@highstate/yandex 0.20.0 → 0.21.1

package/dist/chunk-09r4wmhq.js

@@ -0,0 +1,17 @@
+// @bun
+// src/provider.ts
+import { output, toPromise } from "@highstate/pulumi";
+import { Provider } from "@highstate/yandex-sdk";
+async function createProvider(connection, cloudId) {
+  return await toPromise(output(connection).apply((connection2) => {
+    return new Provider(connection2.cloudId, {
+      serviceAccountKeyFile: connection2.authorizedKeyJson.value,
+      cloudId: cloudId ?? connection2.cloudId,
+      folderId: connection2.defaultFolderId,
+      zone: connection2.defaultZone,
+      regionId: connection2.regionId
+    });
+  }));
+}
+
+export { createProvider };

package/dist/connection/index.js

@@ -1,8 +1,8 @@
-import { yandex } from '@highstate/library';
-import { forUnit, toPromise, makeEntityOutput } from '@highstate/pulumi';
-import { Provider, getIamServiceAccount, getResourcemanagerFolder } from '@highstate/yandex-sdk';
-
+// @bun
 // src/connection/index.ts
+import { yandex } from "@highstate/library";
+import { forUnit, makeEntityOutput, toPromise } from "@highstate/pulumi";
+import { getIamServiceAccount, getResourcemanagerFolder, Provider } from "@highstate/yandex-sdk";
 var { args, secrets, outputs } = forUnit(yandex.connection);
 var serviceAccountKeyFileString = await toPromise(secrets.authorizedKeyJson);
 var keyFileData = JSON.parse(serviceAccountKeyFileString);
@@ -12,10 +12,7 @@ var provider = new Provider("yandex", {
   zone: args.region.defaultZone,
   regionId: args.region.id
 });
-var serviceAccount = await getIamServiceAccount(
-  { serviceAccountId },
-  { provider }
-);
+var serviceAccount = await getIamServiceAccount({ serviceAccountId }, { provider });
 var folder = await getResourcemanagerFolder({ folderId: serviceAccount.folderId }, { provider });
 if (!folder.cloudId) {
   throw new Error("Could not determine cloud ID from folder");
@@ -53,7 +50,6 @@ var connection_default = outputs({
     }
   }
 });
-
-export { connection_default as default };
-//# sourceMappingURL=index.js.map
-//# sourceMappingURL=index.js.map
+export {
+  connection_default as default
+};

package/dist/disk/index.js

@@ -1,22 +1,22 @@
-import { createProvider } from '../chunk-ISIWD2MZ.js';
-import { yandex } from '@highstate/library';
-import { forUnit, getResourceComment, makeEntityOutput } from '@highstate/pulumi';
-import { ComputeDisk } from '@highstate/yandex-sdk';
+// @bun
+import {
+  createProvider
+} from "../chunk-09r4wmhq.js";
 
+// src/disk/index.ts
+import { yandex } from "@highstate/library";
+import { forUnit, getResourceComment, makeEntityOutput } from "@highstate/pulumi";
+import { ComputeDisk } from "@highstate/yandex-sdk";
 var { name, args, inputs, outputs } = forUnit(yandex.disk);
 var provider = await createProvider(inputs.connection);
 var diskName = args.diskName ?? name;
-var disk = new ComputeDisk(
-  "disk",
-  {
-    name: diskName,
-    description: getResourceComment(),
-    type: args.type,
-    size: args.size,
-    allowRecreate: false
-  },
-  { provider, protect: true }
-);
+var disk = new ComputeDisk("disk", {
+  name: diskName,
+  description: getResourceComment(),
+  type: args.type,
+  size: args.size,
+  allowRecreate: false
+}, { provider, protect: true });
 var disk_default = outputs({
   disk: makeEntityOutput({
     entity: yandex.diskEntity,
@@ -29,7 +29,6 @@ var disk_default = outputs({
     id: disk.id
   }
 });
-
-export { disk_default as default };
-//# sourceMappingURL=index.js.map
-//# sourceMappingURL=index.js.map
+export {
+  disk_default as default
+};

package/dist/existing-image/index.js

@@ -1,8 +1,12 @@
-import { createProvider } from '../chunk-ISIWD2MZ.js';
-import { yandex } from '@highstate/library';
-import { forUnit, makeEntityOutput } from '@highstate/pulumi';
-import { getComputeImage } from '@highstate/yandex-sdk';
+// @bun
+import {
+  createProvider
+} from "../chunk-09r4wmhq.js";
 
+// src/existing-image/index.ts
+import { yandex } from "@highstate/library";
+import { forUnit, makeEntityOutput } from "@highstate/pulumi";
+import { getComputeImage } from "@highstate/yandex-sdk";
 var { args, inputs, outputs } = forUnit(yandex.existingImage);
 var provider = await createProvider(inputs.connection);
 var ycImage = await getComputeImage({ imageId: args.id }, { provider });
@@ -22,7 +26,6 @@ var existing_image_default = outputs({
     name: ycImage.name
   }
 });
-
-export { existing_image_default as default };
-//# sourceMappingURL=index.js.map
-//# sourceMappingURL=index.js.map
+export {
+  existing_image_default as default
+};

package/dist/highstate.manifest.json

@@ -1,9 +1,9 @@
 {
   "sourceHashes": {
-    "./dist/connection/index.js": 1714431882,
-    "./dist/disk/index.js": 3931067747,
-    "./dist/existing-image/index.js": 2980200400,
-    "./dist/virtual-machine/index.js": 2819876153,
-    "./dist/instance-group/index.js": 3438885092
+    "./dist/connection/index.js": 1297805961,
+    "./dist/disk/index.js": 872672425,
+    "./dist/existing-image/index.js": 1667771667,
+    "./dist/virtual-machine/index.js": 1341835348,
+    "./dist/instance-group/index.js": 2144968854
   }
 }

package/dist/instance-group/index.js

@@ -1,10 +1,27 @@
-import { createProvider } from '../chunk-ISIWD2MZ.js';
-import { generateSshPrivateKey, sshPrivateKeyToKeyPair, generatePassword, parseEndpoint, createServerBundle, l3EndpointToString } from '@highstate/common';
-import { trimIndentation } from '@highstate/contract';
-import { yandex } from '@highstate/library';
-import { forUnit, toPromise, interpolate, getResourceComment } from '@highstate/pulumi';
-import { getVpcSubnet, KmsSymmetricKey, ComputeDisk, VpcAddress, ComputeInstanceGroup } from '@highstate/yandex-sdk';
+// @bun
+import {
+  createProvider
+} from "../chunk-09r4wmhq.js";
 
