finfocus

module

v0.3.5 Latest Latest Go to latest Published: Mar 31, 2026 License: Apache-2.0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/rshade/finfocus

Links

Open Source Insights

README ¶

FinFocus

Cloud cost analysis for Pulumi infrastructure

Cloud cost analysis for Pulumi infrastructure - Calculate projected and actual infrastructure costs without modifying your Pulumi programs.

FinFocus is a CLI tool that analyzes Pulumi infrastructure definitions to provide accurate cost estimates, budget enforcement, and historical cost tracking through a flexible plugin-based architecture.

Why FinFocus?

Cloud cost surprises are the norm. Teams deploy infrastructure with Pulumi but have no visibility into what it will cost until the bill arrives. FinFocus closes that gap:

Shift-left on costs — See projected costs before you deploy, directly from pulumi preview output
No code changes required — Works with any existing Pulumi project via JSON export
Budget guardrails — Enforce spending limits in CI/CD pipelines with non-zero exit codes
Plugin architecture — Swap pricing sources without changing your workflow
Single dashboard — Interactive TUI combining actual spend, projected costs, drift analysis, and recommendations

Key Features

🔭 Unified Overview: Interactive dashboard combining actual costs, projected costs, drift analysis, and recommendations in a single view
📊 Projected Costs: Estimate monthly costs before deploying infrastructure
💰 Budgets & Alerts: Hierarchical budgets (global, provider, tag, type) with CI/CD thresholds
💡 Recommendations: Actionable cost optimization insights and savings opportunities
♿ Accessibility: High-contrast, plain text, and adaptive terminal UI modes
💰 Actual Costs: Track historical spending with detailed breakdowns
🔌 Plugin-Based: Extensible architecture supporting multiple cost data sources
🧪 E2E Testing: Comprehensive guide for validating infrastructure costs against real cloud resources
📈 Advanced Analytics: Resource grouping, filtering, and aggregation
📱 Multiple Formats: Table, JSON, and NDJSON output options
🔍 Smart Filtering: Filter by resource type, tags, or custom expressions
🏗️ No Code Changes: Works with existing Pulumi projects via JSON output

Quick Start

1. Installation

Install script (recommended) -- auto-detects OS/architecture and downloads the latest release:

curl -fsSL https://raw.githubusercontent.com/rshade/finfocus/main/scripts/install.sh | sh

Build from source:

git clone https://github.com/rshade/finfocus
cd finfocus
make build
./bin/finfocus --help

Manual download (pin to a specific version)

# Linux (amd64)
curl -L https://github.com/rshade/finfocus/releases/download/v0.3.3/finfocus-v0.3.3-linux-amd64.tar.gz -o finfocus.tar.gz
tar -xzf finfocus.tar.gz
chmod +x finfocus
sudo mv finfocus /usr/local/bin/

# macOS (Apple Silicon)
curl -L https://github.com/rshade/finfocus/releases/download/v0.3.3/finfocus-v0.3.3-macos-arm64.tar.gz -o finfocus.tar.gz
tar -xzf finfocus.tar.gz && chmod +x finfocus && sudo mv finfocus /usr/local/bin/

# macOS (Intel)
curl -L https://github.com/rshade/finfocus/releases/download/v0.3.3/finfocus-v0.3.3-macos-amd64.tar.gz -o finfocus.tar.gz
tar -xzf finfocus.tar.gz && chmod +x finfocus && sudo mv finfocus /usr/local/bin/

# Windows (PowerShell) - installs to a user-local directory, no admin rights required
Invoke-WebRequest -Uri "https://github.com/rshade/finfocus/releases/download/v0.3.3/finfocus-v0.3.3-windows-amd64.zip" -OutFile finfocus.zip
Expand-Archive finfocus.zip -DestinationPath .
$installDir = "$env:LocalAppData\Programs\finfocus"
New-Item -ItemType Directory -Force -Path $installDir | Out-Null
Move-Item finfocus.exe "$installDir\finfocus.exe"
# Add to PATH for the current session (add to $PROFILE for a permanent effect)
$env:PATH = "$installDir;$env:PATH"

