PyPI - proxctl - Versions diffs - 0.2.0__tar.gz → 0.2.2__tar.gz - Mend

proxctl 0.2.0tar.gz → 0.2.2tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (57) hide show

{proxctl-0.2.0 → proxctl-0.2.2}/.github/workflows/ci.yml RENAMED Viewed

@@ -35,6 +35,21 @@ jobs:
       - name: Run tests
         run: make test
+  coverage:
+    name: Coverage
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - uses: dtolnay/rust-toolchain@stable
+      - uses: taiki-e/install-action@cargo-tarpaulin
+      - name: Generate coverage
+        run: cargo tarpaulin --out xml
+      - name: Upload to Codecov
+        uses: codecov/codecov-action@v5
+        with:
+          files: cobertura.xml
+          token: ${{ secrets.CODECOV_TOKEN }}
   all-checks-passed:
     name: All checks passed
     runs-on: ubuntu-latest

{proxctl-0.2.0 → proxctl-0.2.2}/.github/workflows/release.yml RENAMED Viewed

@@ -232,3 +232,83 @@ jobs:
           echo "Dry run complete. Artifacts built but nothing published."
           echo "Archives:"
           find artifacts/release-* -type f | sort
+  update-homebrew:
+    needs: release
+    if: ${{ !inputs.dry_run }}
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/download-artifact@v4
+        with:
+          path: /tmp/artifacts
+      - name: Compute SHA256 hashes
+        id: hashes
+        run: |
+          for target in x86_64-apple-darwin aarch64-apple-darwin x86_64-unknown-linux-gnu aarch64-unknown-linux-gnu; do
+            sha=$(cat /tmp/artifacts/release-${target}/proxctl-${{ github.ref_name }}-${target}.tar.gz.sha256 | awk '{print $1}')
+            key=$(echo "${target}" | tr '-' '_')
+            echo "${key}=${sha}" >> "$GITHUB_OUTPUT"
+          done
+      - name: Update Homebrew formula
+        env:
+          GH_TOKEN: ${{ secrets.HOMEBREW_TAP_TOKEN }}
+        run: |
+          VERSION="${{ github.ref_name }}"
+          VERSION_NUM="${VERSION#v}"
+          cat > /tmp/proxctl.rb << 'FORMULA'
+          class Proxctl < Formula
+            desc "CLI for Proxmox VE"
+            homepage "https://github.com/rvben/proxctl"
+            version "VERSION_NUM"
+            license "MIT"
+            on_macos do
+              if Hardware::CPU.arm?
+                url "https://github.com/rvben/proxctl/releases/download/VERSION/proxctl-VERSION-aarch64-apple-darwin.tar.gz"
+                sha256 "SHA_AARCH64_APPLE_DARWIN"
+              else
+                url "https://github.com/rvben/proxctl/releases/download/VERSION/proxctl-VERSION-x86_64-apple-darwin.tar.gz"
+                sha256 "SHA_X86_64_APPLE_DARWIN"
+              end
+            end
+            on_linux do
+              if Hardware::CPU.arm?
+                url "https://github.com/rvben/proxctl/releases/download/VERSION/proxctl-VERSION-aarch64-unknown-linux-gnu.tar.gz"
+                sha256 "SHA_AARCH64_UNKNOWN_LINUX_GNU"
+              else
+                url "https://github.com/rvben/proxctl/releases/download/VERSION/proxctl-VERSION-x86_64-unknown-linux-gnu.tar.gz"
+                sha256 "SHA_X86_64_UNKNOWN_LINUX_GNU"
+              end
+            end
+            def install
+              bin.install "proxctl"
+            end
+            test do
+              system "#{bin}/proxctl", "--version"
+            end
+          end
+          FORMULA
+          sed -i "s/VERSION_NUM/${VERSION_NUM}/g" /tmp/proxctl.rb
+          sed -i "s/VERSION/${VERSION}/g" /tmp/proxctl.rb
+          sed -i "s/SHA_AARCH64_APPLE_DARWIN/${{ steps.hashes.outputs.aarch64_apple_darwin }}/g" /tmp/proxctl.rb
+          sed -i "s/SHA_X86_64_APPLE_DARWIN/${{ steps.hashes.outputs.x86_64_apple_darwin }}/g" /tmp/proxctl.rb
+          sed -i "s/SHA_AARCH64_UNKNOWN_LINUX_GNU/${{ steps.hashes.outputs.aarch64_unknown_linux_gnu }}/g" /tmp/proxctl.rb
+          sed -i "s/SHA_X86_64_UNKNOWN_LINUX_GNU/${{ steps.hashes.outputs.x86_64_unknown_linux_gnu }}/g" /tmp/proxctl.rb
+          # Clone tap repo, update formula, push
+          git clone https://x-access-token:${GH_TOKEN}@github.com/rvben/homebrew-tap.git /tmp/tap
+          mkdir -p /tmp/tap/Formula
+          cp /tmp/proxctl.rb /tmp/tap/Formula/proxctl.rb
+          cd /tmp/tap
+          git config user.name "github-actions[bot]"
+          git config user.email "github-actions[bot]@users.noreply.github.com"
+          git add Formula/proxctl.rb
+          git diff --cached --quiet || git commit -m "Update proxctl to ${VERSION}"
+          git push