+// src/instance-group/index.ts
+import {
+  createServerBundle,
+  generatePassword,
+  generateSshPrivateKey,
+  l3EndpointToString,
+  parseEndpoint,
+  sshPrivateKeyToKeyPair
+} from "@highstate/common";
+import { trimIndentation } from "@highstate/contract";
+import { yandex } from "@highstate/library";
+import { forUnit, getResourceComment, interpolate, toPromise } from "@highstate/pulumi";
+import {
+  ComputeDisk,
+  ComputeInstanceGroup,
+  getVpcSubnet,
+  KmsSymmetricKey,
+  VpcAddress
+} from "@highstate/yandex-sdk";
 var { name, args, getSecret, inputs, outputs } = forUnit(yandex.instanceGroup);
 var groupName = args.groupName ?? name;
 var provider = await createProvider(inputs.connection, args.cloudId);
@@ -13,78 +30,57 @@ var rootPassword = getSecret("rootPassword", generatePassword);
 var subnetId = args.network.subnetId;
 if (!subnetId) {
   const defaultSubnetName = await toPromise(interpolate`default-${inputs.connection.defaultZone}`);
-  const subnet = await getVpcSubnet(
-    {
-      folderId: await toPromise(inputs.connection.defaultFolderId),
-      name: defaultSubnetName
-    },
-    { provider }
-  );
+  const subnet = await getVpcSubnet({
+    folderId: await toPromise(inputs.connection.defaultFolderId),
+    name: defaultSubnetName
+  }, { provider });
   if (!subnet.id) {
-    throw new Error(
-      `Could not find default subnet '${defaultSubnetName}' in zone ${inputs.connection.defaultZone}`
-    );
+    throw new Error(`Could not find default subnet '${defaultSubnetName}' in zone ${inputs.connection.defaultZone}`);
   }
   subnetId = subnet.id;
 }
 var encryptionKeyId;
 if (args.bootDisk.encrypted) {
-  const encryptionKey = new KmsSymmetricKey(
-    "encryption-key",
-    {
-      name: groupName,
-      description: getResourceComment(),
-      folderId: args.folderId ?? inputs.connection.defaultFolderId
-    },
-    { provider }
-  );
+  const encryptionKey = new KmsSymmetricKey("encryption-key", {
+    name: groupName,
+    description: getResourceComment(),
+    folderId: args.folderId ?? inputs.connection.defaultFolderId
+  }, { provider });
   encryptionKeyId = encryptionKey.id;
 }
 var disks = Array.from({ length: args.size }, (_, i) => {
-  return new ComputeDisk(
-    `disk-${i + 1}`,
-    {
-      name: `${groupName}-${i + 1}`,
-      type: args.bootDisk.type,
-      size: args.bootDisk.size,
-      imageId: inputs.image.id,
-      allowRecreate: false,
-      folderId: args.folderId ?? inputs.connection.defaultFolderId,
-      zone: inputs.connection.defaultZone,
-      kmsKeyId: encryptionKeyId
-    },
-    { provider, ignoreChanges: ["imageId"] }
-  );
+  return new ComputeDisk(`disk-${i + 1}`, {
+    name: `${groupName}-${i + 1}`,
+    type: args.bootDisk.type,
+    size: args.bootDisk.size,
+    imageId: inputs.image.id,
+    allowRecreate: false,
+    folderId: args.folderId ?? inputs.connection.defaultFolderId,
+    zone: inputs.connection.defaultZone,
+    kmsKeyId: encryptionKeyId
+  }, { provider, ignoreChanges: ["imageId"] });
 });
 var internalAddresses = Array.from({ length: args.size }, (_, i) => {
-  return new VpcAddress(
-    `internal-address-${i + 1}`,
-    {
-      name: `${groupName}-internal-${i + 1}`,
-      folderId: args.folderId ?? inputs.connection.defaultFolderId,
-      description: getResourceComment(),
-      internalIpv4Address: {
-        subnetId
-      }
-    },
-    { provider }
-  );
+  return new VpcAddress(`internal-address-${i + 1}`, {
+    name: `${groupName}-internal-${i + 1}`,
+    folderId: args.folderId ?? inputs.connection.defaultFolderId,
+    description: getResourceComment(),
+    internalIpv4Address: {
+      subnetId
+    }
+  }, { provider });
 });
 var publicAddresses;
 if (args.network.assignPublicIp && args.network.reservePublicIp) {
   publicAddresses = Array.from({ length: args.size }, (_, i) => {
-    return new VpcAddress(
-      `address-${i + 1}`,
-      {
-        name: `${groupName}-${i + 1}`,
-        folderId: args.folderId ?? inputs.connection.defaultFolderId,
-        description: getResourceComment(),
-        externalIpv4Address: {
-          zoneId: inputs.connection.defaultZone
-        }
-      },
-      { provider }
-    );
+    return new VpcAddress(`address-${i + 1}`, {
+      name: `${groupName}-${i + 1}`,
+      folderId: args.folderId ?? inputs.connection.defaultFolderId,
+      description: getResourceComment(),
+      externalIpv4Address: {
+        zoneId: inputs.connection.defaultZone
+      }
+    }, { provider });
   });
 }
 var userData = interpolate`
@@ -96,100 +92,90 @@ var userData = interpolate`
         - ${sshKeyPair.publicKey}
       sudo: ALL=(ALL) NOPASSWD:ALL
 `.apply(trimIndentation);
-var instanceGroup = new ComputeInstanceGroup(
-  "instance-group",
-  {
-    name: groupName,
+var instanceGroup = new ComputeInstanceGroup("instance-group", {
+  name: groupName,
+  description: getResourceComment(),
+  folderId: args.folderId ?? inputs.connection.defaultFolderId,
+  allocationPolicy: {
+    zones: [inputs.connection.defaultZone]
+  },
+  deployPolicy: {
+    maxExpansion: 0,
+    maxUnavailable: 1
+  },
+  scalePolicy: {
+    fixedScale: {
+      size: args.size
+    }
+  },
+  instanceTemplate: {
+    name: `${groupName}-{instance.index}`,
     description: getResourceComment(),
-    folderId: args.folderId ?? inputs.connection.defaultFolderId,
-    allocationPolicy: {
-      zones: [inputs.connection.defaultZone]
+    platformId: args.platformId,
+    resources: {
+      cores: args.resources.cores,
+      memory: args.resources.memory,
+      coreFraction: args.resources.coreFraction
     },
-    deployPolicy: {
-      maxExpansion: 0,
-      maxUnavailable: 1
+    schedulingPolicy: {
+      preemptible: args.preemptible
     },
-    scalePolicy: {
-      fixedScale: {
-        size: args.size
-      }
+    bootDisk: {
+      diskId: `{disk_{instance.index}}`
     },
-    instanceTemplate: {
-      name: `${groupName}-{instance.index}`,
-      description: getResourceComment(),
-      platformId: args.platformId,
-      resources: {
-        cores: args.resources.cores,
-        memory: args.resources.memory,
-        coreFraction: args.resources.coreFraction
-      },
-      schedulingPolicy: {
-        preemptible: args.preemptible
-      },
-      bootDisk: {
-        diskId: `{disk_{instance.index}}`
-      },
-      networkInterfaces: [
-        {
-          subnetIds: [subnetId],
-          ipAddress: `{internal_address_{instance.index}}`,
-          nat: args.network.assignPublicIp,
-          natIpAddress: publicAddresses ? `{address_{instance.index}}` : void 0
-        }
-      ],
-      metadata: {
-        "user-data": userData
+    networkInterfaces: [
+      {
+        subnetIds: [subnetId],
+        ipAddress: `{internal_address_{instance.index}}`,
+        nat: args.network.assignPublicIp,
+        natIpAddress: publicAddresses ? `{address_{instance.index}}` : undefined
       }
-    },
-    variables: {
-      ...Object.fromEntries(disks.map((_, i) => [`disk_${i + 1}`, disks[i].id])),
-      ...Object.fromEntries(
-        internalAddresses.map((_, i) => [
-          `internal_address_${i + 1}`,
-          internalAddresses[i].internalIpv4Address.apply((a) => a.address)
-        ])
-      ),
-      ...publicAddresses ? Object.fromEntries(
-        publicAddresses.map((_, i) => [
-          `address_${i + 1}`,
-          publicAddresses[i].externalIpv4Address.apply((a) => a.address)
-        ])
-      ) : {}
-    },
-    serviceAccountId: inputs.connection.serviceAccountId
+    ],
+    metadata: {
+      "user-data": userData
+    }
+  },
+  variables: {
+    ...Object.fromEntries(disks.map((_, i) => [`disk_${i + 1}`, disks[i].id])),
+    ...Object.fromEntries(internalAddresses.map((_, i) => [
+      `internal_address_${i + 1}`,
+      internalAddresses[i].internalIpv4Address.apply((a) => a.address)
+    ])),
+    ...publicAddresses ? Object.fromEntries(publicAddresses.map((_, i) => [
+      `address_${i + 1}`,
+      publicAddresses[i].externalIpv4Address.apply((a) => a.address)
+    ])) : {}
   },
-  { provider }
-);
+  serviceAccountId: inputs.connection.serviceAccountId
+}, { provider });
 var terminals = [];
 var instances = await toPromise(instanceGroup.instances);
-var servers = await toPromise(
-  instances.map(async (instance, i) => {
-    const firstInterface = instance.networkInterfaces[0];
-    const publicIp = args.network.assignPublicIp ? firstInterface?.natIpAddress : firstInterface?.ipAddress;
-    if (!publicIp) {
-      throw new Error("No IP address assigned to instance");
-    }
-    const endpoint = parseEndpoint(publicIp, 3);
-    const { server, terminal } = await createServerBundle({
-      name: `${groupName}-${i + 1}`,
-      endpoints: [endpoint],
-      sshArgs: args.ssh,
-      sshPassword: rootPassword,
-      sshKeyPair
+var servers = await toPromise(instances.map(async (instance, i) => {
+  const firstInterface = instance.networkInterfaces[0];
+  const publicIp = args.network.assignPublicIp ? firstInterface?.natIpAddress : firstInterface?.ipAddress;
+  if (!publicIp) {
+    throw new Error("No IP address assigned to instance");
+  }
+  const endpoint = parseEndpoint(publicIp, 3);
+  const { server, terminal } = await createServerBundle({
+    name: `${groupName}-${i + 1}`,
+    endpoints: [endpoint],
+    sshArgs: args.ssh,
+    sshPassword: rootPassword,
+    sshKeyPair
+  });
+  if (terminal) {
+    const rawTerminal = await toPromise(terminal);
+    terminals.push({
+      ...rawTerminal,
+      name: `ssh-${i + 1}`,
+      meta: {
+        title: `Shell (${i + 1})`
+      }
     });
-    if (terminal) {
-      const rawTerminal = await toPromise(terminal);
-      terminals.push({
-        ...rawTerminal,
-        name: `ssh-${i + 1}`,
-        meta: {
-          title: `Shell (${i + 1})`
-        }
-      });
-    }
-    return server;
-  })
-);
+  }
+  return server;
+}));
 var instance_group_default = outputs({
   servers,
   $statusFields: {
@@ -198,7 +184,6 @@ var instance_group_default = outputs({
   },
   $terminals: terminals
 });
-
-export { instance_group_default as default };
-//# sourceMappingURL=index.js.map
-//# sourceMappingURL=index.js.map
+export {
+  instance_group_default as default
+};

package/dist/virtual-machine/index.js

@@ -1,10 +1,27 @@
-import { createProvider } from '../chunk-ISIWD2MZ.js';
-import { generateSshPrivateKey, sshPrivateKeyToKeyPair, generatePassword, parseEndpoint, createServerBundle, l3EndpointToString } from '@highstate/common';
-import { trimIndentation } from '@highstate/contract';
-import { yandex } from '@highstate/library';
-import { forUnit, toPromise, interpolate, getResourceComment } from '@highstate/pulumi';
-import { getVpcSubnet, KmsSymmetricKey, ComputeDisk, VpcAddress, ComputeInstance } from '@highstate/yandex-sdk';
+// @bun
+import {
+  createProvider
+} from "../chunk-09r4wmhq.js";
 
