@tyevco/pulumi-homelab 0.3.5 → 0.5.0

package/.github/workflows/ci.yml

@@ -0,0 +1,42 @@
+name: CI
+
+on:
+  push:
+    branches: [main]
+  pull_request:
+    branches: [main]
+
+jobs:
+  build:
+    name: Build & Validate
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: 20
+          cache: npm
+
+      - name: Install provider dependencies
+        run: npm ci
+
+      - name: Build provider
+        run: npm run build
+
+      - name: Run tests
+        run: npm test
+
+      - name: Validate schema
+        run: node -e "JSON.parse(require('fs').readFileSync('schema.json','utf8'))"
+
+      - name: Install SDK dependencies
+        working-directory: sdk/nodejs
+        run: npm ci
+
+      - name: Build SDK
+        working-directory: sdk/nodejs
+        run: npm run build

package/.github/workflows/release-please.yml

@@ -0,0 +1,88 @@
+name: Release Please
+
+on:
+  push:
+    branches:
+      - main
+
+permissions:
+  contents: write
+  pull-requests: write
+
+jobs:
+  release-please:
+    runs-on: ubuntu-latest
+    outputs:
+      release_created: ${{ steps.release.outputs.release_created }}
+      tag_name: ${{ steps.release.outputs.tag_name }}
+    steps:
+      - uses: googleapis/release-please-action@v4
+        id: release
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
+
+  publish:
+    name: Build & Publish
+    needs: release-please
+    if: ${{ needs.release-please.outputs.release_created }}
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          ref: ${{ needs.release-please.outputs.tag_name }}
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: 20
+          cache: npm
+          registry-url: https://registry.npmjs.org
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Build provider
+        run: npm run build
+
+      - name: Stage plugin archive
+        run: |
+          STAGING="$(mktemp -d)"
+          # Copy provider artifacts
+          cp -r dist "$STAGING/"
+          cp package.json schema.json "$STAGING/"
+          cp pulumi-resource-homelab pulumi-resource-homelab.cmd "$STAGING/"
+          # Install production-only dependencies into staging
+          cp package-lock.json "$STAGING/"
+          cd "$STAGING" && npm ci --omit=dev && rm package-lock.json
+          # Remove all .bin symlinks — Pulumi's archive extractor can't handle them
+          find node_modules -name '.bin' -type d -exec rm -rf {} +
+          echo "STAGING=$STAGING" >> "$GITHUB_ENV"
+
+      - name: Create platform archives
+        run: |
+          VERSION="${{ needs.release-please.outputs.tag_name }}"
+          VERSION="${VERSION#v}"
+          ARCHIVES="$(mktemp -d)"
+          cd "$STAGING"
+          for PLATFORM in linux-amd64 darwin-amd64 darwin-arm64 windows-amd64; do
+            ARCHIVE_NAME="pulumi-resource-homelab-v${VERSION}-${PLATFORM}.tar.gz"
+            tar czf "${ARCHIVES}/${ARCHIVE_NAME}" .
+          done
+          echo "ARCHIVES=$ARCHIVES" >> "$GITHUB_ENV"
+
+      - name: Upload release assets
+        env:
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        run: gh release upload "${{ needs.release-please.outputs.tag_name }}" ${{ env.ARCHIVES }}/*.tar.gz
+
+      - name: Build SDK
+        working-directory: sdk/nodejs
+        run: npm ci && npm run build
+
+      - name: Publish SDK to npm
+        working-directory: sdk/nodejs
+        run: npm publish --access public
+        env:
+          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}

