in and ONLY for
go-team but I want to make that a boilerplate so other teams can implement it.
Soon I will do a blog post about it with more information.
Let me know if you have any questions or are interested in using that.
Kind regards,
Arthur Diniz