← Home • Blog • Synkti

Infrastructure as a Library

January 24, 2026 • by Bobby Mathews

TL;DR "Infrastructure as Code" got the name wrong. Terraform and friends don't treat infrastructure as code—they treat it as a passive list that requires reconciliation loops to stay in sync with reality. True dynamic infrastructure should work like a library: borrowed, scoped, automatically returned. This post explains the paradigm shift from Infrastructure as a List to Infrastructure as a Library.

The Problem with "Infrastructure as Code"

The term "Infrastructure as Code" (IaC) was coined in 2006. It stuck. But it's wrong.

Here's what Terraform actually does:

# A passive list of desired resources
resource "aws_s3_bucket" "models" {
  bucket = "my-project-models"
}

resource "aws_iam_role" "worker" {
  name = "my-project-worker"
  # ... more config
}

Then you run terraform apply. Terraform reads the list, makes resources exist to match, and exits.

Then... what? The list sits there. The resources drift. Someone manually edits a bucket policy in the AWS Console. A security group rule gets added for debugging. Terraform state gets out of sync.

So we add reconciliation loops:

# GitOps workflow
apiVersion: source.toolkit.fluxcd.io/v1
kind: GitRepository
metadata:
  name: infra
spec:
  interval: 5m  # Check every 5 minutes

Every 5 minutes, the system wakes up and asks: "Does reality match my list?"

This is not "code" It's a passive list with a background babysitter making sure reality matches. Cron jobs running terraform plan. GitOps controllers watching for drift. DevOps engineers spending mornings fixing drift. This is reactive. The system detects drift and fixes it.

The Name Problem

Let's be precise about terminology:

Current Term	What It Actually Means	What It Should Be Called
Infrastructure as Code	Passive resource list + reconciliation	Infrastructure as a List
Infrastructure as a Library	Dynamic resource management via code	Infrastructure as Code (the true meaning)

But "Infrastructure as Code" was taken. First mover advantage. So we need a new term for what true dynamic infrastructure should be:

Infrastructure as a Library (IaL)

What Is Infrastructure as a Library?

Think about how you use a library in code:

use std::collections::HashMap;

fn main() {
    // Create a HashMap
    let mut map = HashMap::new();
    map.insert("key", "value");

    // Use it
    let value = map.get("key");

}  // HashMap is dropped here - memory automatically freed

Key properties:

Dynamic—Created at runtime, not declared in a config file
Scoped—Lifetime tied to the code block that creates it
Automatic cleanup—Drop the variable, resources are freed
No reconciliation loop—No background process needed

Now imagine infrastructure working the same way:

use synkti_infra::Infrastructure;

async fn run_experiment() -> Result<()> {
    // Create infrastructure
    let infra = Infrastructure::new("my-experiment").await?;

    // Use it
    infra.spawn_instances(3).await?;
    run_workload(&infra).await?;

}  // Infrastructure automatically destroyed here

This is Infrastructure as a Library Infrastructure is: borrowed, not owned. Ephemeral, not permanent. Scoped, not global. Managed by code, not by config files.

The Philosophical Shift

Old Mental Model: Infrastructure as Real Estate

Infrastructure = Assets

You BUY resources. You OWN them.
Accumulating infrastructure = Accumulating wealth.

┌─────────┐  ┌─────────┐  ┌─────────┐  ┌─────────┐
│ Bucket  │  │ Bucket  │  │ Bucket  │  │ Bucket  │
│   #1    │  │   #2    │  │   #3    │  │   #4    │
│  2019   │  │  2020   │  │  2021   │  │  2022   │
└─────────┘  └─────────┘  └─────────┘  └─────────┘

DevOps Team: "Our infrastructure has grown so complex.
              We need MORE tools to manage it."

Problem: Resource accumulation, complexity explosion

New Mental Model: Infrastructure as a Library

Infrastructure = Library Dependency

You BORROW resources. You RETURN them.
Infrastructure is a dependency, not an asset.

fn run_job() {
    let infra = Infra::new();  ┐
    // ... use infra ...        │ Scope (borrowed)
}                               │
                                ┘ Auto-returned

Developer: "I just import Infra and use it.
            It cleans itself up when I'm done."