{proxctl-0.2.0 → proxctl-0.2.2}/CHANGELOG.md RENAMED Viewed

@@ -2,6 +2,21 @@
 All notable changes to this project will be documented in this file.
+## [0.2.2](https://github.com/rvben/proxctl/compare/v0.2.1...v0.2.2) - 2026-04-03
+### Added
+- **firewall**: add --iface and --macro flags to firewall add commands ([7533533](https://github.com/rvben/proxctl/commit/7533533da3bcc1e808cf3af5ffab6ca150d7a05b))
+## [0.2.1](https://github.com/rvben/proxctl/compare/v0.2.0...v0.2.1) - 2026-03-28
+### Added
+- **container**: add --nameserver flag to container set command ([2cbdc9a](https://github.com/rvben/proxctl/commit/2cbdc9a421b3281731a48506cd3afb1f010752dd))
+- **schema**: add metadata for apply and export commands ([b408baa](https://github.com/rvben/proxctl/commit/b408baa1c496af992bc4dd3d2da4611af5ce6b72))
 ## [0.2.0] - 2026-03-27
 ### Added

{proxctl-0.2.0 → proxctl-0.2.2}/Cargo.lock RENAMED Viewed

@@ -955,7 +955,7 @@ dependencies = [
 [[package]]
 name = "proxctl"
-version = "0.2.0"
+version = "0.2.2"
 dependencies = [
  "clap",
  "clap_complete",

{proxctl-0.2.0 → proxctl-0.2.2}/Cargo.toml RENAMED Viewed

@@ -1,6 +1,6 @@
 [package]
 name = "proxctl"
-version = "0.2.0"
+version = "0.2.2"
 edition = "2024"
 rust-version = "1.90"
 description = "CLI for Proxmox VE"

{proxctl-0.2.0 → proxctl-0.2.2}/Makefile RENAMED Viewed

@@ -1,4 +1,4 @@
-.PHONY: build release test lint fmt check clean install
+.PHONY: build release test lint fmt check clean install release-patch release-minor release-major
 build:
 	cargo build
@@ -23,3 +23,12 @@ clean:
 install: release
 	cp target/release/proxctl ~/.local/bin/proxctl
+release-patch:
+	vership bump patch
+release-minor:
+	vership bump minor
+release-major:
+	vership bump major