2. Generate Pulumi Plan

Export your infrastructure plan to JSON:

cd your-pulumi-project
pulumi preview --json > plan.json

3. Unified Overview

See all costs at a glance with the interactive dashboard. From inside any Pulumi project directory, just run finfocus with no arguments:

finfocus

Or invoke the subcommand directly:

finfocus overview

For CI/CD or when you manage the export step yourself:

# Pre-export state and plan
pulumi stack export > state.json
pulumi preview --json > plan.json

# Launch overview with pre-exported files
finfocus overview --pulumi-state state.json --pulumi-json plan.json --plain --yes

Example plain text output:

Resource                          Type                    Status  Actual(MTD)  Projected   Delta    Drift%  Recs
my-instance                       aws:ec2/instance:I...   ✓       $12.40       $15.00      $2.60    +8%     2
my-bucket                         aws:s3/bucket:Bucket    ✓       $0.83        $1.00       $0.17    0%      0
my-db                             aws:rds/instance:I...   ✓       $48.20       $50.00      $1.80    -3%     1

Total Actual (MTD): $61.43    Projected Monthly: $66.00    Potential Savings: $45.00

Full documentation: docs/commands/overview.md

4. Calculate Costs

Projected Costs - Estimate costs before deployment:

finfocus cost projected --pulumi-json plan.json

Check Budget - Verify if plan fits within budget:

# Configure budget in ~/.finfocus/config.yaml (see Configuration section)
# Then check projected cost against budget
finfocus cost projected --pulumi-json plan.json

# Exit with non-zero code if budget exceeded (CI/CD integration)
finfocus cost projected --pulumi-json plan.json --exit-on-threshold

# Custom exit code (default: 1)
finfocus cost projected --pulumi-json plan.json --exit-on-threshold --exit-code 2

# Filter budget scope (global, provider:<name>, tag:<key>=<value>, type:<resource-type>)
finfocus cost projected --pulumi-json plan.json --budget-scope "provider:aws"

View Recommendations - Find savings opportunities:

finfocus cost recommendations --pulumi-json plan.json

Example Output

Projected Cost Analysis

$ finfocus cost projected --pulumi-json examples/plans/aws-simple-plan.json

Budget: $500.00 (75% used)
[=====================>......] $375.00 / $500.00

RESOURCE                          ADAPTER     MONTHLY   CURRENCY  NOTES
aws:ec2/instance:Instance         aws-spec    $375.00   USD       t3.xlarge
aws:s3/bucket:Bucket             none        $0.00     USD       No pricing info

Actual Cost Analysis

$ finfocus cost actual --pulumi-json plan.json --from 2025-01-01 --group-by type --output json
{
  "summary": {
    "totalMonthly": 45.67,
    "currency": "USD",
    "byProvider": {"aws": 45.67},
    "byService": {"ec2": 23.45, "s3": 12.22, "rds": 10.00}
  },
  "resources": [...]
}

Core Concepts

Resource Analysis Flow

Export - Generate Pulumi plan JSON with pulumi preview --json
Parse - Extract resource definitions and properties
Query - Fetch cost data via plugins or local specifications
Aggregate - Calculate totals with grouping and filtering options
Output - Present results in table, JSON, or NDJSON format

Plugin Architecture

FinFocus uses plugins to fetch cost data from various sources:

Cost Plugins: Query cloud provider APIs (AWS Public Pricing, AWS Cost Explorer, Azure, etc.)
Spec Files: Local YAML/JSON pricing specifications as fallback
Plugin Discovery: Automatic detection from ~/.finfocus/plugins/

Configuration

FinFocus is configured via ~/.finfocus/config.yaml.

Budget Configuration

# yaml-language-server: $schema=https://rshade.github.io/finfocus/schemas/config.json
cost:
  budgets:
    amount: 500.00
    currency: USD
    alerts:
      - threshold: 80
        type: actual
      - threshold: 100
        type: forecasted

See Budget Guide for full configuration details.

