@highstate/restic 0.9.18 → 0.9.20

package/dist/repository/index.js

@@ -0,0 +1,68 @@
+import { restic } from '@highstate/library';
+import { forUnit, toPromise } from '@highstate/pulumi';
+import { parseL34Endpoint, l34EndpointToString } from '@highstate/common';
+import { uniqueBy } from 'remeda';
+
+// src/repository/index.ts
+var { args, inputs, secrets, outputs } = forUnit(restic.repository);
+var remoteInfo = await toPromise(
+  secrets.rcloneConfig.apply((config) => {
+    const remoteNames = Array.from(config.matchAll(/(?<=\[).+?(?=\])/g));
+    if (remoteNames.length === 0) {
+      throw new Error("No remotes found in rclone config");
+    }
+    if (remoteNames.length > 1) {
+      throw new Error("Multiple remotes found in rclone config");
+    }
+    const remoteName = remoteNames[0][0];
+    const remoteSection = config.split(`[${remoteName}]`)[1]?.split(/\n\s*\[/)[0] || "";
+    const typeMatch = remoteSection.match(/^\s*type\s*=\s*(.+)$/m);
+    if (!typeMatch) {
+      throw new Error(`No type found for remote '${remoteName}'`);
+    }
+    return {
+      name: remoteName,
+      type: typeMatch[1].trim()
+    };
+  })
+);
+var { remoteL3Endpoints, remoteL4Endpoints } = await toPromise(inputs);
+var autoDiscoveredEndpoints = {
+  yandex: [
+    "cloud-api.yandex.com",
+    "downloader.disk.yandex.ru",
+    "*.storage.yandex.net",
+    "*.disk.yandex.net"
+  ]
+};
+var remoteEndpoints = uniqueBy(
+  [
+    //
+    ...(autoDiscoveredEndpoints[remoteInfo.type] ?? []).map(parseL34Endpoint),
+    ...args.remoteEndpoints.map(parseL34Endpoint),
+    ...remoteL3Endpoints,
+    ...remoteL4Endpoints
+  ],
+  l34EndpointToString
+);
+var repository_default = outputs({
+  repo: {
+    type: "rclone",
+    pathPattern: args.pathPattern,
+    rcloneConfig: secrets.rcloneConfig,
+    remoteName: remoteInfo.name,
+    remoteEndpoints
+  },
+  $statusFields: {
+    remoteName: remoteInfo.name,
+    remoteType: remoteInfo.type,
+    remoteEndpoints: {
+      value: remoteEndpoints.map(l34EndpointToString),
+      complementaryTo: "remoteEndpoints"
+    }
+  }
+});
+
+export { repository_default as default };
+//# sourceMappingURL=index.js.map
+//# sourceMappingURL=index.js.map