package/.github/workflows/release.yml

@@ -0,0 +1,87 @@
+name: Release (Manual)
+
+on:
+  push:
+    tags:
+      - "v*"
+  workflow_dispatch:
+
+permissions:
+  contents: write
+
+jobs:
+  release:
+    name: Build & Release
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: 20
+          cache: npm
+          registry-url: https://registry.npmjs.org
+
+      - name: Extract version from tag
+        id: version
+        run: echo "VERSION=${GITHUB_REF_NAME#v}" >> "$GITHUB_OUTPUT"
+
+      - name: Patch version in package files
+        run: |
+          VERSION="${{ steps.version.outputs.VERSION }}"
+          # Update provider package.json
+          jq --arg v "$VERSION" '.version = $v' package.json > package.json.tmp && mv package.json.tmp package.json
+          # Update schema.json
+          jq --arg v "$VERSION" '.version = $v' schema.json > schema.json.tmp && mv schema.json.tmp schema.json
+          # Update SDK package.json
+          jq --arg v "$VERSION" '.version = $v' sdk/nodejs/package.json > sdk/nodejs/package.json.tmp && mv sdk/nodejs/package.json.tmp sdk/nodejs/package.json
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Build provider
+        run: npm run build
+
+      - name: Stage plugin archive
+        run: |
+          STAGING="$(mktemp -d)"
+          # Copy provider artifacts
+          cp -r dist "$STAGING/"
+          cp package.json schema.json "$STAGING/"
+          cp pulumi-resource-homelab pulumi-resource-homelab.cmd "$STAGING/"
+          # Install production-only dependencies into staging
+          cp package-lock.json "$STAGING/"
+          cd "$STAGING" && npm ci --omit=dev && rm package-lock.json
+          # Remove all .bin symlinks — Pulumi's archive extractor can't handle them
+          find node_modules -name '.bin' -type d -exec rm -rf {} +
+          echo "STAGING=$STAGING" >> "$GITHUB_ENV"
+
+      - name: Create platform archives
+        run: |
+          VERSION="${{ steps.version.outputs.VERSION }}"
+          ARCHIVES="$(mktemp -d)"
+          cd "$STAGING"
+          for PLATFORM in linux-amd64 darwin-amd64 darwin-arm64 windows-amd64; do
+            ARCHIVE_NAME="pulumi-resource-homelab-v${VERSION}-${PLATFORM}.tar.gz"
+            tar czf "${ARCHIVES}/${ARCHIVE_NAME}" .
+          done
+          echo "ARCHIVES=$ARCHIVES" >> "$GITHUB_ENV"
+
+      - name: Create GitHub Release
+        uses: softprops/action-gh-release@v2
+        with:
+          generate_release_notes: true
+          files: ${{ env.ARCHIVES }}/*.tar.gz
+
+      - name: Build SDK
+        working-directory: sdk/nodejs
+        run: npm ci && npm run build
+
+      - name: Publish SDK to npm
+        working-directory: sdk/nodejs
+        run: npm publish --access public
+        env:
+          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}