Environment Variables for Secrets

For sensitive values like API keys and credentials, use environment variables:

# AWS credentials (for aws-public and aws-ce plugins)
export FINFOCUS_PLUGIN_AWS_ACCESS_KEY_ID="your-access-key"
export FINFOCUS_PLUGIN_AWS_SECRET_ACCESS_KEY="your-secret-key"

# Azure credentials (for azure-public plugin)
export FINFOCUS_PLUGIN_AZURE_SUBSCRIPTION_ID="your-subscription-id"

The naming convention is: FINFOCUS_PLUGIN_<PLUGIN_NAME>_<KEY_NAME> in uppercase.

Advanced Usage

Resource Filtering

# Filter by resource type
finfocus cost projected --pulumi-json plan.json --filter "type=aws:ec2/instance"

Output Formats

# Table format (default)
finfocus cost projected --pulumi-json plan.json --output table

# JSON for API integration
finfocus cost projected --pulumi-json plan.json --output json

# NDJSON for streaming/pipeline processing
finfocus cost projected --pulumi-json plan.json --output ndjson

Configuration Management

FinFocus provides commands to manage configuration:

# Initialize configuration (creates ~/.finfocus/config.yaml)
finfocus config init [--force]

# Set configuration values
finfocus config set cost.budgets.amount 500.00
finfocus config set output.format json

# Get configuration values
finfocus config get cost.budgets.amount

# List all configuration
finfocus config list [--format json|yaml]

# Validate configuration
finfocus config validate [--verbose]

# Inspect effective routing configuration
finfocus config routes list [--output table|json]

# Simulate plugin routing for a resource type
finfocus config routes test aws:ec2:Instance [region] [--output table|json]

Multi-Plugin Routing

FinFocus intelligently routes resources to appropriate plugins based on provider, resource patterns, and feature capabilities.

Automatic Routing (Zero Configuration)

Resources automatically route to plugins based on their supported providers:

# Install multiple plugins
finfocus plugin install aws-public
finfocus plugin install gcp-public

# View plugin capabilities
finfocus plugin list --verbose
# NAME        VERSION  PROVIDERS  CAPABILITIES                  SPEC    PATH
# aws-public  1.0.0    aws        ProjectedCosts, ActualCosts   0.5.5   ~/.finfocus/plugins/aws-public/1.0.0/...
# gcp-public  1.0.0    gcp        ProjectedCosts, ActualCosts   0.5.5   ~/.finfocus/plugins/gcp-public/1.0.0/...

# Cost calculation automatically routes resources
finfocus cost projected --pulumi-json plan.json
# AWS resources → aws-public
# GCP resources → gcp-public

Declarative Routing (Advanced Configuration)

For advanced control, configure plugin routing in ~/.finfocus/config.yaml:

routing:
  plugins:
    # Route recommendations to AWS Cost Explorer (higher accuracy)
    - name: aws-ce
      features:
        - Recommendations
      priority: 20
      fallback: true

    # Route projected costs to AWS Public (no credentials needed)
    - name: aws-public
      features:
        - ProjectedCosts
        - ActualCosts
      priority: 10
      fallback: true

    # Route EKS resources to specialized plugin (highest priority)
    - name: eks-costs
      patterns:
        - type: glob
          pattern: "aws:eks:*"
      priority: 30

Key Features:

Priority-Based Selection: Higher priority plugins are queried first (default: 0)
Automatic Fallback: If a plugin fails, automatically try the next priority
Pattern Matching: Use glob or regex patterns to route specific resource types
Feature Routing: Assign different plugins for different capabilities

Validate Routing Configuration

finfocus config validate

# Output (success):
# ✓ Configuration valid
#
# Discovered plugins:
#   aws-ce: Recommendations (priority: 20)
#   aws-public: ProjectedCosts, ActualCosts (priority: 10)
#
# Routing rules:
#   aws:eks:* → eks-costs (pattern)
#   aws:* → aws-public (provider)

See the Routing Configuration Guide for detailed examples and troubleshooting.