package/dist/repository/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/repository/index.ts"],"names":[],"mappings":";;;;;;AAKA,IAAM,EAAE,MAAM,MAAA,EAAQ,OAAA,EAAS,SAAQ,GAAI,OAAA,CAAQ,OAAO,UAAU,CAAA;AAEpE,IAAM,aAAa,MAAM,SAAA;AAAA,EACvB,OAAA,CAAQ,YAAA,CAAa,KAAA,CAAM,CAAA,MAAA,KAAU;AACnC,IAAA,MAAM,cAAc,KAAA,CAAM,IAAA,CAAK,MAAA,CAAO,QAAA,CAAS,mBAAmB,CAAC,CAAA;AAEnE,IAAA,IAAI,WAAA,CAAY,WAAW,CAAA,EAAG;AAC5B,MAAA,MAAM,IAAI,MAAM,mCAAmC,CAAA;AAAA,IACrD;AAEA,IAAA,IAAI,WAAA,CAAY,SAAS,CAAA,EAAG;AAC1B,MAAA,MAAM,IAAI,MAAM,yCAAyC,CAAA;AAAA,IAC3D;AAEA,IAAA,MAAM,UAAA,GAAa,WAAA,CAAY,CAAC,CAAA,CAAE,CAAC,CAAA;AAGnC,IAAA,MAAM,aAAA,GAAgB,MAAA,CAAO,KAAA,CAAM,CAAA,CAAA,EAAI,UAAU,CAAA,CAAA,CAAG,CAAA,CAAE,CAAC,CAAA,EAAG,KAAA,CAAM,SAAS,CAAA,CAAE,CAAC,CAAA,IAAK,EAAA;AACjF,IAAA,MAAM,SAAA,GAAY,aAAA,CAAc,KAAA,CAAM,uBAAuB,CAAA;AAE7D,IAAA,IAAI,CAAC,SAAA,EAAW;AACd,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,0BAAA,EAA6B,UAAU,CAAA,CAAA,CAAG,CAAA;AAAA,IAC5D;AAEA,IAAA,OAAO;AAAA,MACL,IAAA,EAAM,UAAA;AAAA,MACN,IAAA,EAAM,SAAA,CAAU,CAAC,CAAA,CAAE,IAAA;AAAK,KAC1B;AAAA,EACF,CAAC;AACH,CAAA;AAEA,IAAM,EAAE,iBAAA,EAAmB,iBAAA,EAAkB,GAAI,MAAM,UAAU,MAAM,CAAA;AAEvE,IAAM,uBAAA,GAAoD;AAAA,EACxD,MAAA,EAAQ;AAAA,IACN,sBAAA;AAAA,IACA,2BAAA;AAAA,IACA,sBAAA;AAAA,IACA;AAAA;AAEJ,CAAA;AAEA,IAAM,eAAA,GAAkB,QAAA;AAAA,EACtB;AAAA;AAAA,IAEE,GAAA,CAAI,wBAAwB,UAAA,CAAW,IAAI,KAAK,EAAC,EAAG,IAAI,gBAAgB,CAAA;AAAA,IACxE,GAAG,IAAA,CAAK,eAAA,CAAgB,GAAA,CAAI,gBAAgB,CAAA;AAAA,IAC5C,GAAG,iBAAA;AAAA,IACH,GAAG;AAAA,GACL;AAAA,EACA;AACF,CAAA;AAEA,IAAO,qBAAQ,OAAA,CAAQ;AAAA,EACrB,IAAA,EAAM;AAAA,IACJ,IAAA,EAAM,QAAA;AAAA,IACN,aAAa,IAAA,CAAK,WAAA;AAAA,IAClB,cAAc,OAAA,CAAQ,YAAA;AAAA,IACtB,YAAY,UAAA,CAAW,IAAA;AAAA,IACvB;AAAA,GACF;AAAA,EAEA,aAAA,EAAe;AAAA,IACb,YAAY,UAAA,CAAW,IAAA;AAAA,IACvB,YAAY,UAAA,CAAW,IAAA;AAAA,IAEvB,eAAA,EAAiB;AAAA,MACf,KAAA,EAAO,eAAA,CAAgB,GAAA,CAAI,mBAAmB,CAAA;AAAA,MAC9C,eAAA,EAAiB;AAAA;AACnB;AAEJ,CAAC","file":"index.js","sourcesContent":["import { restic } from \"@highstate/library\"\nimport { forUnit, toPromise } from \"@highstate/pulumi\"\nimport { l34EndpointToString, parseL34Endpoint } from \"@highstate/common\"\nimport { uniqueBy } from \"remeda\"\n\nconst { args, inputs, secrets, outputs } = forUnit(restic.repository)\n\nconst remoteInfo = await toPromise(\n  secrets.rcloneConfig.apply(config => {\n    const remoteNames = Array.from(config.matchAll(/(?<=\\[).+?(?