package/.release-please-manifest.json

@@ -0,0 +1,3 @@
+{
+  ".": "0.3.5"
+}

package/CHANGELOG.md

@@ -0,0 +1,102 @@
+# Changelog
+
+## [0.3.5](https://github.com/tyevco/pulumi-homelab/compare/v0.3.4...v0.3.5) (2026-03-06)
+
+
+### Bug Fixes
+
+* omit Content-Type on GET requests and recreate stack on 404 ([c02fdfb](https://github.com/tyevco/pulumi-homelab/commit/c02fdfb76273cefd4563bb407e8995e4180a08ba))
+* recreate stack on 404 during update ([eae8ca9](https://github.com/tyevco/pulumi-homelab/commit/eae8ca99f9505654ab3ee2f8be8f8d48b4d3b79b))
+
+## [0.3.4](https://github.com/tyevco/pulumi-homelab/compare/v0.3.3...v0.3.4) (2026-03-01)
+
+
+### Bug Fixes
+
+* omit Content-Type header on GET requests to OPNsense API ([79a7175](https://github.com/tyevco/pulumi-homelab/commit/79a7175853e9f5bb9bd28f28a6ffce2ec79d19ad))
+* omit Content-Type on GET requests to OPNsense API ([0bf4d44](https://github.com/tyevco/pulumi-homelab/commit/0bf4d445e3bedf18bedd28f24eb6a94ef2632c0f))
+
+## [0.3.3](https://github.com/tyevco/pulumi-homelab/compare/v0.3.2...v0.3.3) (2026-03-01)
+
+
+### Bug Fixes
+
+* add not-found text detection to traefik static config read handler ([24e1222](https://github.com/tyevco/pulumi-homelab/commit/24e1222e4353a59f61b4cce3a3b5244c99f55607))
+* add TXT to valid rr types in host override validation ([5526f3b](https://github.com/tyevco/pulumi-homelab/commit/5526f3befd237428265826057fc739b93ce74b33))
+* consistent not-found detection in all read and delete handlers ([b9e9be9](https://github.com/tyevco/pulumi-homelab/commit/b9e9be9dc81b3264bdaa0d7dade7b6d831257b48))
+* consistent not-found handling and test coverage improvements ([398d1af](https://github.com/tyevco/pulumi-homelab/commit/398d1af4a22ecea71cd7aabe8422b90c4ba06aa9))
+* consistent not-found handling, stackToOutputs bug, and test coverage ([f26c586](https://github.com/tyevco/pulumi-homelab/commit/f26c586ddc8e264ac74fdefe11a390483447c01b))
+* harden OPNsense getItem response parsing ([81b1b1c](https://github.com/tyevco/pulumi-homelab/commit/81b1b1c801b9af26326b48871de7572deee9304b))
+* harden OPNsense getItem response parsing and Struct serialization ([9a93e3c](https://github.com/tyevco/pulumi-homelab/commit/9a93e3c2e8adc0cf53b4bff5df5f074c38a899d6))
+* make OPNsense delete handlers match read handlers for not-found detection ([52c60e9](https://github.com/tyevco/pulumi-homelab/commit/52c60e98f789a53d9ad482b5005f4bf657b89b78))
+* use strict undefined checks in stackToOutputs for envFile and composeYaml ([7533718](https://github.com/tyevco/pulumi-homelab/commit/7533718227f750fa734933715f108a46510e0fbb))
+
+## [0.3.2](https://github.com/tyevco/pulumi-homelab/compare/v0.3.1...v0.3.2) (2026-03-01)
+
+
+### Bug Fixes
+
+* add enum validation to check handlers ([413ff1b](https://github.com/tyevco/pulumi-homelab/commit/413ff1bf7a45848a45c58e2c46a654321eeeff50))
+* code analysis round 4 - enum validation, autostart fix, test coverage ([d51ab45](https://github.com/tyevco/pulumi-homelab/commit/d51ab452d64a2680df957f7c81886005610b6570))
+* move lxcContainer autostart to REPLACE_FIELDS ([7e51e66](https://github.com/tyevco/pulumi-homelab/commit/7e51e66bede034ac2e91927a38bbd62f54e94804))
+
+## [0.3.1](https://github.com/tyevco/pulumi-homelab/compare/v0.3.0...v0.3.1) (2026-03-01)
+
+
+### Bug Fixes
+
+* normalize OPNsense getItem response format for read/import ([9f2f180](https://github.com/tyevco/pulumi-homelab/commit/9f2f18084d9c816fa27bb0cd74cccfa397200706))
+* OPNsense API normalization, diff stability, and edge cases ([fbfb0c4](https://github.com/tyevco/pulumi-homelab/commit/fbfb0c4c40e8cc8bd840d35e3eced9013e972a86))
+* prevent spurious diffs between undefined and empty string ([155b14b](https://github.com/tyevco/pulumi-homelab/commit/155b14b754910bdd27d4206f5110d04c49ac4d4b))
+* use nullish coalescing for opnsenseInsecure config ([6a15806](https://github.com/tyevco/pulumi-homelab/commit/6a158063a9c88a368f599aab62e262129b7cf765))