Benefit: No accumulation, no complexity, no cleanup

Comparison: List vs Library

Aspect	Terraform (List)	IaL (Library)
Definition	Declarative list	Imperative code
Creation	Manual `terraform apply`	Automatic in code
Lifetime	Permanent until manually destroyed	Scoped to code execution
Cleanup	Manual (`terraform destroy`)	Automatic (RAII)
Drift handling	Reconciliation loops	No drift possible
State source	External (terraform.tfstate)	Internal (in-memory)
Mental model	Infrastructure = assets	Infrastructure = dependencies

RAII for Cloud

In C++, RAII (Resource Acquisition Is Initialization) ties resource lifetime to object scope. When an object goes out of scope, its destructor runs and resources are freed automatically.

// C++ RAII example
{
    std::vector<int> v(1000);  // Acquire memory
    // Use v
}  // Memory automatically freed (destructor runs)

The same principle applies to cloud resources:

// Rust RAII for cloud
{
    let infra = Infrastructure::new("my-project").await?;
    // Use infra (buckets, IAM, instances)
}  // Infrastructure automatically destroyed (Drop runs)

The mapping is direct:

C++ RAII	Cloud RAII
`new` / `malloc`	`terraform apply` / AWS SDK create
Use resource	Use S3, EC2, etc.
`delete` / `free`	`terraform destroy` / AWS SDK delete
Destructor	`Drop` trait
Scope exit	Variable dropped
Memory leak	Resource leak

Implementation Pattern

pub struct Infrastructure {
    project: String,
    owner: OwnerMarker,  // RAII guard
}

impl Infrastructure {
    pub async fn new(project: &str) -> Result<Self> {
        // Create resources dynamically
        let bucket = create_s3_bucket(&format!("{}-models", project)).await?;
        let iam = create_iam_role(&format!("{}-worker", project)).await?;
        let sg = create_security_group(&format!("{}-sg", project)).await?;

        // Create owner marker (RAII guard)
        let owner = OwnerMarker::create(project)?;

        Ok(Self { project: project.into(), owner })
    }
}

// RAII: Drop trait automatically cleans up
impl Drop for Infrastructure {
    fn drop(&mut self) {
        info!("Cleaning up infrastructure for {}", self.project);
        // Destroy buckets, IAM, SGs
        // Remove owner marker
    }
}

The Guard Pattern

// Usage
async fn run_experiment() -> Result<()> {
    let _infra_guard = Infrastructure::new("experiment-123").await?;

    // Do work
    run_training().await?;

    // Infra destroyed here when guard is dropped
    Ok(())
}

The _infra_guard variable is never used, but its existence keeps the infrastructure alive. When it goes out of scope, cleanup happens.

The Ethical Dimension

There's an ethical dimension to this paradigm shift.

Infrastructure as Real Estate:

Resources are things you accumulate
More buckets = more infrastructure = more success
Cleanup is an afterthought
Resource leaks are common

Infrastructure as a Library:

Resources are things you borrow
Using resources responsibly = returning them promptly
Cleanup is automatic
Resource leaks are bugs

"As a distributed systems engineer, I have to respect the resources and not abuse them even a little."

RAII for cloud infrastructure is environmental responsibility:

Don't waste compute on idle resources
Don't leave buckets sitting around
Don't accumulate technical debt
Return resources when you're done

Why This Matters Now

Cloud computing changed everything, but our mental models didn't keep up.

1950s-2000s: Physical Infrastructure
You buy servers. You rack them. You own them. Accumulation makes sense. The server is an asset.

2006-now: Cloud Infrastructure
You don't own anything. You rent everything. But we still think like we're buying assets.

The future: Infrastructure as a Library
Resources are borrowed, scoped, returned. Infrastructure is a dependency, like any other library. The application owns the lifetime, not the operations team.

This matters because:

Cost—Pay for what you use, not what you forgot to delete
Complexity—Less infrastructure = less to manage
Speed—No waiting for DevOps approval to create resources
Reliability—Fresh resources each run = less configuration drift

The Paradigm Shift From: Infrastructure is real estate you accumulate, managed by config files and reconciliation loops, permanent until manually destroyed, guarded by the DevOps team.

To: Infrastructure is a library you borrow, managed by code with scoped lifetime, ephemeral with auto-cleanup via RAII, owned by the application.

Conclusion

The shift from "Infrastructure as a List" to "Infrastructure as a Library" is more than terminology. It's a paradigm shift in how we think about cloud resources.

Infrastructure should work like any other library dependency: you import it, you use it, it cleans itself up when you're done. No reconciliation loops. No drift. No forgotten resources accumulating bills.

"Respect the resources. Don't abuse them even a little."

This is how infrastructure should work in the cloud era. Not as assets you accumulate, but as dependencies you borrow, use, and return.