+// src/virtual-machine/index.ts
+import {
+  createServerBundle,
+  generatePassword,
+  generateSshPrivateKey,
+  l3EndpointToString,
+  parseEndpoint,
+  sshPrivateKeyToKeyPair
+} from "@highstate/common";
+import { trimIndentation } from "@highstate/contract";
+import { yandex } from "@highstate/library";
+import { forUnit, getResourceComment, interpolate, toPromise } from "@highstate/pulumi";
+import {
+  ComputeDisk,
+  ComputeInstance,
+  getVpcSubnet,
+  KmsSymmetricKey,
+  VpcAddress
+} from "@highstate/yandex-sdk";
 var { name, args, getSecret, inputs, outputs } = forUnit(yandex.virtualMachine);
 var vmName = args.vmName ?? name;
 var provider = await createProvider(inputs.connection, args.cloudId);
@@ -13,47 +30,34 @@ var rootPassword = getSecret("rootPassword", generatePassword);
 var subnetId = args.network.subnetId;
 if (!subnetId) {
   const defaultSubnetName = await toPromise(interpolate`default-${inputs.connection.defaultZone}`);
-  const subnet = await getVpcSubnet(
-    {
-      folderId: await toPromise(inputs.connection.defaultFolderId),
-      name: defaultSubnetName
-    },
-    { provider }
-  );
+  const subnet = await getVpcSubnet({
+    folderId: await toPromise(inputs.connection.defaultFolderId),
+    name: defaultSubnetName
+  }, { provider });
   if (!subnet.id) {
-    throw new Error(
-      `Could not find default subnet '${defaultSubnetName}' in zone ${inputs.connection.defaultZone}`
-    );
+    throw new Error(`Could not find default subnet '${defaultSubnetName}' in zone ${inputs.connection.defaultZone}`);
   }
   subnetId = subnet.id;
 }
 var encryptionKeyId;
 if (args.bootDisk.encrypted) {
-  const encryptionKey = new KmsSymmetricKey(
-    "encryption-key",
-    {
-      name: vmName,
-      description: getResourceComment(),
-      folderId: args.folderId ?? inputs.connection.defaultFolderId
-    },
-    { provider }
-  );
+  const encryptionKey = new KmsSymmetricKey("encryption-key", {
+    name: vmName,
+    description: getResourceComment(),
+    folderId: args.folderId ?? inputs.connection.defaultFolderId
+  }, { provider });
   encryptionKeyId = encryptionKey.id;
 }
-var disk = new ComputeDisk(
-  "disk",
-  {
-    name: vmName,
-    type: args.bootDisk.type,
-    size: args.bootDisk.size,
-    imageId: inputs.image.id,
-    allowRecreate: false,
-    folderId: args.folderId ?? inputs.connection.defaultFolderId,
-    zone: inputs.connection.defaultZone,
-    kmsKeyId: encryptionKeyId
-  },
-  { provider, ignoreChanges: ["imageId"] }
-);
+var disk = new ComputeDisk("disk", {
+  name: vmName,
+  type: args.bootDisk.type,
+  size: args.bootDisk.size,
+  imageId: inputs.image.id,
+  allowRecreate: false,
+  folderId: args.folderId ?? inputs.connection.defaultFolderId,
+  zone: inputs.connection.defaultZone,
+  kmsKeyId: encryptionKeyId
+}, { provider, ignoreChanges: ["imageId"] });
 var userData = interpolate`
   #cloud-config
   hostname: ${vmName}
@@ -65,58 +69,48 @@ var userData = interpolate`
 `.apply(trimIndentation);
 var publicAddress;
 if (args.network.assignPublicIp && args.network.reservePublicIp) {
-  publicAddress = new VpcAddress(
-    "address",
-    {
-      name: vmName,
-      folderId: args.folderId ?? inputs.connection.defaultFolderId,
-      description: getResourceComment(),
-      externalIpv4Address: {
-        zoneId: inputs.connection.defaultZone
-      }
-    },
-    { provider }
-  );
-}
-var instance = new ComputeInstance(
-  "virtual-machine",
-  {
+  publicAddress = new VpcAddress("address", {
     name: vmName,
-    description: getResourceComment(),
     folderId: args.folderId ?? inputs.connection.defaultFolderId,
-    zone: inputs.connection.defaultZone,
-    platformId: args.platformId,
-    allowStoppingForUpdate: true,
-    resources: {
-      cores: args.resources.cores,
-      memory: args.resources.memory,
-      coreFraction: args.resources.coreFraction
-    },
-    schedulingPolicy: {
-      preemptible: args.preemptible
-    },
-    bootDisk: {
-      diskId: disk.id
-    },
-    networkInterfaces: [
-      {
-        subnetId,
-        nat: args.network.assignPublicIp,
-        natIpAddress: publicAddress ? publicAddress.externalIpv4Address.apply((a) => a.address) : void 0
-      }
-    ],
-    metadata: {
-      "user-data": userData
+    description: getResourceComment(),
+    externalIpv4Address: {
+      zoneId: inputs.connection.defaultZone
     }
+  }, { provider });
+}
+var instance = new ComputeInstance("virtual-machine", {
+  name: vmName,
+  description: getResourceComment(),
+  folderId: args.folderId ?? inputs.connection.defaultFolderId,
+  zone: inputs.connection.defaultZone,
+  platformId: args.platformId,
+  allowStoppingForUpdate: true,
+  resources: {
+    cores: args.resources.cores,
+    memory: args.resources.memory,
+    coreFraction: args.resources.coreFraction
+  },
+  schedulingPolicy: {
+    preemptible: args.preemptible
   },
-  { provider, ignoreChanges: ["bootDisk"] }
-);
-var publicIp = await toPromise(
-  instance.networkInterfaces.apply((ni) => {
-    const firstInterface = ni[0];
-    return args.network.assignPublicIp ? firstInterface?.natIpAddress : firstInterface?.ipAddress;
-  })
-);
+  bootDisk: {
+    diskId: disk.id
+  },
+  networkInterfaces: [
+    {
+      subnetId,
+      nat: args.network.assignPublicIp,
+      natIpAddress: publicAddress ? publicAddress.externalIpv4Address.apply((a) => a.address) : undefined
+    }
+  ],
+  metadata: {
+    "user-data": userData
+  }
+}, { provider, ignoreChanges: ["bootDisk"] });
+var publicIp = await toPromise(instance.networkInterfaces.apply((ni) => {
+  const firstInterface = ni[0];
+  return args.network.assignPublicIp ? firstInterface?.natIpAddress : firstInterface?.ipAddress;
+}));
 if (!publicIp) {
   throw new Error("No IP address assigned to instance");
 }
@@ -137,7 +131,6 @@ var virtual_machine_default = outputs({
   },
   $terminals: [terminal]
 });
-
-export { virtual_machine_default as default };
-//# sourceMappingURL=index.js.map
-//# sourceMappingURL=index.js.map
+export {
+  virtual_machine_default as default
+};

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@highstate/yandex",
-  "version": "0.20.0",
+  "version": "0.21.1",
   "type": "module",
   "files": [
     "dist"
@@ -20,27 +20,27 @@
       "stdlib"
     ]
   },
+  "scripts": {
+    "build": "highstate build",
+    "typecheck": "tsgo --noEmit --skipLibCheck",
+    "biome": "biome check --write --unsafe --error-on-warnings",
+    "biome:check": "biome check --error-on-warnings",
+    "generate-sdks": "./scripts/generate-sdks.sh"
+  },
   "dependencies": {
-    "@pulumi/pulumi": "3.220.0",
-    "@highstate/contract": "0.20.0",
     "@highstate/common": "0.20.0",
+    "@highstate/contract": "0.20.0",
     "@highstate/library": "0.20.0",
+    "@highstate/pulumi": "0.20.0",
     "@highstate/yandex-sdk": "0.19.1",
-    "@highstate/pulumi": "0.20.0"
+    "@pulumi/pulumi": "3.232.0"
   },
   "devDependencies": {
     "@biomejs/biome": "2.2.0",
-    "@typescript/native-preview": "^7.0.0-dev.20250920.1",
-    "@highstate/cli": "0.20.0"
+    "@highstate/cli": "0.20.0",
+    "@typescript/native-preview": "^7.0.0-dev.20250920.1"
   },
   "repository": {
     "url": "https://github.com/highstate-io/highstate"
-  },
-  "scripts": {
-    "build": "highstate build",
-    "typecheck": "tsgo --noEmit --skipLibCheck",
-    "biome": "biome check --write --unsafe --error-on-warnings",
-    "biome:check": "biome check --error-on-warnings",
-    "generate-sdks": "./scripts/generate-sdks.sh"
   }
-}
+}

package/LICENSE

@@ -1,21 +0,0 @@
-MIT License
-
-Copyright (c) 2025 Exeteres
-
-Permission is hereby granted, free of charge, to any person obtaining a copy
-of this software and associated documentation files (the "Software"), to deal
-in the Software without restriction, including without limitation the rights
-to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-copies of the Software, and to permit persons to whom the Software is
-furnished to do so, subject to the following conditions:
-
-The above copyright notice and this permission notice shall be included in all
-copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-SOFTWARE.

package/dist/chunk-ISIWD2MZ.js

@@ -1,21 +0,0 @@
-import { toPromise, output } from '@highstate/pulumi';
-import { Provider } from '@highstate/yandex-sdk';
-
-// src/provider.ts
-async function createProvider(connection, cloudId) {
-  return await toPromise(
-    output(connection).apply((connection2) => {
-      return new Provider(connection2.cloudId, {
-        serviceAccountKeyFile: connection2.authorizedKeyJson.value,
-        cloudId: cloudId ?? connection2.cloudId,
-        folderId: connection2.defaultFolderId,
-        zone: connection2.defaultZone,
-        regionId: connection2.regionId
-      });
-    })
-  );
-}
-
-export { createProvider };
-//# sourceMappingURL=chunk-ISIWD2MZ.js.map
-//# sourceMappingURL=chunk-ISIWD2MZ.js.map