{proxctl-0.2.0 → proxctl-0.2.2}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: proxctl
-Version: 0.2.0
+Version: 0.2.2
 Classifier: Development Status :: 3 - Alpha
 Classifier: Environment :: Console
 Classifier: Intended Audience :: System Administrators
@@ -24,8 +24,9 @@ Project-URL: Repository, https://github.com/rvben/proxctl.git
 [![crates.io](https://img.shields.io/crates/v/proxctl.svg)](https://crates.io/crates/proxctl)
 [![CI](https://github.com/rvben/proxctl/actions/workflows/ci.yml/badge.svg)](https://github.com/rvben/proxctl/actions/workflows/ci.yml)
 [![License: MIT](https://img.shields.io/badge/License-MIT-blue.svg)](LICENSE)
+[![codecov](https://codecov.io/gh/rvben/proxctl/graph/badge.svg)](https://codecov.io/gh/rvben/proxctl)
-A command-line interface for [Proxmox VE](https://www.proxmox.com/en/proxmox-virtual-environment/overview) -- manage VMs, containers, nodes, storage, and more from your terminal.
+A command-line interface for [Proxmox VE](https://www.proxmox.com/en/proxmox-virtual-environment/overview) -- manage VMs, containers, nodes, storage, and more from your terminal. Includes declarative infrastructure management with `apply` and `export`.
 ## Install
@@ -65,9 +66,70 @@ proxctl vm snapshot list 100
 proxctl api get /nodes
 ```
+## Declarative Infrastructure (IaC)
+Manage Proxmox resources declaratively with YAML manifests, similar to `kubectl apply`.
+### Export existing resources
+```bash
+# Export a single VM
+proxctl export vm 101 > haos.yaml
+# Export all containers
+proxctl export container --all > containers.yaml
+# Export cluster firewall rules
+proxctl export firewall cluster > firewall.yaml
+```
+### Apply desired state
+```yaml
+# infra/web.yaml
+kind: vm
+name: web-01
+vmid: 100
+config:
+  memory: 4096
+  cores: 2
+  onboot: true
+---
+kind: firewall-rule
+scope: cluster
+config:
+  action: ACCEPT
+  type: in
+  proto: tcp
+  dport: "443"
+  comment: "Allow HTTPS"
+```
+```bash
+# Preview changes
+proxctl apply -f infra/ --dry-run
+# Apply changes
+proxctl apply -f infra/
+# Round-trip: export, then verify nothing drifted
+proxctl export vm --all > current.yaml
+proxctl apply -f current.yaml --dry-run  # should show "noop" for all
+```
+### Key behaviors
+- **Idempotent** -- running apply twice produces "up to date" on the second run
+- **Patch semantics** -- only specified config keys are changed, others left untouched
+- **Name or VMID** -- resources can be identified by name (auto-resolves VMID) or pinned by ID
+- **Multi-document** -- multiple resources in one file with `---` separators, or a directory of files
+- **Optional power state** -- add `state: running` or `state: stopped` to manage power, or omit to leave it alone
+- **Safe** -- shows a diff before applying, destructive changes prompt for confirmation
 ## Features
 - **145+ commands** covering VMs, containers, nodes, storage, backups, cluster, firewall, access control, pools, and Ceph
+- **Declarative IaC** -- `apply` and `export` for infrastructure-as-code workflows
 - **Auto-detection** -- resolves which node a VM lives on automatically
 - **Agent-friendly** -- `--json` output, `schema` command for introspection, structured exit codes
 - **Async task handling** -- waits for operations to complete with progress spinner
@@ -144,6 +206,7 @@ This enables AI agents and automation tools to discover available operations, re
 | Feature | proxctl | pvesh (built-in) | proxmoxer (Python) |
 |---|---|---|---|
+| Declarative IaC (apply/export) | Yes | No | No |
 | Typed CLI with completions | Yes | No | N/A |
 | Cross-platform binaries | Yes | No (PVE only) | pip install |
 | VMID auto-resolution | Yes | No | Manual |

{proxctl-0.2.0 → proxctl-0.2.2}/README.md RENAMED Viewed

@@ -3,8 +3,9 @@
 [![crates.io](https://img.shields.io/crates/v/proxctl.svg)](https://crates.io/crates/proxctl)
 [![CI](https://github.com/rvben/proxctl/actions/workflows/ci.yml/badge.svg)](https://github.com/rvben/proxctl/actions/workflows/ci.yml)
 [![License: MIT](https://img.shields.io/badge/License-MIT-blue.svg)](LICENSE)
+[![codecov](https://codecov.io/gh/rvben/proxctl/graph/badge.svg)](https://codecov.io/gh/rvben/proxctl)
-A command-line interface for [Proxmox VE](https://www.proxmox.com/en/proxmox-virtual-environment/overview) -- manage VMs, containers, nodes, storage, and more from your terminal.
+A command-line interface for [Proxmox VE](https://www.proxmox.com/en/proxmox-virtual-environment/overview) -- manage VMs, containers, nodes, storage, and more from your terminal. Includes declarative infrastructure management with `apply` and `export`.
 ## Install
@@ -44,9 +45,70 @@ proxctl vm snapshot list 100
 proxctl api get /nodes
 ```
+## Declarative Infrastructure (IaC)
+Manage Proxmox resources declaratively with YAML manifests, similar to `kubectl apply`.
+### Export existing resources
+```bash
+# Export a single VM
+proxctl export vm 101 > haos.yaml
+# Export all containers
+proxctl export container --all > containers.yaml
+# Export cluster firewall rules
+proxctl export firewall cluster > firewall.yaml
+```
+### Apply desired state
+```yaml
+# infra/web.yaml
+kind: vm
+name: web-01
+vmid: 100
+config:
+  memory: 4096
+  cores: 2
+  onboot: true
+---
+kind: firewall-rule
+scope: cluster
+config:
+  action: ACCEPT
+  type: in
+  proto: tcp
+  dport: "443"
+  comment: "Allow HTTPS"
+```
+```bash
+# Preview changes
+proxctl apply -f infra/ --dry-run
+# Apply changes
+proxctl apply -f infra/
+# Round-trip: export, then verify nothing drifted
+proxctl export vm --all > current.yaml
+proxctl apply -f current.yaml --dry-run  # should show "noop" for all
+```
+### Key behaviors
+- **Idempotent** -- running apply twice produces "up to date" on the second run
+- **Patch semantics** -- only specified config keys are changed, others left untouched
+- **Name or VMID** -- resources can be identified by name (auto-resolves VMID) or pinned by ID
+- **Multi-document** -- multiple resources in one file with `---` separators, or a directory of files
+- **Optional power state** -- add `state: running` or `state: stopped` to manage power, or omit to leave it alone
+- **Safe** -- shows a diff before applying, destructive changes prompt for confirmation
 ## Features
 - **145+ commands** covering VMs, containers, nodes, storage, backups, cluster, firewall, access control, pools, and Ceph
+- **Declarative IaC** -- `apply` and `export` for infrastructure-as-code workflows
 - **Auto-detection** -- resolves which node a VM lives on automatically
 - **Agent-friendly** -- `--json` output, `schema` command for introspection, structured exit codes
 - **Async task handling** -- waits for operations to complete with progress spinner
@@ -123,6 +185,7 @@ This enables AI agents and automation tools to discover available operations, re
 | Feature | proxctl | pvesh (built-in) | proxmoxer (Python) |
 |---|---|---|---|
+| Declarative IaC (apply/export) | Yes | No | No |
 | Typed CLI with completions | Yes | No | N/A |
 | Cross-platform binaries | Yes | No (PVE only) | pip install |
 | VMID auto-resolution | Yes | No | Manual |

