How does Bunnyshell handle multi-cloud deployments?

You write a single environment definition using Docker Compose, Helm, or Terraform. Bunnyshell connects to each customer’s Kubernetes cluster and deploys the same definition with customer-specific variables for region, resources, and feature flags. No cloud-specific scripts needed.

Can I deploy to on-premises or air-gapped environments?

Yes. Bunnyshell supports any Kubernetes cluster, including on-premises and air-gapped setups. You connect the cluster once, and Bunnyshell handles deployments through a lightweight agent that runs inside the customer’s network.

How do I manage different configurations per customer?

Variable Groups let you define per-customer settings — region, resource limits, feature flags, credentials — without modifying the base template. Each customer environment inherits the template and applies its own variable group.

How do upgrades work across customer environments?

When you update the base template, you can roll out the change to all customer environments at once or stage it — deploy to canary customers first, validate, then proceed. Every upgrade is versioned and logged for audit purposes.

What kind of isolation do customer environments get?

Each customer gets a dedicated Kubernetes namespace, network policies (deny-all-ingress by default), and scoped secrets. You can run multiple customers on a shared cluster or provision dedicated clusters for enterprise accounts.

Is Bunnyshell suitable for ISVs shipping to customer clouds?

Yes. Bunnyshell was built for exactly this use case. ISVs define their application once and deliver it to dozens or hundreds of customer environments. Variable groups handle customer-specific configuration, and staged rollouts manage upgrades at scale.

What compliance certifications does Bunnyshell hold?

Bunnyshell is SOC 2, ISO 27001, and ISO 9001 certified. Your code and data never leave your infrastructure — Bunnyshell connects to your Kubernetes clusters and orchestrates deployments without storing your application data.

$ bns environments deploy --target customer-cloud

Ship to Any Cloud.
Any Customer.

Deploy cloud-native apps to enterprise customers — on-premises, private clouds, or hybrid. Same definition, any destination.

Start Free ↗Book a Demo

No credit card required

Enterprise Delivery / Customer Environments

Customer	Region	Status
acme-prod	us-east-1	Running
techcorp-prod	eu-west-1	Running
globalbank	on-prem	Deploying

Used by engineering teams at

$ cat how-it-works.md

How Bunnyshell works

Connect your repo

Link your GitHub, GitLab, or Bitbucket repository. Define your environment using Docker Compose, Helm, or Terraform — tools you already use.

GitHub

GitLab

Bitbucket

Docker

Helm

K8s

Open a pull request

Bunnyshell auto-provisions an isolated, full-stack environment for every PR. Share the preview URL with your team.

PR #142→env-142.preview.bunnyshell.dev• Running

PR #143→env-143.preview.bunnyshell.dev• Running

PR #144→env-144.preview.bunnyshell.dev• Running

Merge and move on

Tests pass, code is reviewed, PR merges. The environment auto-destroys. No cleanup. No surprise cloud bills.

✓End-to-end tests passed

✓Code review approved

✓Merged — environment destroyed

✦✦

See it in action.

Deploy your first customer environment in under 30 minutes. Free tier — no credit card required.

Start Free ↗Book a Demo

One Definition.
Every Customer.

Same bunnyshell.yaml deploys to AWS, GCP, Azure, on-prem, or air-gapped environments. Write once, deliver everywhere.

✓Cloud-agnostic definitions — one YAML file targets AWS, GCP, Azure, on-prem, and air-gapped clusters
✓Helm + Terraform native — use the same charts and modules across every customer deployment
✓Template inheritance — base templates with per-customer overrides. No copy-paste drift
✓Version-controlled — every definition change tracked in Git. Full audit trail on who changed what

See environment definitions →

Enterprise Delivery / bunnyshell.yaml

# Single definition — deploys everywhere

kind: Environment

name: {{ customer.name }}-prod

cloud: {{ customer.cloud }}

region: {{ customer.region }}

# Targets:

✓ AWS ✓ GCP ✓ Azure

✓ On-prem ✓ Air-gapped

Per-Customer
Configuration.

Variable Groups per customer. Different regions, different resource limits, different feature flags — same base definition.

✓Variable Groups — define region, resources, and feature flags per customer without touching the template
✓Secret scoping — customer-specific credentials and API keys isolated at the environment level
✓Resource limits — set CPU, memory, and storage quotas per customer environment
✓Feature flags — toggle features per customer without maintaining separate codebases

See variable groups →

Enterprise Delivery / Variable Groups

Customer	Region	Resources	Flags
acme-prod	us-east-1	4 vCPU	analytics=on
techcorp-prod	eu-west-1	8 vCPU	sso=on, audit=on
globalbank	on-prem	16 vCPU	air-gap=on

Automated
Upgrade Paths.

Push an update to the template. Roll it out to customer environments one by one or all at once. Controlled, versioned, auditable.

