Cloud AI Copilot

Today, we're launching Cloud AI Copilot - a conversational interface for your cloud infrastructure. Ask any question about your AWS, GCP, Azure, or OCI resources in natural language and get answers 10x faster than manually navigating consoles and running CLI commands.

Multi-Cloud Support

Cloud AI Copilot supports AWS, Google Cloud Platform, Microsoft Azure, and Oracle Cloud Infrastructure. Use @cloud:account-name to target a specific cloud account, or @cloud:aws / @cloud:gcp / @cloud:azure / @cloud:oci to query all connected accounts within that cloud provider.

Ask Anything

Cloud AI Copilot understands natural language queries about your infrastructure. Instead of remembering exact CLI syntax or navigating through console pages, just ask:

• "Which S3 buckets are publicly accessible in @cloud:aws-prod-uswest2?"
• "Show me all IAM users without MFA enabled in @cloud:aws-staging-useast1"
• "What firewall rules allow SSH from 0.0.0.0/0 in @cloud:gcp-prod?"
• "List all Azure SQL databases and their encryption status in @cloud:azure-westus"
• "Which compute instances have public IPs in @cloud:oci-tenancy-prod?"

Kestrel translates your questions into the appropriate CLI commands, executes them against your connected accounts, and synthesizes the results into clear, actionable answers.

Update & Fix

Beyond read-only queries, Cloud AI Copilot can generate fixes and infrastructure updates. Ask it to remediate issues and raise PRs against your IaC repo with a single click, or get ready-to-execute CLI commands (AWS CLI, gcloud, az, OCI CLI) for immediate fixes:

• "Add public access blocks to all publicly accessible S3 buckets in @cloud:aws-prod-uswest2"
• "Find security groups that allow inbound traffic from 0.0.0.0/0 on database ports in @cloud:aws, then update the Terraform to restrict access to our VPC CIDR"
• "Write a NetworkPolicy that allows TCP on port 8080 between api-gateway and payment-service in @cluster:gke-prod-uscentral1"
• "Generate CloudFormation to enable encryption on all unencrypted RDS instances in @cloud:aws-staging-useast1"

IaC Integration

When you ask Cloud AI Copilot to fix an issue or create a resource, it generates infrastructure-as-code in your preferred format:

• Terraform- HCL code that integrates directly with your existing Terraform configurations
• Pulumi- TypeScript or Python code for Pulumi infrastructure
• CloudFormation- AWS-native YAML templates for CloudFormation deployments

Connect your IaC repository (Terraform, Pulumi, or CloudFormation) and Cloud AI Copilot will open PRs that update your existing files instead of generating standalone snippets - preserving your existing resources and configuration structure.

Kubernetes & GitOps Integration

For Kubernetes queries, Cloud AI Copilot generates YAML manifests that can be applied directly or committed to your GitOps repository. If you use ArgoCD or Flux, Kestrel can create pull requests via our GitHub integration - enabling proper review workflows before any changes are applied to your clusters.

Ask questions like "Write a NetworkPolicy that allows TCP on port 8080 between api-gateway and payment-service in @cluster:gke-prod-uscentral1" or "Create a HorizontalPodAutoscaler for the checkout deployment in @cluster:eks-staging that scales between 3-10 replicas based on CPU" and get ready-to-apply YAML or GitOps PRs with proper metadata and best practices baked in.

Context-Aware Conversations

Cloud AI Copilot maintains conversation history, so you can ask follow-up questions naturally. After asking "Show me all S3 buckets in @cloud:aws-prod-uswest2", you can follow up with "Which of those have versioning disabled?" or "Give me Terraform to enable encryption on the first one" - Kestrel understands the context.

Audit Logging

Every action performed via Cloud AI Copilot is fully audit logged. Whether you're querying resources, generating fixes, or creating PRs - Kestrel captures the user, timestamp, action type, and full request/response data. This gives your security and compliance teams complete visibility into AI-assisted infrastructure changes.

Click to expand

Getting Started

Cloud AI Copilot is available now in the Kestrel platform under Cloud AI Copilot → Chat. Connect your cloud accounts via Integrations → Cloud and start asking questions immediately.