Plugin Management

List & Install Plugins

# List installed plugins
finfocus plugin list

# List with detailed capabilities
finfocus plugin list --verbose

# Install plugins
finfocus plugin install aws-public
finfocus plugin install vantage

# Inspect plugin capabilities
finfocus plugin inspect aws-public

# Validate plugin installation
finfocus plugin validate

Available Plugins

Plugin	Status	Description
`aws-public`	Available	AWS public pricing data
`aws-ce`	In Development	AWS Cost Explorer integration
`azure-public`	In Development	Azure public pricing data
`kubecost`	Planned	Kubernetes cost analysis

Pulumi Analyzer Integration

FinFocus provides zero-click cost estimation during pulumi preview via the Pulumi Analyzer protocol:

# Start the analyzer server (prints port to stdout for Pulumi handshake)
finfocus analyzer serve [--debug]

When integrated with Pulumi, costs are automatically calculated and displayed as advisory diagnostics during preview, without modifying your Pulumi programs. The analyzer uses ADVISORY enforcement and never blocks deployments.

Debugging

Enable debug output for troubleshooting:

# Global debug flag
finfocus --debug cost projected --pulumi-json plan.json

# Environment variable
export FINFOCUS_LOG_LEVEL=debug
export FINFOCUS_LOG_FORMAT=json    # json or console

Documentation

Complete documentation is available in the docs/ directory:

👤 End Users: User Guide - How to install and use FinFocus
💰 Budgets: Budget Guide - Configure alerts and thresholds
💡 Recommendations: Recommendations Guide - Optimization insights
♿ Accessibility: Accessibility Guide - UI configuration
🛠️ Engineers: Developer Guide - How to extend and contribute
🏗️ Architects: Architect Guide - System design and integration
🧪 E2E Testers: E2E Testing Guide - Setup and execution
💼 Business/CEO: Business Value - ROI and competitive advantage

Quick Links:

🚀 5-Minute Quickstart
📖 Full Documentation Index
🔌 Available Plugins - AWS Public Pricing and more
🛠️ Plugin Development
🏗️ System Architecture
💬 FAQ & Support

Contributing

We welcome contributions! See our development documentation:

CONTRIBUTING.md - Development setup and guidelines
CLAUDE.md - AI assistant development context
Architecture Documentation - Internal package documentation

License

Apache-2.0 - See LICENSE for details.

Agent Skills

FinFocus ships agent skills for AI coding assistants (Claude Code, Gemini CLI, etc.) that automate common workflows:

Skill	Description
finfocus-install	Install CLI, detect providers, setup plugins and config
finfocus-analyzer-setup	Configure Pulumi Analyzer for inline cost estimation
finfocus-routing	Configure plugin routing with priority and fallback

See agent-skills/README.md for the full list and planned skills.

finfocus-spec - Protocol definitions and schemas
finfocus-plugin-aws-public - AWS public pricing plugin
agent-skills - Generic cost workflow skills (multi-tool)

Getting Started: Try the examples directory for sample Pulumi plans and pricing specifications.