✓Staged rollouts — deploy to canary customers first, then roll out to the full fleet
✓Version pinning — pin specific customers to stable versions while others get the latest
✓Rollback in seconds — revert any customer to a previous version with a single command
✓Audit trail — every upgrade logged — who triggered it, what changed, which customers were affected

See deployment workflows →

Enterprise Delivery / Rollout — v2.4.1

Customer	Version	Status
acme-prod	v2.4.1	Deployed
techcorp-prod	v2.4.1	Deploying
globalbank	v2.3.8	Scheduled

Multi-Tenant
Isolation.

Each customer gets dedicated namespaces, network policies, and secrets. Full isolation on shared or dedicated clusters.

✓Namespace isolation — every customer runs in a dedicated Kubernetes namespace with its own service accounts
✓Network policies — deny-all-ingress by default. Explicit rules for cross-service communication
✓Secrets per customer — Vault-backed secrets scoped to individual customer environments
✓Shared or dedicated clusters — run multiple customers on one cluster or give enterprise customers their own

See isolation & security →

Enterprise Delivery / Isolation & Security

# Customer: acme-prod

namespace: acme-prod-ns

networkPolicy: deny-all-ingress

secrets: vault://acme-prod/*

cluster: shared-us-east-1

# Customer: globalbank

namespace: globalbank-ns

networkPolicy: deny-all-ingress

secrets: vault://globalbank/*

cluster: dedicated-on-prem

Every team in your delivery org
moves faster.

ISVs

Ship to customer clouds

Deploy your product to any customer infrastructure — AWS, GCP, Azure, or on-prem. One definition, every destination.

Platform Teams

Standardize delivery

Define golden templates. Enforce deployment standards across every customer environment without manual intervention.

DevOps Engineers

Automate customer deploys

Stop writing custom scripts per customer. Bunnyshell handles multi-cloud orchestration with a single pipeline.

Solution Architects

Design once, deploy anywhere

Architect a single reference deployment that adapts to each customer's cloud, region, and compliance requirements.

Customer Success

Manage customer environments

Monitor status, trigger upgrades, and troubleshoot customer deployments — all from a single dashboard.

Engineering Leaders

Scale delivery operations

Go from 5 customers to 500 without scaling your DevOps team linearly. Standardized delivery that compounds.

✦✦

One definition. Every customer cloud.

Free tier includes 5 environments. No credit card required. Free white-glove onboarding.

Start Free ↗See It Live (15 min)

Teams delivering software
to enterprise customers.

“Manual tests on Argo CD PRs now take me seconds. When you review dozens of PRs a day, that's a game-changer.”

Michael CrenshawCore Team Member

“Automatically created BunnyShell environment based on PRs, speeding up the entire task implementation process.”

Jacob TobiaszCore Team Member

“The automation and scalability that Bunnyshell provides complements the DigitalOcean platform, empowering developers to build amazing products.”

Aaron GellerGP & Channel

“Websites don't die anymore, sales keep growing sustained by state-of-the-art tech scalability. Customers send thank you cards.”

Elif BolatCEO

Laura MichadCTO

“From a release once in 2-4 weeks to multiple times per week, and nobody's stressed about it.”

Catalin SporisCEO

“I can count on an integrated platform for managing our infrastructure — capabilities we don't have in-house, at a fraction of the cost.”

Gustavo HaramuraTeam Lead & Solution Architect

“I can do with Bunnyshell and a DevOps person what my clients are doing with 4 DevOps people.”

Radu DalbeaCTO

“Developers want convenience. They expect someone to translate their Docker Compose to the cloud. They're not going to rush to learn Kubernetes.”

Dianne RussellPlatform Engineer

“Bunnyshell was the only tool that handled our Helm + EKS setup without asking us to change everything.”

Arlene McCoyDevOps Engineer

“60+ microservices. Bunnyshell deploys them in parallel and lets us control which ones come first.”

Enterprise-grade security.
Your data stays in your cloud.

Bunnyshell connects to YOUR Kubernetes cluster. Your code and data never leave your infrastructure. SOC 2, ISO 27001, and ISO 9001 compliant.

RBAC

Three-layer permission model: Policies, Resource Selectors, and Teams. Granular enough for enterprise.

SSO

Enterprise single sign-on. Integrate with your existing identity provider.

Network Isolation

Dedicated Kubernetes namespace per environment. Pods accessible only within their namespace.

Secrets Management

Environment variables and secrets handled securely. Never hard-coded, always encrypted.

IP Whitelisting

Restrict access to specific IP ranges. Control who can reach your environments.

Audit Logs

Full audit trail for every environment action. Who deployed what, when, and where.

Enterprise delivery is the process of deploying your software product to your customers’ infrastructure — whether that is AWS, GCP, Azure, on-premises, or air-gapped environments. Bunnyshell lets you define your application once in a bunnyshell.yaml and deploy it to any target cloud using per-customer variable groups.

✦✦

Scale delivery without scaling your team.

Start free — deploy to your first customer environment in minutes. Free tier includes 5 environments. No credit card required. Free white-glove onboarding.

Start Free ↗Book a Demo

Awards