Declarative Automation Bundles Adopt

inference mlops databricks cicd data-platform infrastructure-as-code lakehouse workflow-automation model-serving

May 2026

Overview

Declarative Automation Bundles package Databricks-centered data, analytics, ML, and AI projects as source-controlled configuration and code. Databricks describes them as a tool for adopting software engineering practices such as source control, code review, testing, and CI/CD for data and AI projects, with metadata alongside source files and Databricks resources such as jobs and pipelines described as source files (Databricks: Declarative Automation Bundles). A bundle is an end-to-end project definition that describes how the project is structured, tested, deployed, and run across target environments (Databricks: Declarative Automation Bundles).

The key shift is that lakehouse and AI assets are treated like governed software instead of manually configured notebooks and jobs. Bundles can include cloud infrastructure and workspace configuration, notebooks and Python files, Lakeflow Jobs, Lakeflow Spark Declarative Pipelines, dashboards, model serving endpoints, MLflow experiments, MLflow registered models, unit tests, and integration tests (Databricks: Declarative Automation Bundles). Bundle metadata is defined in YAML, while the Databricks CLI validates, deploys, and runs bundles against remote target workspaces (Databricks: Declarative Automation Bundles).

The reason to classify Declarative Automation Bundles as Adopt is that CI/CD for data and AI assets is now a core platform practice, and Databricks explicitly recommends bundles for CI/CD pipelines. Adopt this pattern for Databricks lakehouse, ML, and AI workflows that need promotion across development, staging, and production, especially when multiple contributors, automation, repeatability, permissions, and compliance evidence matter.

Adoption Signals

Databricks positions Declarative Automation Bundles as an infrastructure-as-code approach for Databricks projects and says they should be used when complex projects have multiple contributors, automation is essential, and CI/CD is required (Databricks: Declarative Automation Bundles).
Databricks CI/CD best practices recommend using Declarative Automation Bundles to deploy code, jobs, and infrastructure as a single unit and avoiding siloed management of notebooks, libraries, and workflows (Databricks CI/CD best practices).
Databricks recommends defining clusters, jobs, and workspace configurations with Declarative Automation Bundles YAML or Terraform, and parameterizing environment-specific settings such as cluster size and secrets instead of hardcoding them (Databricks CI/CD best practices).
The bundle resource surface has broadened beyond jobs and pipelines: supported resources include alerts, apps, dashboards, experiments, jobs, model serving endpoints, registered models, schemas, secret scopes, SQL warehouses, vector search endpoints, volumes, quality monitors, and more (Databricks bundle resources).
MLOps Stacks use bundles as a production-oriented template path for ML projects, with CLI-driven validation, deployment to targets such as dev, test, staging, and prod, and jobs such as model training, batch inference, and feature table writing (Databricks MLOps Stacks bundles).
Bundles and Terraform are complementary rather than mutually exclusive. Databricks says bundles can define lakehouse assets while Terraform can manage infrastructure such as workspaces, service principals, and cloud assets (Databricks Asset Bundles announcement).

Risks

Configuration drift can move into YAML instead of disappearing. Bundles reduce manual workspace drift only if source control, review, validation, and target promotion are disciplined. Databricks recommends databricks bundle validate to catch configuration issues before deployment (Databricks CI/CD best practices).
Environment variables and target overrides need governance. Bundle variables can be provided through command-line --var, BUNDLE_VAR_ environment variables, target mappings, or override files, with a defined precedence order; teams need clear rules so deployment-time values do not surprise downstream runs (Databricks bundle variables).
Secrets should not be hardcoded. Databricks CI/CD best practices explicitly recommend parameterizing instead of hardcoding environment-specific settings such as secrets, and recommend workload identity federation for automated flows because it eliminates the need for Databricks secrets (Databricks CI/CD best practices).
Permissions and run identity are production controls. Bundle configuration supports permissions and run_as, including separation of the identity used to deploy a bundle from the identity used to run jobs or pipelines; incorrect identities can create overprivileged jobs or broken production workflows (Databricks bundle configuration reference).
Deployment identity and state can collide. Databricks notes that a bundle's identity defaults to the deployer, bundle name, and target, and deployments can interfere with one another if those identities are identical across different bundles (Databricks bundle CLI commands).
Force and auto-approve options need guardrails. The CLI includes options such as --auto-approve, --force-lock, and --fail-on-active-runs; Databricks warns that --force-lock disables the mechanism that prevents concurrent deployments from interacting and should only be used for stale locks after interrupted deployments (Databricks bundle CLI commands).
Destroy operations are irreversible. databricks bundle destroy permanently deletes previously deployed jobs, pipelines, and artifacts, and --auto-approve skips confirmation prompts, so destructive operations should be protected in CI/CD and role design (Databricks bundle CLI commands).

Pros & Cons

Advantages

Packages data, analytics, ML, and AI workflow assets as versioned source files that can be validated, reviewed, deployed, and run through CI/CD.
Makes jobs, pipelines, dashboards, model serving endpoints, MLflow assets, permissions, run identities, variables, and environment targets explicit.
Reduces manual notebook and workspace drift by promoting dev, staging, and production deployments through repeatable infrastructure-as-code patterns.

Disadvantages

Requires teams to learn bundle structure, YAML configuration, CLI lifecycle, target semantics, authentication, and deployment-state behavior.
Misconfigured permissions, run identities, secrets, variables, root paths, or force-lock/auto-approve options can create production risk.
Does not replace broader cloud infrastructure management; Terraform or platform IaC is still needed for workspaces, service principals, networks, storage, and other cloud resources.

Recommendation

Adopt Declarative Automation Bundles for Databricks lakehouse, ML, and AI workflows that need repeatable delivery across development, staging, and production. Use bundles to keep source code, workflow definitions, deployment targets, resource configuration, tests, permissions, run identities, and operational settings in version control. Treat bundle changes like application changes: require pull requests, review, validation, CI checks, and promotion gates.

Use the bundle lifecycle deliberately. Run databricks bundle validate in CI, deploy with explicit targets, separate deployment identity from runtime identity where appropriate, and use versioned artifacts tied to commit hashes or semantic versions. Keep environment-specific values in target mappings, variables, or secure CI/CD configuration rather than hardcoded YAML. Use workload identity federation or approved service principal patterns for automation.

Keep the scope clear. Use bundles for Databricks project assets such as jobs, pipelines, dashboards, experiments, registered models, serving endpoints, vector search endpoints, schemas, volumes, quality monitors, tests, and workflows. Use Terraform or platform IaC for surrounding cloud infrastructure, workspaces, networks, storage, service principals, and account-level policy. Protect production with deployment locks, active-run checks, destructive-operation controls, least-privilege permissions, rollback plans, monitoring, and documented ownership.