package/dist/chunk-ISIWD2MZ.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../src/provider.ts"],"names":["connection"],"mappings":";;;;AAKA,eAAsB,cAAA,CACpB,YACA,OAAA,EACmB;AACnB,EAAA,OAAO,MAAM,SAAA;AAAA,IACX,MAAA,CAAO,UAAU,CAAA,CAAE,KAAA,CAAM,CAAAA,WAAAA,KAAc;AACrC,MAAA,OAAO,IAAI,QAAA,CAASA,WAAAA,CAAW,OAAA,EAAS;AAAA,QACtC,qBAAA,EAAuBA,YAAW,iBAAA,CAAkB,KAAA;AAAA,QACpD,OAAA,EAAS,WAAWA,WAAAA,CAAW,OAAA;AAAA,QAC/B,UAAUA,WAAAA,CAAW,eAAA;AAAA,QACrB,MAAMA,WAAAA,CAAW,WAAA;AAAA,QACjB,UAAUA,WAAAA,CAAW;AAAA,OACtB,CAAA;AAAA,IACH,CAAC;AAAA,GACH;AACF","file":"chunk-ISIWD2MZ.js","sourcesContent":["import type { yandex } from \"@highstate/library\"\nimport type { Input } from \"@highstate/pulumi\"\nimport { output, toPromise } from \"@highstate/pulumi\"\nimport { Provider } from \"@highstate/yandex-sdk\"\n\nexport async function createProvider(\n  connection: yandex.Connection,\n  cloudId?: Input<string>,\n): Promise<Provider> {\n  return await toPromise(\n    output(connection).apply(connection => {\n      return new Provider(connection.cloudId, {\n        serviceAccountKeyFile: connection.authorizedKeyJson.value,\n        cloudId: cloudId ?? connection.cloudId,\n        folderId: connection.defaultFolderId,\n        zone: connection.defaultZone,\n        regionId: connection.regionId,\n      })\n    }),\n  )\n}\n"]}

package/dist/connection/index.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../src/connection/index.ts"],"names":[],"mappings":";;;;;AAIA,IAAM,EAAE,IAAA,EAAM,OAAA,EAAS,SAAQ,GAAI,OAAA,CAAQ,OAAO,UAAU,CAAA;AAO5D,IAAM,2BAAA,GAA8B,MAAM,SAAA,CAAU,OAAA,CAAQ,iBAAiB,CAAA;AAC7E,IAAM,WAAA,GAAqC,IAAA,CAAK,KAAA,CAAM,2BAA2B,CAAA;AACjF,IAAM,mBAAmB,WAAA,CAAY,kBAAA;AAGrC,IAAM,QAAA,GAAW,IAAI,QAAA,CAAS,QAAA,EAAU;AAAA,EACtC,qBAAA,EAAuB,2BAAA;AAAA,EACvB,IAAA,EAAM,KAAK,MAAA,CAAO,WAAA;AAAA,EAClB,QAAA,EAAU,KAAK,MAAA,CAAO;AACxB,CAAC,CAAA;AAGD,IAAM,iBAAiB,MAAM,oBAAA;AAAA,EAC3B,EAAE,gBAAA,EAAmC;AAAA,EACrC,EAAE,QAAA;AACJ,CAAA;AAGA,IAAM,MAAA,GAAS,MAAM,wBAAA,CAAyB,EAAE,QAAA,EAAU,eAAe,QAAA,EAAS,EAAG,EAAE,QAAA,EAAU,CAAA;AACjG,IAAI,CAAC,OAAO,OAAA,EAAS;AACnB,EAAA,MAAM,IAAI,MAAM,0CAA0C,CAAA;AAC5D;AAEA,IAAM,aAAa,gBAAA,CAAiB;AAAA,EAClC,QAAQ,MAAA,CAAO,gBAAA;AAAA,EACf,UAAU,WAAA,CAAY,kBAAA;AAAA,EACtB,IAAA,EAAM;AAAA,IACJ,OAAO,cAAA,CAAe,IAAA;AAAA,IACtB,WAAA,EAAa,CAAA,kBAAA,EAAqB,cAAA,CAAe,IAAI,CAAA,OAAA,EAAU,cAAA,CAAe,EAAE,CAAA,aAAA,EAAgB,MAAA,CAAO,IAAI,CAAA,OAAA,EAAU,MAAA,CAAO,EAAE,CAAA,CAAA;AAAA,GAChI;AAAA,EACA,KAAA,EAAO;AAAA,IACL,mBAAmB,OAAA,CAAQ,iBAAA;AAAA,IAC3B,SAAS,MAAA,CAAO,OAAA;AAAA,IAChB,iBAAiB,cAAA,CAAe,QAAA;AAAA,IAChC,WAAA,EAAa,KAAK,MAAA,CAAO,WAAA;AAAA,IACzB,QAAA,EAAU,KAAK,MAAA,CAAO,EAAA;AAAA,IACtB,kBAAkB,cAAA,CAAe;AAAA;AAErC,CAAC,CAAA;AAED,IAAO,qBAAQ,OAAA,CAAQ;AAAA,EACrB,UAAA;AAAA,EAEA,aAAA,EAAe;AAAA,IACb,cAAA,EAAgB;AAAA,MACd,IAAA,EAAM;AAAA,QACJ,IAAA,EAAM;AAAA,OACR;AAAA,MACA,OAAO,UAAA,CAAW;AAAA,KACpB;AAAA,IACA,eAAA,EAAiB;AAAA,MACf,IAAA,EAAM;AAAA,QACJ,IAAA,EAAM;AAAA,OACR;AAAA,MACA,OAAO,UAAA,CAAW;AAAA;AACpB;AAEJ,CAAC","file":"index.js","sourcesContent":["import { yandex } from \"@highstate/library\"\nimport { forUnit, makeEntityOutput, toPromise } from \"@highstate/pulumi\"\nimport { getIamServiceAccount, getResourcemanagerFolder, Provider } from \"@highstate/yandex-sdk\"\n\nconst { args, secrets, outputs } = forUnit(yandex.connection)\n\n// parse service account key file to extract service account ID\ntype ServiceAccountKeyFile = {\n  service_account_id: string\n}\n\nconst serviceAccountKeyFileString = await toPromise(secrets.authorizedKeyJson)\nconst keyFileData: ServiceAccountKeyFile = JSON.parse(serviceAccountKeyFileString)\nconst serviceAccountId = keyFileData.service_account_id\n\n// create provider for auto-discovery\nconst provider = new Provider(\"yandex\", {\n  serviceAccountKeyFile: serviceAccountKeyFileString,\n  zone: args.region.defaultZone,\n  regionId: args.region.id,\n})\n\n// auto-discover service account details to get folder and cloud\nconst serviceAccount = await getIamServiceAccount(\n  { serviceAccountId: serviceAccountId },\n  { provider },\n)\n\n// auto-discover cloud ID from folder\nconst folder = await getResourcemanagerFolder({ folderId: serviceAccount.folderId }, { provider })\nif (!folder.cloudId) {\n  throw new Error(\"Could not determine cloud ID from folder\")\n}\n\nconst connection = makeEntityOutput({\n  entity: yandex.connectionEntity,\n  identity: keyFileData.service_account_id,\n  meta: {\n    title: serviceAccount.name,\n    description: `Authorized as SA \"${serviceAccount.name}\" (ID: ${serviceAccount.id}) in folder \"${folder.name}\" (ID: ${folder.id})`,\n  },\n  value: {\n    authorizedKeyJson: secrets.authorizedKeyJson,\n    cloudId: folder.cloudId,\n    defaultFolderId: serviceAccount.folderId,\n    defaultZone: args.region.defaultZone,\n    regionId: args.region.id,\n    serviceAccountId: serviceAccount.id,\n  },\n})\n\nexport default outputs({\n  connection,\n\n  $statusFields: {\n    defaultCloudId: {\n      meta: {\n        icon: \"mdi:cloud\",\n      },\n      value: connection.cloudId,\n    },\n    defaultFolderId: {\n      meta: {\n        icon: \"mdi:folder\",\n      },\n      value: connection.defaultFolderId,\n    },\n  },\n})\n"]}

package/dist/disk/index.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../src/disk/index.ts"],"names":[],"mappings":";;;;;AAKA,IAAM,EAAE,MAAM,IAAA,EAAM,MAAA,EAAQ,SAAQ,GAAI,OAAA,CAAQ,OAAO,IAAI,CAAA;AAE3D,IAAM,QAAA,GAAW,MAAM,cAAA,CAAe,MAAA,CAAO,UAAU,CAAA;AAEvD,IAAM,QAAA,GAAW,KAAK,QAAA,IAAY,IAAA;AAElC,IAAM,OAAO,IAAI,WAAA;AAAA,EACf,MAAA;AAAA,EACA;AAAA,IACE,IAAA,EAAM,QAAA;AAAA,IACN,aAAa,kBAAA,EAAmB;AAAA,IAChC,MAAM,IAAA,CAAK,IAAA;AAAA,IACX,MAAM,IAAA,CAAK,IAAA;AAAA,IACX,aAAA,EAAe;AAAA,GACjB;AAAA,EACA,EAAE,QAAA,EAAU,OAAA,EAAS,IAAA;AACvB,CAAA;AAEA,IAAO,eAAQ,OAAA,CAAQ;AAAA,EACrB,MAAM,gBAAA,CAAiB;AAAA,IACrB,QAAQ,MAAA,CAAO,UAAA;AAAA,IACf,UAAU,IAAA,CAAK,EAAA;AAAA,IACf,KAAA,EAAO;AAAA,MACL,IAAI,IAAA,CAAK;AAAA;AACX,GACD,CAAA;AAAA,EAED,aAAA,EAAe;AAAA,IACb,IAAI,IAAA,CAAK;AAAA;AAEb,CAAC","file":"index.js","sourcesContent":["import { yandex } from \"@highstate/library\"\nimport { forUnit, getResourceComment, makeEntityOutput } from \"@highstate/pulumi\"\nimport { ComputeDisk } from \"@highstate/yandex-sdk\"\nimport { createProvider } from \"../provider\"\n\nconst { name, args, inputs, outputs } = forUnit(yandex.disk)\n\nconst provider = await createProvider(inputs.connection)\n\nconst diskName = args.diskName ?? name\n\nconst disk = new ComputeDisk(\n  \"disk\",\n  {\n    name: diskName,\n    description: getResourceComment(),\n    type: args.type,\n    size: args.size,\n    allowRecreate: false,\n  },\n  { provider, protect: true },\n)\n\nexport default outputs({\n  disk: makeEntityOutput({\n    entity: yandex.diskEntity,\n    identity: disk.id,\n    value: {\n      id: disk.id,\n    },\n  }),\n\n  $statusFields: {\n    id: disk.id,\n  },\n})\n"]}