+* use safeParseInt to prevent NaN from empty/invalid numeric strings ([e6bcc78](https://github.com/tyevco/pulumi-homelab/commit/e6bcc78715e73728a7e9b5f03efb3613037ba931))
+
+## [0.3.0](https://github.com/tyevco/pulumi-homelab/compare/v0.2.3...v0.3.0) (2026-03-01)
+
+
+### ⚠ BREAKING CHANGES
+
+* Remove all dockge backward-compat aliases and rename client module. DockgeStack, DockgeStackArgs, DockgeContainerInfo, DockgeClientConfig, DockgeStackInfo, and configureDockgeClient exports are removed. The dockge:index:DockgeStack resource type is no longer supported. Config keys dockge:config:url and dockge:config:apiKey are removed. Use homelab:config:url and homelab:config:apiKey instead.
+
+### Features
+
+* add LXC container resource ([2cdb2f4](https://github.com/tyevco/pulumi-homelab/commit/2cdb2f495c9ae9b72bd1afd4cde3acefeb8eb71a))
+* add mac as supported alias type for OpnsenseAlias ([7e87616](https://github.com/tyevco/pulumi-homelab/commit/7e87616958bb6f385d3c2c584499ddeff3af66a9))
+* add mac as supported alias type for OpnsenseAlias ([2ebbbde](https://github.com/tyevco/pulumi-homelab/commit/2ebbbde093eb9e1d81dddc7b8c64f679a85546ea))
+* remove dockge backward compatibility and rename to homelab ([1b2c921](https://github.com/tyevco/pulumi-homelab/commit/1b2c921261742350d799470678e871be0122f9c4))
+
+
+### Bug Fixes
+
+* add docker-compose keyword to schema ([da87af7](https://github.com/tyevco/pulumi-homelab/commit/da87af7bc4338baa8056688a49d2e58eb4da8d78))
+* add json.message support to homelabClient error extraction ([2a1b58c](https://github.com/tyevco/pulumi-homelab/commit/2a1b58c42c793a46c2ac0ffc0bd5b1e1f049d0b4))
+* code analysis bug fixes and edge case tests ([5731b29](https://github.com/tyevco/pulumi-homelab/commit/5731b29a4f06e544d4e25751f7abcf863ac25fb7))
+* code analysis round 2 - error handling and test coverage ([c055400](https://github.com/tyevco/pulumi-homelab/commit/c05540077fefdc05dfa1732853398587efb8c729))
+* stop LXC container before deleting to prevent deletion failures ([7699b9f](https://github.com/tyevco/pulumi-homelab/commit/7699b9ff9f6b68d55ea0b1ec21817f4606d41ab9))
+* unwrap secrets inside arrays recursively ([fd5267a](https://github.com/tyevco/pulumi-homelab/commit/fd5267aecc21ca99fdbd0e7fc0dec0dab3be8ba1))
+
+## [0.2.3](https://github.com/tyevco/pulumi-homelab/compare/v0.2.2...v0.2.3) (2026-03-01)
+
+
+### Bug Fixes
+
+* use gh release upload instead of softprops/action-gh-release ([7826a40](https://github.com/tyevco/pulumi-homelab/commit/7826a40609f177d2616a60ee18b00db3c6425a42))
+
+## [0.2.2](https://github.com/tyevco/pulumi-homelab/compare/v0.2.1...v0.2.2) (2026-02-28)
+
+
+### Bug Fixes
+
+* release-please tag matching, CI tests, and publish workflow ([7ee9ef5](https://github.com/tyevco/pulumi-homelab/commit/7ee9ef5846680a78fd08cdd15cfecba7011fd001))
+* run publish steps directly in release-please workflow ([e10ec90](https://github.com/tyevco/pulumi-homelab/commit/e10ec9077dd36ea57e91a5cfe1b21bd67049ffe4))
+
+## [0.2.1](https://github.com/tyevco/pulumi-homelab/compare/v0.2.0...v0.2.1) (2026-02-28)
+
+
+### Bug Fixes
+
+* convert jest config from TypeScript to JavaScript ([7d2e68f](https://github.com/tyevco/pulumi-homelab/commit/7d2e68f1a281535f8e729ad7d4846f5779cca413))
+* release-please tag matching and CI test runner ([c103565](https://github.com/tyevco/pulumi-homelab/commit/c103565c9c7faeb87ae28bf0b3c82412563f461b))
+* resolve hardcoded version, unhandled promise rejections, and dead code ([2bef660](https://github.com/tyevco/pulumi-homelab/commit/2bef660c6c1c06824adc4ba77aaca68c0a5fd7f1))
+* sync versions to v0.2.0, add tests to CI, remove dead code ([9192ae9](https://github.com/tyevco/pulumi-homelab/commit/9192ae9d2e43c1389ca5905b54c2ca7bfcc7efe2))
+* use plain v* tags and sync package-lock version ([3f74b68](https://github.com/tyevco/pulumi-homelab/commit/3f74b687ccfa6d77df20af7f5bc5f853389226bd))

