Everything Planton does, from your terminal
Context-switching between terminal, console, and CI. Different tools for different operations. Copy-pasting YAML between systems.
kubectl-inspired commands, manifest-driven workflows, and real-time infrastructure operations — all from one CLI.
planton cli
1
CLI for Everything
< 1 min
Install Time
3
Platforms
Real-time
Streaming
Manifest-Driven
Deploy any cloud resource or service from YAML. Same manifests work in CI, in console, from terminal.
`planton apply -f manifest.yaml` — one command for any resource type
Validated against typed protobuf specs before submission
Diff preview before apply — see exactly what will change
Works identically in local terminal, CI pipeline, and console
planton apply
Kubernetes Access
Access any connected cluster without kubeconfig files. IAM-scoped, auditable, zero local configuration.
`planton kubectl` — proxy through Planton with org-level RBAC
No kubeconfig files, no VPN tunnels, no local credential management
Cluster auto-discovery from your connected providers
Full audit trail of every kubectl command executed
planton kubectl
Your infrastructure, one command away
From deploying resources to streaming logs to managing secrets — the Planton CLI covers your entire workflow.
Stack Job Operations
Stream IaC execution logs in real-time. Preview, apply, destroy from command line.
⏳ Previewing changes...
~ gcp:sql:DatabaseInstance (update)
+ availabilityType: "REGIONAL"
✓ Preview complete. 1 resource.
✓ Update complete in 2m 34s.Connection Management
Create, list, and manage cloud connections. Guided setup for every supported provider.
Built-in Upgrade
Run planton upgrade to check for updates and install the latest version in seconds.
Local dev, production secrets
Pull environment variables for local development. Secrets resolved from your vault via the Runner — the control plane never sees plaintext credentials.
planton service dot-env
Secrets Resolved Securely
Secrets are fetched at runtime from your vault, never stored in plaintext on disk.
Environment-Specific
Separate variable sets for dev, staging, and production. Switch with a single flag.
Vault Integration
Works with AWS Secrets Manager, GCP Secret Manager, HashiCorp Vault, and more.