proxctl-0.2.2/prek.toml ADDED Viewed

@@ -0,0 +1,36 @@
+#:schema: https://www.schemastore.org/prek.json
+[[repos]]
+repo = "builtin"
+hooks = [
+    { id = "trailing-whitespace" },
+    { id = "end-of-file-fixer" },
+    { id = "check-added-large-files" },
+]
+[[repos]]
+repo = "local"
+[[repos.hooks]]
+id = "cargo-fmt"
+name = "cargo fmt"
+entry = "cargo fmt -- --check"
+language = "system"
+types = ["rust"]
+pass_filenames = false
+[[repos.hooks]]
+id = "cargo-clippy"
+name = "cargo clippy"
+entry = "cargo clippy -- -D warnings"
+language = "system"
+types = ["rust"]
+pass_filenames = false
+[[repos.hooks]]
+id = "cargo-test"
+name = "cargo test"
+entry = "cargo test"
+language = "system"
+types = ["rust"]
+pass_filenames = false
+stages = ["pre-push"]

{proxctl-0.2.0 → proxctl-0.2.2}/src/commands/container/config.rs RENAMED Viewed

@@ -66,6 +66,7 @@ pub async fn set(
     hostname: Option<String>,
     description: Option<String>,
     onboot: Option<bool>,
+    nameserver: Option<String>,
 ) -> Result<(), Error> {
     let node = client.resolve_node_for_vmid(vmid, node_override).await?;
     let path = format!("/nodes/{node}/lxc/{vmid}/config");
@@ -86,6 +87,9 @@ pub async fn set(
     if let Some(ob) = onboot {
         params.push(("onboot".to_string(), if ob { "1" } else { "0" }.to_string()));
     }
+    if let Some(ns) = nameserver {
+        params.push(("nameserver".to_string(), ns));
+    }
     if params.is_empty() {
         return Err(Error::Config(

{proxctl-0.2.0 → proxctl-0.2.2}/src/commands/container/mod.rs RENAMED Viewed

@@ -192,6 +192,9 @@ pub enum ContainerCommand {
         /// Start at boot
         #[arg(long)]
         onboot: Option<bool>,
+        /// DNS nameserver(s) (e.g. "10.10.30.225 1.1.1.1")
+        #[arg(long)]
+        nameserver: Option<String>,
     },
     /// Create a new container
     Create {
@@ -362,6 +365,7 @@ pub async fn run(
             hostname,
             description,
             onboot,
+            nameserver,
         } => {
             config::set(
                 client,
@@ -373,6 +377,7 @@ pub async fn run(
                 hostname,
                 description,
                 onboot,
+                nameserver,
             )
             .await
         }