package/dist/existing-image/index.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../src/existing-image/index.ts"],"names":[],"mappings":";;;;;AAKA,IAAM,EAAE,IAAA,EAAM,MAAA,EAAQ,SAAQ,GAAI,OAAA,CAAQ,OAAO,aAAa,CAAA;AAE9D,IAAM,QAAA,GAAW,MAAM,cAAA,CAAe,MAAA,CAAO,UAAU,CAAA;AAEvD,IAAM,OAAA,GAAU,MAAM,eAAA,CAAgB,EAAE,OAAA,EAAS,KAAK,EAAA,EAAG,EAAG,EAAE,QAAA,EAAU,CAAA;AAExE,IAAM,QAAQ,gBAAA,CAAiB;AAAA,EAC7B,QAAQ,MAAA,CAAO,WAAA;AAAA,EACf,UAAU,OAAA,CAAQ,EAAA;AAAA,EAClB,IAAA,EAAM;AAAA,IACJ,OAAO,OAAA,CAAQ;AAAA,GACjB;AAAA,EACA,KAAA,EAAO;AAAA,IACL,IAAI,OAAA,CAAQ;AAAA;AAEhB,CAAC,CAAA;AAED,IAAO,yBAAQ,OAAA,CAAQ;AAAA,EACrB,KAAA;AAAA,EACA,aAAA,EAAe;AAAA,IACb,MAAM,OAAA,CAAQ;AAAA;AAElB,CAAC","file":"index.js","sourcesContent":["import { yandex } from \"@highstate/library\"\nimport { forUnit, makeEntityOutput } from \"@highstate/pulumi\"\nimport { getComputeImage } from \"@highstate/yandex-sdk\"\nimport { createProvider } from \"../provider\"\n\nconst { args, inputs, outputs } = forUnit(yandex.existingImage)\n\nconst provider = await createProvider(inputs.connection)\n\nconst ycImage = await getComputeImage({ imageId: args.id }, { provider })\n\nconst image = makeEntityOutput({\n  entity: yandex.imageEntity,\n  identity: ycImage.id,\n  meta: {\n    title: ycImage.name,\n  },\n  value: {\n    id: ycImage.id,\n  },\n})\n\nexport default outputs({\n  image,\n  $statusFields: {\n    name: ycImage.name,\n  },\n})\n"]}