Directories ¶

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL

Path	Synopsis
cmd
finfocus command Package main provides the finfocus CLI tool for calculating cloud infrastructure costs.	Package main provides the finfocus CLI tool for calculating cloud infrastructure costs.
examples
plugins/aws-example command Package main provides an example AWS cost calculation plugin for FinFocus.	Package main provides an example AWS cost calculation plugin for FinFocus.
internal
analyzer Package analyzer implements the Pulumi Analyzer plugin interface for cost estimation.	Package analyzer implements the Pulumi Analyzer plugin interface for cost estimation.
awsutil Package awsutil provides shared AWS utility functions.	Package awsutil provides shared AWS utility functions.
cli Package cli implements the Cobra-based command-line interface for FinFocus.	Package cli implements the Cobra-based command-line interface for FinFocus.
cli/pagination Package pagination provides utilities for CLI pagination, sorting, and result formatting.	Package pagination provides utilities for CLI pagination, sorting, and result formatting.
config Package config handles configuration loading and management for FinFocus.	Package config handles configuration loading and management for FinFocus.
conformance Package conformance provides a comprehensive testing framework for validating plugin protocol compliance with the FinFocus gRPC protocol.	Package conformance provides a comprehensive testing framework for validating plugin protocol compliance with the FinFocus gRPC protocol.
constants
engine Package engine provides the core cost calculation logic for FinFocus.	Package engine provides the core cost calculation logic for FinFocus.
engine/batch Package batch provides utilities for processing large datasets in fixed-size batches.	Package batch provides utilities for processing large datasets in fixed-size batches.
engine/cache Package cache provides BoltDB-backed caching with TTL expiration for cost query results.	Package cache provides BoltDB-backed caching with TTL expiration for cost query results.
greenops Package greenops provides carbon emission equivalency calculations.	Package greenops provides carbon emission equivalency calculations.
ingest Package ingest handles parsing of Pulumi infrastructure definitions.	Package ingest handles parsing of Pulumi infrastructure definitions.
logging Package logging provides structured logging with distributed tracing support.	Package logging provides structured logging with distributed tracing support.
migration
pluginhost Package pluginhost manages plugin lifecycle and gRPC communication.	Package pluginhost manages plugin lifecycle and gRPC communication.
proto Package proto provides protocol buffer type adapters for the plugin system.	Package proto provides protocol buffer type adapters for the plugin system.
pulumi Package pulumi provides functions for detecting and executing the Pulumi CLI binary to support automatic cost analysis from Pulumi projects.	Package pulumi provides functions for detecting and executing the Pulumi CLI binary to support automatic cost analysis from Pulumi projects.
registry Package registry handles plugin discovery and lifecycle management.	Package registry handles plugin discovery and lifecycle management.
router Package router provides intelligent plugin routing for FinFocus cost calculations.	Package router provides intelligent plugin routing for FinFocus cost calculations.
skus Package skus provides resource-type-aware SKU resolution as a fallback when property-based extraction returns empty.	Package skus provides resource-type-aware SKU resolution as a fallback when property-based extraction returns empty.
spec Package spec handles local pricing specifications.	Package spec handles local pricing specifications.
specvalidate Package specvalidate provides validation for pricing specifications.	Package specvalidate provides validation for pricing specifications.
tui Package tui provides a shared set of terminal user interface (TUI) components and utilities for consistent CLI command styling across the FinFocus codebase.	Package tui provides a shared set of terminal user interface (TUI) components and utilities for consistent CLI command styling across the FinFocus codebase.
tui/detail Package detail provides lazy loading and error recovery for TUI detail views.	Package detail provides lazy loading and error recovery for TUI detail views.
tui/list Package listview provides virtual scrolling components for Bubble Tea TUI applications.	Package listview provides virtual scrolling components for Bubble Tea TUI applications.
pkg
version Package version provides build version and metadata information for finfocus.	Package version provides build version and metadata information for finfocus.
plugins
recorder Package recorder implements a reference plugin that records all gRPC requests and optionally returns mock cost responses.	Package recorder implements a reference plugin that records all gRPC requests and optionally returns mock cost responses.
recorder/cmd command Package main provides the entry point for the recorder plugin.	Package main provides the entry point for the recorder plugin.
scripts
analysis command
specs
001-multi-region-e2e/contracts Package contracts defines the interfaces and contracts for multi-region E2E testing.	Package contracts defines the interfaces and contracts for multi-region E2E testing.
013-test-infra-hardening/contracts
125-greenops-equivalencies/contracts Package contracts defines the public interface for the greenops package.	Package contracts defines the public interface for the greenops package.
126-multi-plugin-routing/contracts Package contracts defines the internal API contracts for multi-plugin routing.	Package contracts defines the internal API contracts for multi-plugin routing.
590-analyzer-install/contracts Package contracts defines the API contract for the analyzer install feature.	Package contracts defines the API contract for the analyzer install feature.
test
benchmarks/generator Package generator provides synthetic infrastructure plan generation for benchmarking.	Package generator provides synthetic infrastructure plan generation for benchmarking.
fixtures Package fixtures provides utilities for loading test data files.	Package fixtures provides utilities for loading test data files.
integration/helpers
mocks/plugin Package plugin provides a configurable mock plugin for testing FinFocus's plugin communication.	Package plugin provides a configurable mock plugin for testing FinFocus's plugin communication.