=\\])/g))\n\n    if (remoteNames.length === 0) {\n      throw new Error(\"No remotes found in rclone config\")\n    }\n\n    if (remoteNames.length > 1) {\n      throw new Error(\"Multiple remotes found in rclone config\")\n    }\n\n    const remoteName = remoteNames[0][0]\n\n    // extract the type from the remote section\n    const remoteSection = config.split(`[${remoteName}]`)[1]?.split(/\\n\\s*\\[/)[0] || \"\"\n    const typeMatch = remoteSection.match(/^\\s*type\\s*=\\s*(.+)$/m)\n\n    if (!typeMatch) {\n      throw new Error(`No type found for remote '${remoteName}'`)\n    }\n\n    return {\n      name: remoteName,\n      type: typeMatch[1].trim(),\n    }\n  }),\n)\n\nconst { remoteL3Endpoints, remoteL4Endpoints } = await toPromise(inputs)\n\nconst autoDiscoveredEndpoints: Record<string, string[]> = {\n  yandex: [\n    \"cloud-api.yandex.com\",\n    \"downloader.disk.yandex.ru\",\n    \"*.storage.yandex.net\",\n    \"*.disk.yandex.net\",\n  ],\n}\n\nconst remoteEndpoints = uniqueBy(\n  [\n    //\n    ...(autoDiscoveredEndpoints[remoteInfo.type] ?? []).map(parseL34Endpoint),\n    ...args.remoteEndpoints.map(parseL34Endpoint),\n    ...remoteL3Endpoints,\n    ...remoteL4Endpoints,\n  ],\n  l34EndpointToString,\n)\n\nexport default outputs({\n  repo: {\n    type: \"rclone\",\n    pathPattern: args.pathPattern,\n    rcloneConfig: secrets.rcloneConfig,\n    remoteName: remoteInfo.name,\n    remoteEndpoints,\n  },\n\n  $statusFields: {\n    remoteName: remoteInfo.name,\n    remoteType: remoteInfo.type,\n\n    remoteEndpoints: {\n      value: remoteEndpoints.map(l34EndpointToString),\n      complementaryTo: \"remoteEndpoints\",\n    },\n  },\n})\n"]}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@highstate/restic",
-  "version": "0.9.18",
+  "version": "0.9.20",
   "type": "module",
   "files": [
     "dist",
@@ -11,7 +11,7 @@
       "types": "./src/index.ts",
       "default": "./dist/index.js"
     },
-    "./repo": "./dist/repo/index.js"
+    "./repository": "./dist/repository/index.js"
   },
   "publishConfig": {
     "access": "public"
@@ -21,15 +21,16 @@
     "update-images": "../../scripts/update-images.sh ./assets/images.json"
   },
   "dependencies": {
-    "@highstate/common": "^0.9.18",
-    "@highstate/k8s": "^0.9.18",
-    "@highstate/library": "^0.9.18",
-    "@highstate/pulumi": "^0.9.18",
+    "@highstate/common": "^0.9.20",
+    "@highstate/contract": "^0.9.20",
+    "@highstate/k8s": "^0.9.20",
+    "@highstate/library": "^0.9.20",
+    "@highstate/pulumi": "^0.9.20",
     "@pulumi/kubernetes": "^4.18.0",
     "remeda": "^2.21.0"
   },
   "devDependencies": {
-    "@highstate/cli": "^0.9.18"
+    "@highstate/cli": "^0.9.20"
   },
-  "gitHead": "9ebcd7da56b00b8ca08bf52cc8438f527338cd64"
+  "gitHead": "4bf9183450c2c6f51d6a99d77efc379ff5c7b7ef"
 }