package/dist/instance-group/index.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../src/instance-group/index.ts"],"names":[],"mappings":";;;;;;;AAoBA,IAAM,EAAE,MAAM,IAAA,EAAM,SAAA,EAAW,QAAQ,OAAA,EAAQ,GAAI,OAAA,CAAQ,MAAA,CAAO,aAAa,CAAA;AAE/E,IAAM,SAAA,GAAY,KAAK,SAAA,IAAa,IAAA;AAEpC,IAAM,WAAW,MAAM,cAAA,CAAe,MAAA,CAAO,UAAA,EAAY,KAAK,OAAO,CAAA;AAErE,IAAM,UAAA,GACJ,OAAO,UAAA,IACP,SAAA,CAAU,iBAAiB,qBAAqB,CAAA,CAAE,MAAM,sBAAsB,CAAA;AAEhF,IAAM,YAAA,GAAe,SAAA,CAAU,cAAA,EAAgB,gBAAgB,CAAA;AAG/D,IAAI,QAAA,GAAW,KAAK,OAAA,CAAQ,QAAA;AAC5B,IAAI,CAAC,QAAA,EAAU;AACb,EAAA,MAAM,oBAAoB,MAAM,SAAA,CAAU,sBAAsB,MAAA,CAAO,UAAA,CAAW,WAAW,CAAA,CAAE,CAAA;AAC/F,EAAA,MAAM,SAAS,MAAM,YAAA;AAAA,IACnB;AAAA,MACE,QAAA,EAAU,MAAM,SAAA,CAAU,MAAA,CAAO,WAAW,eAAe,CAAA;AAAA,MAC3D,IAAA,EAAM;AAAA,KACR;AAAA,IACA,EAAE,QAAA;AAAS,GACb;AAEA,EAAA,IAAI,CAAC,OAAO,EAAA,EAAI;AACd,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,CAAA,+BAAA,EAAkC,iBAAiB,CAAA,UAAA,EAAa,MAAA,CAAO,WAAW,WAAW,CAAA;AAAA,KAC/F;AAAA,EACF;AAEA,EAAA,QAAA,GAAW,MAAA,CAAO,EAAA;AACpB;AAGA,IAAI,eAAA;AACJ,IAAI,IAAA,CAAK,SAAS,SAAA,EAAW;AAC3B,EAAA,MAAM,gBAAgB,IAAI,eAAA;AAAA,IACxB,gBAAA;AAAA,IACA;AAAA,MACE,IAAA,EAAM,SAAA;AAAA,MACN,aAAa,kBAAA,EAAmB;AAAA,MAChC,QAAA,EAAU,IAAA,CAAK,QAAA,IAAY,MAAA,CAAO,UAAA,CAAW;AAAA,KAC/C;AAAA,IACA,EAAE,QAAA;AAAS,GACb;AAEA,EAAA,eAAA,GAAkB,aAAA,CAAc,EAAA;AAClC;AAGA,IAAM,KAAA,GAAQ,KAAA,CAAM,IAAA,CAAK,EAAE,MAAA,EAAQ,KAAK,IAAA,EAAK,EAAG,CAAC,CAAA,EAAG,CAAA,KAAM;AACxD,EAAA,OAAO,IAAI,WAAA;AAAA,IACT,CAAA,KAAA,EAAQ,IAAI,CAAC,CAAA,CAAA;AAAA,IACb;AAAA,MACE,IAAA,EAAM,CAAA,EAAG,SAAS,CAAA,CAAA,EAAI,IAAI,CAAC,CAAA,CAAA;AAAA,MAC3B,IAAA,EAAM,KAAK,QAAA,CAAS,IAAA;AAAA,MACpB,IAAA,EAAM,KAAK,QAAA,CAAS,IAAA;AAAA,MACpB,OAAA,EAAS,OAAO,KAAA,CAAM,EAAA;AAAA,MACtB,aAAA,EAAe,KAAA;AAAA,MACf,QAAA,EAAU,IAAA,CAAK,QAAA,IAAY,MAAA,CAAO,UAAA,CAAW,eAAA;AAAA,MAC7C,IAAA,EAAM,OAAO,UAAA,CAAW,WAAA;AAAA,MACxB,QAAA,EAAU;AAAA,KACZ;AAAA,IACA,EAAE,QAAA,EAAU,aAAA,EAAe,CAAC,SAAS,CAAA;AAAE,GACzC;AACF,CAAC,CAAA;AAGD,IAAM,iBAAA,GAAoB,KAAA,CAAM,IAAA,CAAK,EAAE,MAAA,EAAQ,KAAK,IAAA,EAAK,EAAG,CAAC,CAAA,EAAG,CAAA,KAAM;AACpE,EAAA,OAAO,IAAI,UAAA;AAAA,IACT,CAAA,iBAAA,EAAoB,IAAI,CAAC,CAAA,CAAA;AAAA,IACzB;AAAA,MACE,IAAA,EAAM,CAAA,EAAG,SAAS,CAAA,UAAA,EAAa,IAAI,CAAC,CAAA,CAAA;AAAA,MACpC,QAAA,EAAU,IAAA,CAAK,QAAA,IAAY,MAAA,CAAO,UAAA,CAAW,eAAA;AAAA,MAC7C,aAAa,kBAAA,EAAmB;AAAA,MAChC,mBAAA,EAAqB;AAAA,QACnB;AAAA;AACF,KACF;AAAA,IACA,EAAE,QAAA;AAAS,GACb;AACF,CAAC,CAAA;AAGD,IAAI,eAAA;AAEJ,IAAI,IAAA,CAAK,OAAA,CAAQ,cAAA,IAAkB,IAAA,CAAK,QAAQ,eAAA,EAAiB;AAC/D,EAAA,eAAA,GAAkB,KAAA,CAAM,KAAK,EAAE,MAAA,EAAQ,KAAK,IAAA,EAAK,EAAG,CAAC,CAAA,EAAG,CAAA,KAAM;AAC5D,IAAA,OAAO,IAAI,UAAA;AAAA,MACT,CAAA,QAAA,EAAW,IAAI,CAAC,CAAA,CAAA;AAAA,MAChB;AAAA,QACE,IAAA,EAAM,CAAA,EAAG,SAAS,CAAA,CAAA,EAAI,IAAI,CAAC,CAAA,CAAA;AAAA,QAC3B,QAAA,EAAU,IAAA,CAAK,QAAA,IAAY,MAAA,CAAO,UAAA,CAAW,eAAA;AAAA,QAC7C,aAAa,kBAAA,EAAmB;AAAA,QAChC,mBAAA,EAAqB;AAAA,UACnB,MAAA,EAAQ,OAAO,UAAA,CAAW;AAAA;AAC5B,OACF;AAAA,MACA,EAAE,QAAA;AAAS,KACb;AAAA,EACF,CAAC,CAAA;AACH;AAGA,IAAM,QAAA,GAAW,WAAA;AAAA;AAAA,YAAA,EAEH,SAAS,CAAA;AAAA;AAAA;AAAA;AAAA,UAAA,EAIX,WAAW,SAAS;AAAA;AAAA,CAAA,CAE9B,MAAM,eAAe,CAAA;AAEvB,IAAM,gBAAgB,IAAI,oBAAA;AAAA,EACxB,gBAAA;AAAA,EACA;AAAA,IACE,IAAA,EAAM,SAAA;AAAA,IACN,aAAa,kBAAA,EAAmB;AAAA,IAChC,QAAA,EAAU,IAAA,CAAK,QAAA,IAAY,MAAA,CAAO,UAAA,CAAW,eAAA;AAAA,IAE7C,gBAAA,EAAkB;AAAA,MAChB,KAAA,EAAO,CAAC,MAAA,CAAO,UAAA,CAAW,WAAW;AAAA,KACvC;AAAA,IAEA,YAAA,EAAc;AAAA,MACZ,YAAA,EAAc,CAAA;AAAA,MACd,cAAA,EAAgB;AAAA,KAClB;AAAA,IAEA,WAAA,EAAa;AAAA,MACX,UAAA,EAAY;AAAA,QACV,MAAM,IAAA,CAAK;AAAA;AACb,KACF;AAAA,IAEA,gBAAA,EAAkB;AAAA,MAChB,IAAA,EAAM,GAAG,SAAS,CAAA,iBAAA,CAAA;AAAA,MAClB,aAAa,kBAAA,EAAmB;AAAA,MAChC,YAAY,IAAA,CAAK,UAAA;AAAA,MAEjB,SAAA,EAAW;AAAA,QACT,KAAA,EAAO,KAAK,SAAA,CAAU,KAAA;AAAA,QACtB,MAAA,EAAQ,KAAK,SAAA,CAAU,MAAA;AAAA,QACvB,YAAA,EAAc,KAAK,SAAA,CAAU;AAAA,OAC/B;AAAA,MAEA,gBAAA,EAAkB;AAAA,QAChB,aAAa,IAAA,CAAK;AAAA,OACpB;AAAA,MAEA,QAAA,EAAU;AAAA,QACR,MAAA,EAAQ,CAAA,uBAAA;AAAA,OACV;AAAA,MAEA,iBAAA,EAAmB;AAAA,QACjB;AAAA,UACE,SAAA,EAAW,CAAC,QAAQ,CAAA;AAAA,UACpB,SAAA,EAAW,CAAA,mCAAA,CAAA;AAAA,UACX,GAAA,EAAK,KAAK,OAAA,CAAQ,cAAA;AAAA,UAClB,YAAA,EAAc,kBAAkB,CAAA,0BAAA,CAAA,GAA+B;AAAA;AACjE,OACF;AAAA,MAEA,QAAA,EAAU;AAAA,QACR,WAAA,EAAa;AAAA;AACf,KACF;AAAA,IAEA,SAAA,EAAW;AAAA,MACT,GAAG,MAAA,CAAO,WAAA,CAAY,MAAM,GAAA,CAAI,CAAC,GAAG,CAAA,KAAM,CAAC,CAAA,KAAA,EAAQ,CAAA,GAAI,CAAC,CAAA,CAAA,EAAI,KAAA,CAAM,CAAC,CAAA,CAAE,EAAE,CAAC,CAAC,CAAA;AAAA,MACzE,GAAG,MAAA,CAAO,WAAA;AAAA,QACR,iBAAA,CAAkB,GAAA,CAAI,CAAC,CAAA,EAAG,CAAA,KAAM;AAAA,UAC9B,CAAA,iBAAA,EAAoB,IAAI,CAAC,CAAA,CAAA;AAAA,UACzB,kBAAkB,CAAC,CAAA,CAAE,oBAAoB,KAAA,CAAM,CAAA,CAAA,KAAK,EAAG,OAAO;AAAA,SAC/D;AAAA,OACH;AAAA,MACA,GAAI,kBACA,MAAA,CAAO,WAAA;AAAA,QACL,eAAA,CAAgB,GAAA,CAAI,CAAC,CAAA,EAAG,CAAA,KAAM;AAAA,UAC5B,CAAA,QAAA,EAAW,IAAI,CAAC,CAAA,CAAA;AAAA,UAChB,gBAAgB,CAAC,CAAA,CAAE,oBAAoB,KAAA,CAAM,CAAA,CAAA,KAAK,EAAG,OAAO;AAAA,SAC7D;AAAA,UAEH;AAAC,KACP;AAAA,IAEA,gBAAA,EAAkB,OAAO,UAAA,CAAW;AAAA,GACtC;AAAA,EACA,EAAE,QAAA;AACJ,CAAA;AAEA,IAAM,YAA4B,EAAC;AACnC,IAAM,SAAA,GAAY,MAAM,SAAA,CAAU,aAAA,CAAc,SAAS,CAAA;AAEzD,IAAM,UAAU,MAAM,SAAA;AAAA,EACpB,SAAA,CAAU,GAAA,CAAI,OAAO,QAAA,EAAU,CAAA,KAAM;AAEnC,IAAA,MAAM,cAAA,GAAiB,QAAA,CAAS,iBAAA,CAAkB,CAAC,CAAA;AACnD,IAAA,MAAM,WAAW,IAAA,CAAK,OAAA,CAAQ,cAAA,GAC1B,cAAA,EAAgB,eAChB,cAAA,EAAgB,SAAA;AAEpB,IAAA,IAAI,CAAC,QAAA,EAAU;AACb,MAAA,MAAM,IAAI,MAAM,oCAAoC,CAAA;AAAA,IACtD;AAEA,IAAA,MAAM,QAAA,GAAW,aAAA,CAAc,QAAA,EAAU,CAAC,CAAA;AAE1C,IAAA,MAAM,EAAE,MAAA,EAAQ,QAAA,EAAS,GAAI,MAAM,kBAAA,CAAmB;AAAA,MACpD,IAAA,EAAM,CAAA,EAAG,SAAS,CAAA,CAAA,EAAI,IAAI,CAAC,CAAA,CAAA;AAAA,MAC3B,SAAA,EAAW,CAAC,QAAQ,CAAA;AAAA,MACpB,SAAS,IAAA,CAAK,GAAA;AAAA,MACd,WAAA,EAAa,YAAA;AAAA,MACb;AAAA,KACD,CAAA;AAED,IAAA,IAAI,QAAA,EAAU;AACZ,MAAA,MAAM,WAAA,GAAc,MAAM,SAAA,CAAU,QAAQ,CAAA;AAE5C,MAAA,SAAA,CAAU,IAAA,CAAK;AAAA,QACb,GAAG,WAAA;AAAA,QACH,IAAA,EAAM,CAAA,IAAA,EAAO,CAAA,GAAI,CAAC,CAAA,CAAA;AAAA,QAClB,IAAA,EAAM;AAAA,UACJ,KAAA,EAAO,CAAA,OAAA,EAAU,CAAA,GAAI,CAAC,CAAA,CAAA;AAAA;AACxB,OACD,CAAA;AAAA,IACH;AAEA,IAAA,OAAO,MAAA;AAAA,EACT,CAAC;AACH,CAAA;AAEA,IAAO,yBAAQ,OAAA,CAAQ;AAAA,EACrB,OAAA;AAAA,EAEA,aAAA,EAAe;AAAA,IACb,IAAI,aAAA,CAAc,EAAA;AAAA,IAClB,SAAA,EAAW,QAAQ,OAAA,CAAQ,CAAA,MAAA,KAAU,OAAO,SAAS,CAAA,CAAE,IAAI,kBAAkB;AAAA,GAC/E;AAAA,EAEA,UAAA,EAAY;AACd,CAAC","file":"index.js","sourcesContent":["import {\n  createServerBundle,\n  generatePassword,\n  generateSshPrivateKey,\n  l3EndpointToString,\n  parseEndpoint,\n  sshPrivateKeyToKeyPair,\n} from \"@highstate/common\"\nimport { trimIndentation, type UnitTerminal } from \"@highstate/contract\"\nimport { yandex } from \"@highstate/library\"\nimport { forUnit, getResourceComment, interpolate, type Output, toPromise } from \"@highstate/pulumi\"\nimport {\n  ComputeDisk,\n  ComputeInstanceGroup,\n  getVpcSubnet,\n  KmsSymmetricKey,\n  VpcAddress,\n} from \"@highstate/yandex-sdk\"\nimport { createProvider } from \"../provider\"\n\nconst { name, args, getSecret, inputs, outputs } = forUnit(yandex.instanceGroup)\n\nconst groupName = args.groupName ?? name\n\nconst provider = await createProvider(inputs.connection, args.cloudId)\n\nconst sshKeyPair =\n  inputs.sshKeyPair ??