package/CLAUDE.md

@@ -0,0 +1,35 @@
+# Project Instructions
+
+## Commit Message Format
+
+This project uses [Conventional Commits](https://www.conventionalcommits.org/) to drive automated versioning via release-please.
+
+Always use the following format for commit messages:
+
+```
+<type>[optional scope]: <description>
+```
+
+### Types
+
+- `feat:` — new feature (bumps minor version)
+- `fix:` — bug fix (bumps patch version)
+- `chore:` — maintenance tasks (no version bump)
+- `docs:` — documentation only (no version bump)
+- `test:` — adding or updating tests (no version bump)
+- `refactor:` — code refactoring (no version bump)
+- `ci:` — CI/CD changes (no version bump)
+
+### Breaking Changes
+
+- Use `feat!:` or `fix!:` for breaking changes (bumps major version, or minor while pre-1.0)
+- Alternatively, add a `BREAKING CHANGE:` footer to any commit
+
+### Examples
+
+```
+feat: add Traefik middleware resource
+fix: handle empty compose file gracefully
+feat!: rename Stack resource to DockgeStack
+chore: update dev dependencies
+```

package/dist/index.js

@@ -0,0 +1,179 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+const fs = __importStar(require("fs"));
+const path = __importStar(require("path"));
+const grpc = __importStar(require("@grpc/grpc-js"));
+const helpers_1 = require("./helpers");
+const homelabClient_1 = require("./homelabClient");
+const opnsenseClient_1 = require("./opnsenseClient");
+const provider_1 = require("./provider");
+const providerProto = require("@pulumi/pulumi/proto/provider_pb");
+const providerGrpc = require("@pulumi/pulumi/proto/provider_grpc_pb");
+const pluginProto = require("@pulumi/pulumi/proto/plugin_pb");
+const emptyProto = require("google-protobuf/google/protobuf/empty_pb");
+const schema = fs.readFileSync(path.join(__dirname, "..", "schema.json"), "utf-8");
+const packageJson = JSON.parse(fs.readFileSync(path.join(__dirname, "..", "package.json"), "utf-8"));
+const providerImpl = {
+    getPluginInfo(call, callback) {
+        const response = new pluginProto.PluginInfo();
+        response.setVersion(packageJson.version);
+        callback(null, response);
+    },
+    getSchema(call, callback) {
+        const response = new providerProto.GetSchemaResponse();
+        response.setSchema(schema);
+        callback(null, response);
+    },
+    configure(call, callback) {
+        const args = (0, helpers_1.structToObject)(call.request.getArgs());
+        // Extract Homelab configuration (unwrap secrets)
+        const url = (0, helpers_1.unwrapSecret)(args["url"] || args["homelab:config:url"]) || "";
+        const apiKey = (0, helpers_1.unwrapSecret)(args["apiKey"] || args["homelab:config:apiKey"]) || "";
+        const endpoint = (0, helpers_1.unwrapSecret)(args["endpoint"] || args["homelab:config:endpoint"]) || undefined;
+        if (url && apiKey) {
+            (0, homelabClient_1.configureClient)({ url, apiKey, endpoint });
+        }
+        // Extract OPNsense configuration
+        const opnsenseUrl = (0, helpers_1.unwrapSecret)(args["opnsenseUrl"] || args["homelab:config:opnsenseUrl"]) || "";
+        const opnsenseApiKey = (0, helpers_1.unwrapSecret)(args["opnsenseApiKey"] || args["homelab:config:opnsenseApiKey"]) || "";
+        const opnsenseApiSecret = (0, helpers_1.unwrapSecret)(args["opnsenseApiSecret"] || args["homelab:config:opnsenseApiSecret"]) || "";
+        const opnsenseInsecure = (0, helpers_1.unwrapSecret)(args["opnsenseInsecure"] ?? args["homelab:config:opnsenseInsecure"]) ?? false;
+        if (opnsenseUrl && opnsenseApiKey && opnsenseApiSecret) {
+            (0, opnsenseClient_1.configureOpnsenseClient)({
+                url: opnsenseUrl,
+                apiKey: opnsenseApiKey,
+                apiSecret: opnsenseApiSecret,
+                insecure: opnsenseInsecure === true || opnsenseInsecure === "true",
+            });
+        }
+        const response = new providerProto.ConfigureResponse();
+        response.setAcceptsecrets(true);
+        response.setSupportspreview(true);
+        callback(null, response);
+    },
+    checkConfig(call, callback) {