package/src/job-pair.ts

@@ -1,4 +1,4 @@
-import type { k8s, restic } from "@highstate/library"
+import type { restic } from "@highstate/library"
 import type { InputL34Endpoint } from "@highstate/common"
 import { batch } from "@pulumi/kubernetes"
 import {
@@ -8,10 +8,10 @@ import {
   Job,
   ScriptBundle,
   Secret,
-  type CommonArgs,
   type Container,
   type ScriptDistribution,
   type ScriptEnvironment,
+  type ScopedResourceArgs,
   type WorkloadVolume,
 } from "@highstate/k8s"
 import {
@@ -19,24 +19,22 @@ import {
   getUnitInstanceName,
   normalize,
   output,
-  Output,
+  type Output,
+  toPromise,
   type ComponentResourceOptions,
   type Input,
   type InputArray,
-  type InstanceTerminal,
-  type InstanceTrigger,
-  type InstanceTriggerInvocation,
 } from "@highstate/pulumi"
-import { text } from "@highstate/contract"
+import {
+  text,
+  type UnitTerminal,
+  type UnitTrigger,
+  type TriggerInvocation,
+} from "@highstate/contract"
 import * as images from "../assets/images.json"
 import { backupEnvironment } from "./scripts"
 
-export type BackupJobPairArgs = CommonArgs & {
-  /**
-   * The k8s cluster to calculate the repository path.
-   */
-  cluster: Input<k8s.Cluster>
-
+export type BackupJobPairArgs = ScopedResourceArgs & {
   /**
    * The repository to backup/restore to/from.
    */
@@ -108,22 +106,22 @@ export class BackupJobPair extends ComponentResource {
   /**
    * The credentials used to access the repository and encrypt the backups.
    */
-  readonly credentials: Output<Secret>
+  readonly credentials: Secret
 
   /**
    * The script bundle used by the backup and restore jobs.
    */
-  readonly scriptBundle: Output<ScriptBundle>
+  readonly scriptBundle: ScriptBundle
 
   /**
    * The job resource which restores the volume from the backup before creating an application.
    */
-  readonly restoreJob: Output<Job>
+  readonly restoreJob: Job
 
   /**
    * The cron job resource which backups the volume regularly.
    */
-  readonly backupJob: Output<CronJob>
+  readonly backupJob: CronJob
 
   /**
    * The full name of the Restic repository.
@@ -137,155 +135,150 @@ export class BackupJobPair extends ComponentResource {
   ) {
     super("highstate:restic:BackupJobPair", name, args, opts)
 
-    this.credentials = output(args).apply(args => {
-      return Secret.create(
-        `${name}-backup-credentials`,
-        {
-          namespace: args.namespace,
-          cluster: args.cluster,
+    const cluster = output(args.namespace).cluster
 
-          stringData: {
-            password: args.backupPassword,
-            "rclone.conf": args.resticRepo.rcloneConfig,
-          },
+    this.credentials = Secret.create(
+      `${name}-backup-credentials`,
+      {
+        namespace: args.namespace,
+
+        stringData: {
+          password: args.backupPassword,
+          "rclone.conf": output(args.resticRepo).rcloneConfig,
         },
-        { ...opts, parent: this },
-      )
-    })
+      },
+      { ...opts, parent: this },
+    )
 
-    this.resticRepoPath = output(args).apply(args => {
-      const relativePath = args.resticRepo.pathPattern
-        .replace(/\$clusterName/g, args.cluster.name)
+    this.resticRepoPath = output({
+      cluster,
+      resticRepo: args.resticRepo,
+    }).apply(({ cluster, resticRepo }) => {
+      const relativePath = resticRepo.pathPattern
+        .replace(/\$clusterName/g, cluster.name)
         .replace(/\$appName/g, name)
         .replace(/\$unitName/g, getUnitInstanceName())
 
-      return `rclone:${args.resticRepo.remoteName}:${relativePath}`
+      return `rclone:${resticRepo.remoteName}:${relativePath}`
     })
 
-    const environment = output({ args, repoPath: this.resticRepoPath }).apply(
-      ({ args, repoPath }) => {
-        return {
-          alpine: {
-            packages: ["rclone"],
-          },
-
-          ubuntu: {
-            preInstallPackages: ["curl", "unzip"],
-
-            preInstallScripts: {
-              "rclone.sh": text`
-              #!/bin/sh
-              set -e
-
-              curl https://rclone.org/install.sh | bash
-            `,
+    this.scriptBundle = new ScriptBundle(
+      `${name}-backup-scripts`,
+      {
+        namespace: args.namespace,
+        distribution: args.distribution ?? "alpine",
+
+        environments: output({
+          environment: args.environment,
+          environments: args.environments,
+        }).apply(({ environment, environments }) => [
+          backupEnvironment,
+          {
+            alpine: {
+              packages: ["rclone"],
             },
 
-            allowedEndpoints: ["rclone.org:443", "downloads.rclone.org:443"],
-          },
+            ubuntu: {
+              preInstallPackages: ["curl", "unzip"],
 