\n  getSecret(\"sshPrivateKey\", generateSshPrivateKey).apply(sshPrivateKeyToKeyPair)\n\nconst rootPassword = getSecret(\"rootPassword\", generatePassword)\n\n// auto-discover subnet if not specified\nlet subnetId = args.network.subnetId\nif (!subnetId) {\n  const defaultSubnetName = await toPromise(interpolate`default-${inputs.connection.defaultZone}`)\n  const subnet = await getVpcSubnet(\n    {\n      folderId: await toPromise(inputs.connection.defaultFolderId),\n      name: defaultSubnetName,\n    },\n    { provider },\n  )\n\n  if (!subnet.id) {\n    throw new Error(\n      `Could not find default subnet '${defaultSubnetName}' in zone ${inputs.connection.defaultZone}`,\n    )\n  }\n\n  subnetId = subnet.id\n}\n\n// create single key for all disks in the group\nlet encryptionKeyId: Output<string> | undefined\nif (args.bootDisk.encrypted) {\n  const encryptionKey = new KmsSymmetricKey(\n    \"encryption-key\",\n    {\n      name: groupName,\n      description: getResourceComment(),\n      folderId: args.folderId ?? inputs.connection.defaultFolderId,\n    },\n    { provider },\n  )\n\n  encryptionKeyId = encryptionKey.id\n}\n\n// create the disk for each instance in the group\nconst disks = Array.from({ length: args.size }, (_, i) => {\n  return new ComputeDisk(\n    `disk-${i + 1}`,\n    {\n      name: `${groupName}-${i + 1}`,\n      type: args.bootDisk.type,\n      size: args.bootDisk.size,\n      imageId: inputs.image.id,\n      allowRecreate: false,\n      folderId: args.folderId ?? inputs.connection.defaultFolderId,\n      zone: inputs.connection.defaultZone,\n      kmsKeyId: encryptionKeyId,\n    },\n    { provider, ignoreChanges: [\"imageId\"] },\n  )\n})\n\n// create internal IPs for each instance in the group\nconst internalAddresses = Array.from({ length: args.size }, (_, i) => {\n  return new VpcAddress(\n    `internal-address-${i + 1}`,\n    {\n      name: `${groupName}-internal-${i + 1}`,\n      folderId: args.folderId ?? inputs.connection.defaultFolderId,\n      description: getResourceComment(),\n      internalIpv4Address: {\n        subnetId,\n      },\n    },\n    { provider },\n  )\n})\n\n// create public IPs if needed\nlet publicAddresses: VpcAddress[] | undefined\n\nif (args.network.assignPublicIp && args.network.reservePublicIp) {\n  publicAddresses = Array.from({ length: args.size }, (_, i) => {\n    return new VpcAddress(\n      `address-${i + 1}`,\n      {\n        name: `${groupName}-${i + 1}`,\n        folderId: args.folderId ?? inputs.connection.defaultFolderId,\n        description: getResourceComment(),\n        externalIpv4Address: {\n          zoneId: inputs.connection.defaultZone,\n        },\n      },\n      { provider },\n    )\n  })\n}\n\n// create cloud-init user data\nconst userData = interpolate`\n  #cloud-config\n  hostname: ${groupName}-{instance.index}\n  users:\n    - name: root\n      ssh-authorized-keys:\n        - ${sshKeyPair.publicKey}\n      sudo: ALL=(ALL) NOPASSWD:ALL\n`.apply(trimIndentation)\n\nconst instanceGroup = new ComputeInstanceGroup(\n  \"instance-group\",\n  {\n    name: groupName,\n    description: getResourceComment(),\n    folderId: args.folderId ?? inputs.connection.defaultFolderId,\n\n    allocationPolicy: {\n      zones: [inputs.connection.defaultZone],\n    },\n\n    deployPolicy: {\n      maxExpansion: 0,\n      maxUnavailable: 1,\n    },\n\n    scalePolicy: {\n      fixedScale: {\n        size: args.size,\n      },\n    },\n\n    instanceTemplate: {\n      name: `${groupName}-{instance.index}`,\n      description: getResourceComment(),\n      platformId: args.platformId,\n\n      resources: {\n        cores: args.resources.cores,\n        memory: args.resources.memory,\n        coreFraction: args.resources.coreFraction,\n      },\n\n      schedulingPolicy: {\n        preemptible: args.preemptible,\n      },\n\n      bootDisk: {\n        diskId: `{disk_{instance.index}}`,\n      },\n\n      networkInterfaces: [\n        {\n          subnetIds: [subnetId],\n          ipAddress: `{internal_address_{instance.index}}`,\n          nat: args.network.assignPublicIp,\n          natIpAddress: publicAddresses ? `{address_{instance.index}}` : undefined,\n        },\n      ],\n\n      metadata: {\n        \"user-data\": userData,\n      },\n    },\n\n    variables: {\n      ...Object.fromEntries(disks.map((_, i) => [`disk_${i + 1}`, disks[i].id])),\n      ...Object.fromEntries(\n        internalAddresses.map((_, i) => [\n          `internal_address_${i + 1}`,\n          internalAddresses[i].internalIpv4Address.apply(a => a!.address),\n        ]),\n      ),\n      ...(publicAddresses\n        ? Object.fromEntries(\n            publicAddresses.map((_, i) => [\n              `address_${i + 1}`,\n              publicAddresses[i].externalIpv4Address.apply(a => a!.address),\n            ]),\n          )\n        : {}),\n    },\n\n    serviceAccountId: inputs.connection.serviceAccountId,\n  },\n  { provider },\n)\n\nconst terminals: UnitTerminal[] = []\nconst instances = await toPromise(instanceGroup.instances)\n\nconst servers = await toPromise(\n  instances.map(async (instance, i) => {\n    // get the IP address\n    const firstInterface = instance.networkInterfaces[0]\n    const publicIp = args.network.assignPublicIp\n      ? firstInterface?.natIpAddress\n      : firstInterface?.ipAddress\n\n    if (!publicIp) {\n      throw new Error(\"No IP address assigned to instance\")\n    }\n\n    const endpoint = parseEndpoint(publicIp, 3)\n\n    const { server, terminal } = await createServerBundle({\n      name: `${groupName}-${i + 1}`,\n      endpoints: [endpoint],\n      sshArgs: args.ssh,\n      sshPassword: rootPassword,\n      sshKeyPair,\n    })\n\n    if (terminal) {\n      const rawTerminal = await toPromise(terminal)\n\n      terminals.push({\n        ...rawTerminal,\n        name: `ssh-${i + 1}`,\n        meta: {\n          title: `Shell (${i + 1})`,\n        },\n      })\n    }\n\n    return server\n  }),\n)\n\nexport default outputs({\n  servers,\n\n  $statusFields: {\n    id: instanceGroup.id,\n    endpoints: servers.flatMap(server => server.endpoints).map(l3EndpointToString),\n  },\n\n  $terminals: terminals,\n})\n"]}