+        const news = (0, helpers_1.structToObject)(call.request.getNews());
+        const failures = [];
+        // Homelab cross-dependency: if either field is set, both are required
+        const url = news["url"] || "";
+        const apiKey = news["apiKey"] || "";
+        if (url && !apiKey) {
+            const failure = new providerProto.CheckFailure();
+            failure.setProperty("apiKey");
+            failure.setReason("apiKey is required when url is set. Set it via `pulumi config set --secret homelab:apiKey <key>`");
+            failures.push(failure);
+        }
+        if (!url && apiKey) {
+            const failure = new providerProto.CheckFailure();
+            failure.setProperty("url");
+            failure.setReason("url is required when apiKey is set. Set it via `pulumi config set homelab:url <url>`");
+            failures.push(failure);
+        }
+        // OPNsense cross-dependency: if any OPNsense field is set, all three required fields must be set
+        const opnsenseUrl = news["opnsenseUrl"] || "";
+        const opnsenseApiKey = news["opnsenseApiKey"] || "";
+        const opnsenseApiSecret = news["opnsenseApiSecret"] || "";
+        const anyOpnsense = opnsenseUrl || opnsenseApiKey || opnsenseApiSecret;
+        if (anyOpnsense) {
+            if (!opnsenseUrl) {
+                const failure = new providerProto.CheckFailure();
+                failure.setProperty("opnsenseUrl");
+                failure.setReason("opnsenseUrl is required when other OPNsense fields are set. Set it via `pulumi config set homelab:opnsenseUrl <url>`");
+                failures.push(failure);
+            }
+            if (!opnsenseApiKey) {
+                const failure = new providerProto.CheckFailure();
+                failure.setProperty("opnsenseApiKey");
+                failure.setReason("opnsenseApiKey is required when other OPNsense fields are set. Set it via `pulumi config set --secret homelab:opnsenseApiKey <key>`");
+                failures.push(failure);
+            }
+            if (!opnsenseApiSecret) {
+                const failure = new providerProto.CheckFailure();
+                failure.setProperty("opnsenseApiSecret");
+                failure.setReason("opnsenseApiSecret is required when other OPNsense fields are set. Set it via `pulumi config set --secret homelab:opnsenseApiSecret <secret>`");
+                failures.push(failure);
+            }
+        }
+        const response = new providerProto.CheckResponse();
+        response.setInputs(call.request.getNews());
+        failures.forEach((f) => response.addFailures(f));
+        callback(null, response);
+    },
+    diffConfig(call, callback) {
+        const response = new providerProto.DiffResponse();
+        callback(null, response);
+    },
+    check(call, callback) {
+        (0, provider_1.dispatchCheck)(call, callback);
+    },
+    diff(call, callback) {
+        (0, provider_1.dispatchDiff)(call, callback);
+    },
+    create(call, callback) {
+        (0, provider_1.dispatchCreate)(call, callback);
+    },
+    read(call, callback) {
+        (0, provider_1.dispatchRead)(call, callback);
+    },
+    update(call, callback) {
+        (0, provider_1.dispatchUpdate)(call, callback);
+    },
+    delete(call, callback) {
+        (0, provider_1.dispatchDelete)(call, callback);
+    },
+    invoke(call, callback) {
+        const tok = call.request.getTok();
+        callback({
+            code: grpc.status.UNIMPLEMENTED,
+            message: `Unknown function: ${tok}`,
+        });
+    },
+    cancel(call, callback) {
+        callback(null, new emptyProto.Empty());
+    },
+};
+// Start gRPC server
+const server = new grpc.Server();
+server.addService(providerGrpc.ResourceProviderService, providerImpl);
+server.bindAsync("127.0.0.1:0", grpc.ServerCredentials.createInsecure(), (err, port) => {
+    if (err) {
+        console.error(`Failed to bind: ${err}`);
+        process.exit(1);
+    }
+    // Pulumi reads the port from stdout
+    console.log(port);
+});
+//# sourceMappingURL=index.js.map