-          allowedEndpoints: [
-            ...(args.allowedEndpoints ?? []),
-            ...(args.resticRepo.remoteEndpoints ?? []),
-          ],
-
-          environment: {
-            RESTIC_REPOSITORY: repoPath,
-            RESTIC_PASSWORD_FILE: "/credentials/password",
-            RESTIC_HOSTNAME: "default",
-            RCLONE_CONFIG: "/credentials/rclone.conf",
-            EXTRA_BACKUP_OPTIONS: args.backupOptions?.join(" "),
-          },
+              preInstallScripts: {
+                "rclone.sh": text`
+                  #!/bin/sh
+                  set -e
 
-          volumes: [this.credentials, ...(args.volume ? [args.volume] : [])],
+                  curl https://rclone.org/install.sh | bash
+                `,
+              },
 
-          volumeMounts: [
-            {
-              volume: this.credentials,
-              mountPath: "/credentials",
-              readOnly: true,
+              allowedEndpoints: ["rclone.org:443", "downloads.rclone.org:443"],
             },
-            ...(args.volume
-              ? [
-                  {
-                    volume: args.volume,
-                    mountPath: "/data",
-                    subPath: args.subPath,
-                  },
-                ]
-              : []),
-          ],
-        } satisfies ScriptEnvironment
-      },
-    )
 
-    this.scriptBundle = output(args).apply(args => {
-      return new ScriptBundle(
-        `${name}-backup-scripts`,
-        {
-          cluster: args.cluster,
-          namespace: args.namespace,
-          distribution: args.distribution ?? "alpine",
-
-          environments: [
-            backupEnvironment,
-            environment,
-            ...normalize(args.environment, args.environments),
-          ],
-        },
-        { ...opts, parent: this },
-      )
-    })
+            allowedEndpoints: output({
+              allowedEndpoints: args.allowedEndpoints,
+              resticRepo: args.resticRepo,
+            }).apply(({ allowedEndpoints, resticRepo }) => [
+              ...(allowedEndpoints ?? []),
+              ...(resticRepo.remoteEndpoints ?? []),
+            ]),
+
+            environment: {
+              RESTIC_REPOSITORY: this.resticRepoPath,
+              RESTIC_PASSWORD_FILE: "/credentials/password",
+              RESTIC_HOSTNAME: "default",
+              RCLONE_CONFIG: "/credentials/rclone.conf",
+              EXTRA_BACKUP_OPTIONS: output(args.backupOptions).apply(options => options?.join(" ")),
+            },
 
-    this.restoreJob = output(args).apply(args => {
-      return new Job(
-        `${name}-restore`,
-        {
-          cluster: args.cluster,
-          namespace: args.namespace,
+            volumes: [this.credentials, ...(args.volume ? [args.volume] : [])],
+
+            volumeMounts: [
+              {
+                volume: this.credentials,
+                mountPath: "/credentials",
+                readOnly: true,
+              },
+              ...(args.volume
+                ? [
+                    {
+                      volume: args.volume,
+                      mountPath: "/data",
+                      subPath: args.subPath,
+                    },
+                  ]
+                : []),
+            ],
+          } satisfies ScriptEnvironment,
+          ...normalize(environment, environments),
+        ]),
+      },
+      { ...opts, parent: this },
+    )
 
-          container: createScriptContainer({
-            ...args.restoreContainer,
+    this.restoreJob = Job.create(
+      `${name}-restore`,
+      {
+        namespace: args.namespace,
 
+        container: output(args.restoreContainer).apply(restoreContainer =>
+          createScriptContainer({
+            ...restoreContainer,
             main: "restore.sh",
             bundle: this.scriptBundle,
           }),
+        ),
 
-          backoffLimit: 2,
-        },
-        { ...opts, parent: this },
-      )
-    })
-
-    this.backupJob = output(args).apply(args => {
-      return new CronJob(
-        `${name}-backup`,
-        {
-          namespace: args.namespace,
-          cluster: args.cluster,
+        backoffLimit: 2,
+      },
+      { ...opts, parent: this },
+    )
 
