IBM HashiCorp Stakes Its Claim to Agentic Infrastructure

IBM HashiCorp Stakes Its Claim to Agentic Infrastructure

Analyst(s): Mitch Ashley
Publication Date: October 14, 2025

What is Covered in this Article:

  • HashiCorp introduced Project Infragraph, a real-time data graph for policy-aware AI and agentic automation.
  • The launch of Terraform MCP Servers establishes a governed interface for AI agents to interact with infrastructure-as-code.
  • New features like HYOK encryption and Terraform Stacks support Day-2 operations and enterprise-scale security.
  • Security products like Vault gain new features, including protected secrets and IDE scanning. Boundary adds RDP credential injection (beta) and Vault Radar Jira SaaS scanning (GA) + IDE plugin (beta). Vault Enterprise 1.21 adds VSO-protected secrets and SPIFFE integration (announced) for enhanced application security.
  • These announcements lay a roadmap to connect with IBM watsonx and Red Hat platforms, unifying automation and AI across the portfolio.

The Event – Major Themes & Vendor Moves: At HashiConf 2025, HashiCorp shifted its narrative from theoretical vision to a tangible roadmap for “agentic infrastructure.” This new direction centers on creating automation systems that can autonomously reason, act, and enforce policy.

The core announcement was Project Infragraph (private beta, December 2025), a centralized, trusted data substrate that is what AI and autonomous agents need for safe and contextual action. A real-time infrastructure graph living within the HashiCorp Cloud Platform (HCP). Infragraph is designed to unify infrastructure state, configuration, policy, and ownership metadata across disparate hybrid and multi-cloud environments.

To agent-enable this strategy, HashiCorp introduced Terraform, Vault, and Vault Radar MCP servers that expose secure, auditable RBAC endpoints for AI agents. HashiCorp announced MCP servers for Terraform, Vault, and Vault Radar to enable secure, auditable, role-scoped agent access, turning core HashiCorp products into controlled execution environments for AI-driven workflows.

Terraform Stacks (GA) for multi-workspace orchestration, HCP Terraform Actions (beta) for Ansible integration, and HYOK (GA) for artifact encryption underscore a push into governed Day-2 operations.. These updates underscore a commitment to continuous operational governance, not just initial provisioning.

IBM HashiCorp Stakes Its Claim to Agentic Infrastructure

Analyst Take: HashiCorp is making a definitive play to be the standard for agentic infrastructure in the enterprise. Grabbing the mantle of agentic infrastructure is a bold move for any company, one that must be backed up with the ability to deliver, lest it be tossed onto the AI-hype scrap heap.

Agentic operations require far more than configuration files; they need real-time situational awareness. Infragraph unifies state, topology, ownership, and policy across hybrid clouds, giving agents the necessary context to reason about complex infrastructure management.

Architecturally, Project Infragraph and the new MCP Servers combination effectively establishes the foundation of an infrastructure AI-Control plane optimized for machine reasoning, no longer limited to traditional human-centric interfaces and procedural automations. Terraform Stacks orchestrate agents implementing changes while enforcing policies via Terraform and MCP servers, and Vault security controls.

Technological achievements alone are insufficient to win over and build operational trust in agentic AI by enterprise infrastructure and operations organizations.

Bring The Bona Fides

This wave of agentic infrastructure announcements marks the first major strategic and product articulation strongly leaning into the strengths of the combined IBM and HashiCorp entities, an alignment that became feasible following recent organizational changes.

This strategic move is massively credible given IBM’s decades-long, deep expertise in managing very large, complex enterprise IT infrastructure. Moreover, AI is not a new phenomenon at IBM, which brings added credibility and institutional trust as HashiCorp implements agentic infrastructure and operations.

It’s also notable that this is more than a narrow HashiCorp product announcement; it seamlessly bridges capabilities across Red Hat OpenShift, Ansible, HashiCorp, and IBM offerings, representing a strong step toward delivering on the benefits expected from the Red Hat and HashiCorp acquisitions.

HashiCorp’s announcements brings a significant strategic lift to IBM, extending its enterprise automation reach directly into the rapidly developing agentic infrastructure space. By introducing Project Infragraph and the MCP servers, IBM gains a unified framework where configuration, security, and operational data converge into a single, reasoned graph.

This will be critical to IBM’s go-forward mission to continue leaning into the benefits of this combined technology architecture, deep enterprise knowledgebase, and customer trust, especially with quantum computing on the horizon.

What to Watch:

  • Project Infragraph remains in private beta, requiring close monitoring of its development and integration timelines, especially with key IBM and Red Hat tooling.
  • Multi-cloud is extremely important to customers and partners. Maintaining HashiCorp’s historical vendor neutrality will be a difficult balancing act while simultaneously pursuing IBM-focused integration strategies.
  • Potential Competitive Moves
    • Google Cloud may look to extend its Cloud Operations Suite with graph-based intelligence that could eventually inform Gemini models.
    • Microsoft Azure could explore deeper integration with Microsoft Entra ID (Azure AD) to enable stronger identity verification and auditing for agent-driven infrastructure actions.
    • AWS is expected to strengthen AgentCore’s governance-as-a-service by integrating agent policies directly with AWS Organizations and Service Control Policies (SCPs) for centralized control.

See the complete press release covering announcements made during HashiConf 2025.