package/jest.config.js

@@ -0,0 +1,23 @@
+/** @type {import('jest').Config} */
+module.exports = {
+  preset: "ts-jest",
+  testEnvironment: "node",
+  roots: ["<rootDir>/tests"],
+  transform: {
+    "^.+\\.tsx?$": [
+      "ts-jest",
+      {
+        tsconfig: {
+          rootDir: ".",
+          target: "ES2020",
+          module: "commonjs",
+          lib: ["ES2020"],
+          strict: true,
+          esModuleInterop: true,
+          skipLibCheck: true,
+          resolveJsonModule: true,
+        },
+      },
+    ],
+  },
+};

package/package.json

@@ -1,32 +1,36 @@
 {
   "name": "@tyevco/pulumi-homelab",
-  "version": "0.3.5",
-  "description": "Pulumi SDK for managing homelab infrastructure",
-  "main": "index.js",
-  "typings": "index.d.ts",
-  "files": [
-    "*.js",
-    "*.d.ts",
-    "package.json"
-  ],
+  "version": "0.5.0",
+  "description": "A Pulumi native provider for managing homelab infrastructure via the homelab REST API",
+  "main": "dist/index.js",
   "scripts": {
-    "build": "tsc"
+    "build": "tsc",
+    "clean": "rm -rf dist",
+    "rebuild": "npm run clean && npm run build",
+    "deploy:local": "npm run rebuild && VERSION=$(node -p \"require('./package.json').version\") && mkdir -p ~/.pulumi/plugins/resource-homelab-v${VERSION} && cp -r dist package.json node_modules schema.json pulumi-resource-homelab pulumi-resource-homelab.cmd ~/.pulumi/plugins/resource-homelab-v${VERSION}/",
+    "test": "jest"
   },
+  "keywords": [
+    "pulumi",
+    "homelab",
+    "lxc",
+    "infrastructure",
+    "docker-compose"
+  ],
+  "license": "Apache-2.0",
   "dependencies": {
-    "@pulumi/pulumi": "^3.132.0"
+    "@grpc/grpc-js": "^1.8.0",
+    "@pulumi/pulumi": "^3.132.0",
+    "cross-fetch": "^4.0.0",
+    "google-protobuf": "3.21.4",
+    "yaml": "^2.8.2"
   },
   "devDependencies": {
-    "typescript": "^5.0.0",
-    "@types/node": "^20.0.0"
-  },
-  "repository": {
-    "type": "git",
-    "url": "https://github.com/tyevco/pulumi-homelab.git",
-    "directory": "sdk/nodejs"
-  },
-  "license": "Apache-2.0",
-  "pulumi": {
-    "resource": true,
-    "pluginDownloadURL": "github://api.github.com/tyevco/pulumi-homelab"
+    "@types/google-protobuf": "^3.15.0",
+    "@types/jest": "^30.0.0",
+    "@types/node": "^20.0.0",
+    "jest": "^30.2.0",
+    "ts-jest": "^29.4.6",
+    "typescript": "^5.0.0"
   }
 }

package/pulumi-resource-homelab

@@ -0,0 +1,3 @@
+#!/bin/bash
+DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+node "$DIR/dist/index.js"

package/pulumi-resource-homelab.cmd

@@ -0,0 +1,2 @@
+@echo off
+node "%~dp0dist\index.js" %*

package/release-please-config.json

@@ -0,0 +1,22 @@
+{
+  "packages": {
+    ".": {
+      "release-type": "node",
+      "bump-minor-pre-major": true,
+      "include-component-in-tag": false,
+      "extra-files": [
+        {
+          "type": "json",
+          "path": "schema.json",
+          "jsonpath": "$.version"
+        },
+        {
+          "type": "json",
+          "path": "sdk/nodejs/package.json",
+          "jsonpath": "$.version"
+        }
+      ]
+    }
+  },
+  "$schema": "https://raw.githubusercontent.com/googleapis/release-please/main/schemas/config.json"
+}