-          container: createScriptContainer({
-            ...args.backupContainer,
+    this.backupJob = CronJob.create(
+      `${name}-backup`,
+      {
+        namespace: args.namespace,
 
+        container: output(args.backupContainer).apply(backupContainer =>
+          createScriptContainer({
+            ...backupContainer,
             main: "backup.sh",
             bundle: this.scriptBundle,
           }),
+        ),
 
-          schedule: args.schedule ?? "0 0 * * *",
-          concurrencyPolicy: "Forbid",
+        schedule: args.schedule ?? "0 0 * * *",
+        concurrencyPolicy: "Forbid",
 
-          jobTemplate: {
-            spec: {
-              backoffLimit: 2,
-            },
+        jobTemplate: {
+          spec: {
+            backoffLimit: 2,
           },
         },
-        { ...opts, parent: this },
-      )
-    })
+      },
+      { ...opts, parent: this },
+    )
   }
 
-  handleTrigger(triggers: InstanceTriggerInvocation[]): InstanceTrigger | undefined {
+  handleTrigger(triggers: TriggerInvocation[]): UnitTrigger | undefined {
     const triggerName = `restic.backup-on-destroy.${this.name}`
     const invokedTrigger = triggers.find(trigger => trigger.name === triggerName)
 
@@ -296,16 +289,23 @@ export class BackupJobPair extends ComponentResource {
 
     return {
       name: triggerName,
-      title: "Backup on Destroy",
-      description: `Backup the "${this.name}" before destroying.`,
+      meta: {
+        title: "Backup on Destroy",
+        description: `Backup the "${this.name}" before destroying.`,
+        icon: "material-symbols:backup",
+      },
       spec: {
         type: "before-destroy",
       },
     }
   }
 
-  createTerminal(): InstanceTerminal {
-    return {
+  createTerminal(): Output<UnitTerminal> {
+    return output({
+      backupPassword: this.args.backupPassword,
+      resticRepo: this.args.resticRepo,
+      resticRepoPath: this.resticRepoPath,
+    }).apply(({ backupPassword, resticRepo, resticRepoPath }) => ({
       name: "restic",
 
       meta: {
@@ -314,39 +314,62 @@ export class BackupJobPair extends ComponentResource {
         icon: "material-symbols:backup",
       },
 
-      image: images["terminal-restic"].image,
-      command: ["bash", "/welcome.sh"],
-
-      files: {
-        "/welcome.sh": text`
-          echo "Use 'restic' to manage the repository."
-          echo
+      spec: {
+        image: images["terminal-restic"].image,
+        command: ["bash", "/welcome.sh"],
+
+        files: {
+          "/welcome.sh": {
+            meta: { name: "/welcome.sh" },
+            content: {
+              type: "embedded" as const,
+              value: text`
+                echo "Use 'restic' to manage the repository."
+                echo
+
+                exec bash
+              `,
+            },
+          },
 
-          exec bash
-        `,
+          "/credentials/password": {
+            meta: { name: "/credentials/password" },
+            content: {
+              type: "embedded" as const,
+              value: backupPassword,
+            },
+          },
 
-        "/credentials/password": output(this.args).backupPassword,
-        "/root/.config/rclone/rclone.conf": output(this.args).resticRepo.rcloneConfig,
-      },
+          "/root/.config/rclone/rclone.conf": {
+            meta: { name: "/root/.config/rclone/rclone.conf" },
+            content: {
+              type: "embedded" as const,
+              value: resticRepo.rcloneConfig,
+            },
+          },
+        },
 