Disclosure: Futurum is a research and advisory firm that engages or has engaged in research, analysis, and advisory services with many technology companies, including those mentioned in this article. The author does not hold any equity positions with any company mentioned in this article.

Analysis and opinions expressed herein are specific to the analyst individually and data and other information that might have been provided for validation, not those of Futurum as a whole.

Other insights from Futurum:

Futurum Signal Software Development Platforms

Efficiency & Innovation: IBM LinuxONE for Modern Workloads

IBM TechXchange 2025: The Real Headliner is Data, Not AI

Image Credit: HashiCorp

Author Information

Mitch Ashley

Mitch Ashley is VP and Practice Lead for the CIO & Technology Buyers and Software Lifecycle Engineering practices at The Futurum Group. A multi-time CIO and CTO with 30+ years leading technical organizations, Mitch built and operated production systems spanning cybersecurity for the U.S. Department of Defense, PKI services for the broadband and 5G industries, SaaS platforms, large-scale telecom and banking systems, and a national broadband network. His work with AI began early, developing expert systems that diagnosed and repaired complex mainframe environments. That operator foundation grounds his analysis in operational consequence, covering the technology buyer's world of software engineering, cybersecurity, DevOps, cloud, and AI.

Related Insights
Are Podcasts the New Playbook for Engineering Leaders Work through AI in the SDLC?
July 11, 2026

Are Podcasts the New Playbook for Engineering Leaders Work through AI in the SDLC?

Qodo releases a curated podcast guide for engineering leaders navigating the rapidly evolving AI platforms market. With agentic AI adoption accelerating, leaders need practical resources to build AI literacy and...
Inetum’s iOS Developer Role Reveals How Mobile Talent Fuels Enterprise Agility
July 11, 2026

Inetum’s iOS Developer Role Reveals How Mobile Talent Fuels Enterprise Agility

Inetum-Realdolmen's iOS developer recruitment reflects growing channel demand for custom mobile applications and full-lifecycle Agile delivery, positioning the firm to capture the $268.74B DevOps and Application Development market....
GPT-5.6 Raises the Bar for Code Review, but Trust and Governance Remain the Real Test
July 10, 2026

GPT-5.6 Raises the Bar for Code Review, but Trust and Governance Remain the Real Test

Qodo's integration of GPT-5.6 embeds OpenAI's frontier model into structured workflows, directly addressing the reliability and governance gaps constraining enterprise AI deployment....
Does Qodo's Codebase-Wide Enforcement Redefine What 'AI Code Review' Means?
July 7, 2026

Does Qodo’s Codebase-Wide Enforcement Redefine What ‘AI Code Review’ Means?

Qodo's full codebase context approach positions it as a pre-merge quality gate, addressing enterprise reliability concerns that have slowed AI adoption in software engineering workflows....
Why AI Coding Costs Are Spiraling: Context, Not Usage, Is the Real Culprit
July 6, 2026

Why AI Coding Costs Are Spiraling: Context, Not Usage, Is the Real Culprit

As enterprise AI moves into production, organizations face a cost crisis. New analysis shows bloated AI coding bills stem from insufficient codebase context, forcing leaders to rethink ROI measurement strategies....
Compliance as Code Is No Longer Optional: Why Manual Reviews Can’t Keep Up
July 4, 2026

Compliance as Code Is No Longer Optional: Why Manual Reviews Can’t Keep Up

Qodo's 'Compliance as Code' framework automates enterprise AI compliance through PR checks, solving the data privacy and security gaps that plague manual reviews at scale....

Book a Demo

Welcome

The vision behind everything in Futurum’s Custom Research practice is this: research should show you what is happening, what comes next, and what to do about it. It should be personal to each audience, easy for people to grasp, and structured so LLMs can reason over it accurately. And it should be fast and turnkey; you want answers now, not another project to carry for quarters.

Whether you are defining business, channel, or go-to-market strategy; evaluating vendors or justifying ROI; or commissioning research to fill an emerging market need, we have your back, with a program that answers your questions with the objectivity and credibility to drive real decisions.

To do it, we bring unmatched data to bear: Futurum research, surveys, and market projections; validated market feeds; ETR’s 15 years of insight from 10,000 technology decision-makers; G2’s buyer and user data; and what our analysts hear every day. Add leading primary collection, from AI-moderated voice interviews to surveys and analyst-led interviews, all turnkey, and every project comes out credible, nuanced, and actionable.

And we don’t just drop the results in your lap. For internal work, we provide analyst-led sessions, interactive dashboards, and a range of formats. For market-facing work, Futurum delivers turnkey activation and amplification that actually gets seen, by people and by LLMs, through our media and share of voice. This is research that moves decisions and markets.

We will meet you wherever you are, from a fast-turn brief to a multi-year program, and shape the work to your goals, timeline, and budget. The right program for your moment.

If any of this is useful, I would love to talk.

Benjamin Brown, VP Custom Research, Futurum Research

Benjamin Brown

VP, Custom Research · The Futurum Group

Newsletter Sign-up Form

Get important insights straight to your inbox, receive first looks at eBooks, exclusive event invitations, custom content, and more. We promise not to spam you or sell your name to anyone. You can always unsubscribe at any time.

All fields are required






Thank you, we received your request, a member of our team will be in contact with you.