package/dist/virtual-machine/index.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../src/virtual-machine/index.ts"],"names":[],"mappings":";;;;;;;AAoBA,IAAM,EAAE,MAAM,IAAA,EAAM,SAAA,EAAW,QAAQ,OAAA,EAAQ,GAAI,OAAA,CAAQ,MAAA,CAAO,cAAc,CAAA;AAEhF,IAAM,MAAA,GAAS,KAAK,MAAA,IAAU,IAAA;AAE9B,IAAM,WAAW,MAAM,cAAA,CAAe,MAAA,CAAO,UAAA,EAAY,KAAK,OAAO,CAAA;AAErE,IAAM,UAAA,GACJ,OAAO,UAAA,IACP,SAAA,CAAU,iBAAiB,qBAAqB,CAAA,CAAE,MAAM,sBAAsB,CAAA;AAEhF,IAAM,YAAA,GAAe,SAAA,CAAU,cAAA,EAAgB,gBAAgB,CAAA;AAG/D,IAAI,QAAA,GAAW,KAAK,OAAA,CAAQ,QAAA;AAC5B,IAAI,CAAC,QAAA,EAAU;AACb,EAAA,MAAM,oBAAoB,MAAM,SAAA,CAAU,sBAAsB,MAAA,CAAO,UAAA,CAAW,WAAW,CAAA,CAAE,CAAA;AAC/F,EAAA,MAAM,SAAS,MAAM,YAAA;AAAA,IACnB;AAAA,MACE,QAAA,EAAU,MAAM,SAAA,CAAU,MAAA,CAAO,WAAW,eAAe,CAAA;AAAA,MAC3D,IAAA,EAAM;AAAA,KACR;AAAA,IACA,EAAE,QAAA;AAAS,GACb;AAEA,EAAA,IAAI,CAAC,OAAO,EAAA,EAAI;AACd,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,CAAA,+BAAA,EAAkC,iBAAiB,CAAA,UAAA,EAAa,MAAA,CAAO,WAAW,WAAW,CAAA;AAAA,KAC/F;AAAA,EACF;AAEA,EAAA,QAAA,GAAW,MAAA,CAAO,EAAA;AACpB;AAGA,IAAI,eAAA;AACJ,IAAI,IAAA,CAAK,SAAS,SAAA,EAAW;AAC3B,EAAA,MAAM,gBAAgB,IAAI,eAAA;AAAA,IACxB,gBAAA;AAAA,IACA;AAAA,MACE,IAAA,EAAM,MAAA;AAAA,MACN,aAAa,kBAAA,EAAmB;AAAA,MAChC,QAAA,EAAU,IAAA,CAAK,QAAA,IAAY,MAAA,CAAO,UAAA,CAAW;AAAA,KAC/C;AAAA,IACA,EAAE,QAAA;AAAS,GACb;AAEA,EAAA,eAAA,GAAkB,aAAA,CAAc,EAAA;AAClC;AAGA,IAAM,OAAO,IAAI,WAAA;AAAA,EACf,MAAA;AAAA,EACA;AAAA,IACE,IAAA,EAAM,MAAA;AAAA,IACN,IAAA,EAAM,KAAK,QAAA,CAAS,IAAA;AAAA,IACpB,IAAA,EAAM,KAAK,QAAA,CAAS,IAAA;AAAA,IACpB,OAAA,EAAS,OAAO,KAAA,CAAM,EAAA;AAAA,IACtB,aAAA,EAAe,KAAA;AAAA,IACf,QAAA,EAAU,IAAA,CAAK,QAAA,IAAY,MAAA,CAAO,UAAA,CAAW,eAAA;AAAA,IAC7C,IAAA,EAAM,OAAO,UAAA,CAAW,WAAA;AAAA,IACxB,QAAA,EAAU;AAAA,GACZ;AAAA,EACA,EAAE,QAAA,EAAU,aAAA,EAAe,CAAC,SAAS,CAAA;AACvC,CAAA;AAGA,IAAM,QAAA,GAAW,WAAA;AAAA;AAAA,YAAA,EAEH,MAAM;AAAA;AAAA;AAAA;AAAA,UAAA,EAIR,WAAW,SAAS;AAAA;AAAA,CAAA,CAE9B,MAAM,eAAe,CAAA;AAEvB,IAAI,aAAA;AAEJ,IAAI,IAAA,CAAK,OAAA,CAAQ,cAAA,IAAkB,IAAA,CAAK,QAAQ,eAAA,EAAiB;AAC/D,EAAA,aAAA,GAAgB,IAAI,UAAA;AAAA,IAClB,SAAA;AAAA,IACA;AAAA,MACE,IAAA,EAAM,MAAA;AAAA,MACN,QAAA,EAAU,IAAA,CAAK,QAAA,IAAY,MAAA,CAAO,UAAA,CAAW,eAAA;AAAA,MAC7C,aAAa,kBAAA,EAAmB;AAAA,MAChC,mBAAA,EAAqB;AAAA,QACnB,MAAA,EAAQ,OAAO,UAAA,CAAW;AAAA;AAC5B,KACF;AAAA,IACA,EAAE,QAAA;AAAS,GACb;AACF;AAGA,IAAM,WAAW,IAAI,eAAA;AAAA,EACnB,iBAAA;AAAA,EACA;AAAA,IACE,IAAA,EAAM,MAAA;AAAA,IACN,aAAa,kBAAA,EAAmB;AAAA,IAChC,QAAA,EAAU,IAAA,CAAK,QAAA,IAAY,MAAA,CAAO,UAAA,CAAW,eAAA;AAAA,IAC7C,IAAA,EAAM,OAAO,UAAA,CAAW,WAAA;AAAA,IACxB,YAAY,IAAA,CAAK,UAAA;AAAA,IACjB,sBAAA,EAAwB,IAAA;AAAA,IAExB,SAAA,EAAW;AAAA,MACT,KAAA,EAAO,KAAK,SAAA,CAAU,KAAA;AAAA,MACtB,MAAA,EAAQ,KAAK,SAAA,CAAU,MAAA;AAAA,MACvB,YAAA,EAAc,KAAK,SAAA,CAAU;AAAA,KAC/B;AAAA,IAEA,gBAAA,EAAkB;AAAA,MAChB,aAAa,IAAA,CAAK;AAAA,KACpB;AAAA,IAEA,QAAA,EAAU;AAAA,MACR,QAAQ,IAAA,CAAK;AAAA,KACf;AAAA,IAEA,iBAAA,EAAmB;AAAA,MACjB;AAAA,QACE,QAAA;AAAA,QACA,GAAA,EAAK,KAAK,OAAA,CAAQ,cAAA;AAAA,QAClB,YAAA,EAAc,gBACV,aAAA,CAAc,mBAAA,CAAoB,MAAM,CAAA,CAAA,KAAK,CAAA,CAAG,OAAO,CAAA,GACvD;AAAA;AACN,KACF;AAAA,IAEA,QAAA,EAAU;AAAA,MACR,WAAA,EAAa;AAAA;AACf,GACF;AAAA,EACA,EAAE,QAAA,EAAU,aAAA,EAAe,CAAC,UAAU,CAAA;AACxC,CAAA;AAGA,IAAM,WAAW,MAAM,SAAA;AAAA,EACrB,QAAA,CAAS,iBAAA,CAAkB,KAAA,CAAM,CAAA,EAAA,KAAM;AACrC,IAAA,MAAM,cAAA,GAAiB,GAAG,CAAC,CAAA;AAC3B,IAAA,OAAO,IAAA,CAAK,OAAA,CAAQ,cAAA,GAAiB,cAAA,EAAgB,eAAe,cAAA,EAAgB,SAAA;AAAA,EACtF,CAAC;AACH,CAAA;AAEA,IAAI,CAAC,QAAA,EAAU;AACb,EAAA,MAAM,IAAI,MAAM,oCAAoC,CAAA;AACtD;AAEA,IAAM,QAAA,GAAW,aAAA,CAAc,QAAA,EAAU,CAAC,CAAA;AAE1C,IAAM,EAAE,MAAA,EAAQ,QAAA,EAAS,GAAI,MAAM,kBAAA,CAAmB;AAAA,EACpD,IAAA,EAAM,MAAA;AAAA,EACN,SAAA,EAAW,CAAC,QAAQ,CAAA;AAAA,EACpB,SAAS,IAAA,CAAK,GAAA;AAAA,EACd,WAAA,EAAa,YAAA;AAAA,EACb;AACF,CAAC,CAAA;AAED,IAAO,0BAAQ,OAAA,CAAQ;AAAA,EACrB,MAAA;AAAA,EAEA,aAAA,EAAe;AAAA,IACb,IAAI,QAAA,CAAS,EAAA;AAAA,IACb,SAAA,EAAW,CAAC,kBAAA,CAAmB,QAAQ,CAAC,CAAA;AAAA,IACxC,UAAU,MAAA,CAAO;AAAA,GACnB;AAAA,EAEA,UAAA,EAAY,CAAC,QAAQ;AACvB,CAAC","file":"index.js","sourcesContent":["import {\n  createServerBundle,\n  generatePassword,\n  generateSshPrivateKey,\n  l3EndpointToString,\n  parseEndpoint,\n  sshPrivateKeyToKeyPair,\n} from \"@highstate/common\"\nimport { trimIndentation } from \"@highstate/contract\"\nimport { yandex } from \"@highstate/library\"\nimport { forUnit, getResourceComment, interpolate, type Output, toPromise } from \"@highstate/pulumi\"\nimport {\n  ComputeDisk,\n  ComputeInstance,\n  getVpcSubnet,\n  KmsSymmetricKey,\n  VpcAddress,\n} from \"@highstate/yandex-sdk\"\nimport { createProvider } from \"../provider\"\n\nconst { name, args, getSecret, inputs, outputs } = forUnit(yandex.virtualMachine)\n\nconst vmName = args.vmName ?? name\n\nconst provider = await createProvider(inputs.connection, args.cloudId)\n\nconst sshKeyPair =\n  inputs.sshKeyPair ??\n  getSecret(\"sshPrivateKey\", generateSshPrivateKey).apply(sshPrivateKeyToKeyPair)\n\nconst rootPassword = getSecret(\"rootPassword\", generatePassword)\n\n// auto-discover subnet if not specified\nlet subnetId = args.network.subnetId\nif (!subnetId) {\n  const defaultSubnetName = await toPromise(interpolate`default-${inputs.connection.defaultZone}`)\n  const subnet = await getVpcSubnet(\n    {\n      folderId: await toPromise(inputs.connection.defaultFolderId),\n      name: defaultSubnetName,\n    },\n    { provider },\n  )\n\n  if (!subnet.id) {\n    throw new Error(\n      `Could not find default subnet '${defaultSubnetName}' in zone ${inputs.connection.defaultZone}`,\n    )\n  }\n\n  subnetId = subnet.id\n}\n\n// create key for disk\nlet encryptionKeyId: Output<string> | undefined\nif (args.bootDisk.encrypted) {\n  const encryptionKey = new KmsSymmetricKey(\n    \"encryption-key\",\n    {\n      name: vmName,\n      description: getResourceComment(),\n      folderId: args.folderId ?? inputs.connection.defaultFolderId,\n    },\n    { provider },\n  )\n\n  encryptionKeyId = encryptionKey.id\n}\n\n// create the disk\nconst disk = new ComputeDisk(\n  \"disk\",\n  {\n    name: vmName,\n    type: args.bootDisk.type,\n    size: args.bootDisk.size,\n    imageId: inputs.image.id,\n    allowRecreate: false,\n    folderId: args.folderId ?? inputs.connection.defaultFolderId,\n    zone: inputs.connection.defaultZone,\n    kmsKeyId: encryptionKeyId,\n  },\n  { provider, ignoreChanges: [\"imageId\"] },\n)\n\n// create cloud-init user data\nconst userData = interpolate`\n  #cloud-config\n  hostname: ${vmName}\n  users:\n    - name: root\n      ssh-authorized-keys:\n        - ${sshKeyPair.publicKey}\n      sudo: ALL=(ALL) NOPASSWD:ALL\n`.apply(trimIndentation)\n\nlet publicAddress: VpcAddress | undefined\n\nif (args.network.assignPublicIp && args.network.reservePublicIp) {\n  publicAddress = new VpcAddress(\n    \"address\",\n    {\n      name: vmName,\n      folderId: args.folderId ?? inputs.connection.defaultFolderId,\n      description: getResourceComment(),\n      externalIpv4Address: {\n        zoneId: inputs.connection.defaultZone,\n      },\n    },\n    { provider },\n  )\n}\n\n// create the instance\nconst instance = new ComputeInstance(\n  \"virtual-machine\",\n  {\n    name: vmName,\n    description: getResourceComment(),\n    folderId: args.folderId ?? inputs.connection.defaultFolderId,\n    zone: inputs.connection.defaultZone,\n    platformId: args.platformId,\n    allowStoppingForUpdate: true,\n\n    resources: {\n      cores: args.resources.cores,\n      memory: args.resources.memory,\n      coreFraction: args.resources.coreFraction,\n    },\n\n    schedulingPolicy: {\n      preemptible: args.preemptible,\n    },\n\n    bootDisk: {\n      diskId: disk.id,\n    },\n\n    networkInterfaces: [\n      {\n        subnetId: subnetId,\n        nat: args.network.assignPublicIp,\n        natIpAddress: publicAddress\n          ? publicAddress.externalIpv4Address.apply(a => a!.address)\n          : undefined,\n      },\n    ],\n\n    metadata: {\n      \"user-data\": userData,\n    },\n  },\n  { provider, ignoreChanges: [\"bootDisk\"] },\n)\n\n// get the IP address\nconst publicIp = await toPromise(\n  instance.networkInterfaces.apply(ni => {\n    const firstInterface = ni[0]\n    return args.network.assignPublicIp ? firstInterface?.natIpAddress : firstInterface?.ipAddress\n  }),\n)\n\nif (!publicIp) {\n  throw new Error(\"No IP address assigned to instance\")\n}\n\nconst endpoint = parseEndpoint(publicIp, 3)\n\nconst { server, terminal } = await createServerBundle({\n  name: vmName,\n  endpoints: [endpoint],\n  sshArgs: args.ssh,\n  sshPassword: rootPassword,\n  sshKeyPair,\n})\n\nexport default outputs({\n  server,\n\n  $statusFields: {\n    id: instance.id,\n    endpoints: [l3EndpointToString(endpoint)],\n    hostname: server.hostname,\n  },\n\n  $terminals: [terminal],\n})\n"]}