-      env: {
-        RESTIC_REPOSITORY: this.resticRepoPath,
-        RESTIC_PASSWORD_FILE: "/credentials/password",
+        env: {
+          RESTIC_REPOSITORY: resticRepoPath,
+          RESTIC_PASSWORD_FILE: "/credentials/password",
+        },
       },
-    }
+    }))
   }
 
   private async createBackupOnDestroyJob(): Promise<void> {
+    const cluster = await toPromise(output(this.args.namespace).cluster)
+
     new batch.v1.Job(
       `${this.name}-backup-on-destroy`,
       {
         metadata: {
           name: `${this.name}-backup-on-destroy`,
-          namespace: this.backupJob.cronJob.metadata.namespace,
+          namespace: this.backupJob.metadata.namespace,
         },
-        spec: this.backupJob.cronJob.spec.jobTemplate.spec,
+        spec: this.backupJob.spec.jobTemplate.spec,
       },
-      { ...this.opts, parent: this, provider: await getProvider(this.args.cluster) },
+      { ...this.opts, parent: this, provider: getProvider(cluster) },
     )
   }
 }

package/src/repository/index.ts

@@ -0,0 +1,77 @@
+import { restic } from "@highstate/library"
+import { forUnit, toPromise } from "@highstate/pulumi"
+import { l34EndpointToString, parseL34Endpoint } from "@highstate/common"
+import { uniqueBy } from "remeda"
+
+const { args, inputs, secrets, outputs } = forUnit(restic.repository)
+
+const remoteInfo = await toPromise(
+  secrets.rcloneConfig.apply(config => {
+    const remoteNames = Array.from(config.matchAll(/(?<=\[).+?(?=\])/g))
+
+    if (remoteNames.length === 0) {
+      throw new Error("No remotes found in rclone config")
+    }
+
+    if (remoteNames.length > 1) {
+      throw new Error("Multiple remotes found in rclone config")
+    }
+
+    const remoteName = remoteNames[0][0]
+
+    // extract the type from the remote section
+    const remoteSection = config.split(`[${remoteName}]`)[1]?.split(/\n\s*\[/)[0] || ""
+    const typeMatch = remoteSection.match(/^\s*type\s*=\s*(.+)$/m)
+
+    if (!typeMatch) {
+      throw new Error(`No type found for remote '${remoteName}'`)
+    }
+
+    return {
+      name: remoteName,
+      type: typeMatch[1].trim(),
+    }
+  }),
+)
+
+const { remoteL3Endpoints, remoteL4Endpoints } = await toPromise(inputs)
+
+const autoDiscoveredEndpoints: Record<string, string[]> = {
+  yandex: [
+    "cloud-api.yandex.com",
+    "downloader.disk.yandex.ru",
+    "*.storage.yandex.net",
+    "*.disk.yandex.net",
+  ],
+}
+
+const remoteEndpoints = uniqueBy(
+  [
+    //
+    ...(autoDiscoveredEndpoints[remoteInfo.type] ?? []).map(parseL34Endpoint),
+    ...args.remoteEndpoints.map(parseL34Endpoint),
+    ...remoteL3Endpoints,
+    ...remoteL4Endpoints,
+  ],
+  l34EndpointToString,
+)
+
+export default outputs({
+  repo: {
+    type: "rclone",
+    pathPattern: args.pathPattern,
+    rcloneConfig: secrets.rcloneConfig,
+    remoteName: remoteInfo.name,
+    remoteEndpoints,
+  },
+
+  $statusFields: {
+    remoteName: remoteInfo.name,
+    remoteType: remoteInfo.type,
+
+    remoteEndpoints: {
+      value: remoteEndpoints.map(l34EndpointToString),
+      complementaryTo: "remoteEndpoints",
+    },
+  },
+})

package/dist/chunk-G3PMV62Z.js

@@ -1,33 +0,0 @@
-var __create = Object.create;
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
-var __getProtoOf = Object.getPrototypeOf;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
-var __commonJS = (cb, mod) => function __require() {
-  return mod || (0, cb[__getOwnPropNames(cb)[0]])((mod = { exports: {} }).exports, mod), mod.exports;
-};
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
-  // If the importer is in node compatibility mode or this is not an ESM
-  // file that has been converted to a CommonJS file using a Babel-
-  // compatible transform (i.e. "__esModule" has not been set), then set
-  // "default" to the CommonJS "module.exports" for node compatibility.
-  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
-  mod
-));
-
-export { __commonJS, __export, __toESM };
-//# sourceMappingURL=chunk-G3PMV62Z.js.map
-//# sourceMappingURL=chunk-G3PMV62Z.js.map