{proxctl-0.2.0 → proxctl-0.2.2}/src/commands/firewall.rs RENAMED Viewed

@@ -42,6 +42,9 @@ pub enum ClusterFirewallCommand {
         /// Enable the rule
         #[arg(long)]
         enable: Option<bool>,
+        /// Network interface (e.g. vmbr0, vmbr0v30)
+        #[arg(long)]
+        iface: Option<String>,
         /// Source address
         #[arg(long)]
         source: Option<String>,
@@ -54,6 +57,9 @@ pub enum ClusterFirewallCommand {
         /// Protocol
         #[arg(long)]
         proto: Option<String>,
+        /// Macro (e.g. SSH, HTTP, HTTPS)
+        #[arg(long, rename_all = "kebab-case")]
+        r#macro: Option<String>,
         /// Comment
         #[arg(long)]
         comment: Option<String>,
@@ -91,6 +97,9 @@ pub enum NodeFirewallCommand {
         /// Enable the rule
         #[arg(long)]
         enable: Option<bool>,
+        /// Network interface (e.g. vmbr0, vmbr0v30)
+        #[arg(long)]
+        iface: Option<String>,
         /// Source address
         #[arg(long)]
         source: Option<String>,
@@ -103,6 +112,9 @@ pub enum NodeFirewallCommand {
         /// Protocol
         #[arg(long)]
         proto: Option<String>,
+        /// Macro (e.g. SSH, HTTP, HTTPS)
+        #[arg(long, rename_all = "kebab-case")]
+        r#macro: Option<String>,
         /// Comment
         #[arg(long)]
         comment: Option<String>,
@@ -206,10 +218,12 @@ pub async fn run(
                 action,
                 r#type,
                 enable,
+                iface,
                 source,
                 dest,
                 dport,
                 proto,
+                r#macro,
                 comment,
             } => {
                 cluster_add_rule(
@@ -218,10 +232,12 @@ pub async fn run(
                     &action,
                     &r#type,
                     enable,
+                    iface.as_deref(),
                     source.as_deref(),
                     dest.as_deref(),
                     dport.as_deref(),
                     proto.as_deref(),
+                    r#macro.as_deref(),
                     comment.as_deref(),
                 )
                 .await
@@ -240,10 +256,12 @@ pub async fn run(
                 action,
                 r#type,
                 enable,
+                iface,
                 source,
                 dest,
                 dport,
                 proto,
+                r#macro,
                 comment,
             } => {
                 let n = require_node(node.as_deref(), global_node)?;
@@ -254,10 +272,12 @@ pub async fn run(
                     &action,
                     &r#type,
                     enable,
+                    iface.as_deref(),
                     source.as_deref(),
                     dest.as_deref(),
                     dport.as_deref(),
                     proto.as_deref(),
+                    r#macro.as_deref(),
                     comment.as_deref(),
                 )
                 .await
@@ -336,10 +356,12 @@ fn build_rule_params(
     action: &str,
     rule_type: &str,
     enable: Option<bool>,
+    iface: Option<&str>,
     source: Option<&str>,
     dest: Option<&str>,
     dport: Option<&str>,
     proto: Option<&str>,
+    r#macro: Option<&str>,
     comment: Option<&str>,
 ) -> Vec<(String, String)> {
     let mut params: Vec<(String, String)> = vec![
@@ -349,6 +371,9 @@ fn build_rule_params(
     if let Some(e) = enable {
         params.push(("enable".to_string(), if e { "1" } else { "0" }.to_string()));
     }
+    if let Some(i) = iface {
+        params.push(("iface".to_string(), i.to_string()));
+    }
     if let Some(s) = source {
         params.push(("source".to_string(), s.to_string()));
     }
@@ -361,6 +386,9 @@ fn build_rule_params(
     if let Some(p) = proto {
         params.push(("proto".to_string(), p.to_string()));
     }
+    if let Some(m) = r#macro {
+        params.push(("macro".to_string(), m.to_string()));
+    }
     if let Some(c) = comment {
         params.push(("comment".to_string(), c.to_string()));
     }
@@ -391,14 +419,16 @@ async fn cluster_add_rule(
     action: &str,
     rule_type: &str,
     enable: Option<bool>,
+    iface: Option<&str>,
     source: Option<&str>,
     dest: Option<&str>,
     dport: Option<&str>,
     proto: Option<&str>,
+    r#macro: Option<&str>,
     comment: Option<&str>,
 ) -> Result<(), Error> {
     let params = build_rule_params(
-        action, rule_type, enable, source, dest, dport, proto, comment,
+        action, rule_type, enable, iface, source, dest, dport, proto, r#macro, comment,
     );
     let param_refs: Vec<(&str, &str)> = params
         .iter()
@@ -459,14 +489,16 @@ async fn node_add_rule(
     action: &str,
     rule_type: &str,
     enable: Option<bool>,
+    iface: Option<&str>,
     source: Option<&str>,
     dest: Option<&str>,
     dport: Option<&str>,
     proto: Option<&str>,
+    r#macro: Option<&str>,
     comment: Option<&str>,
 ) -> Result<(), Error> {
     let params = build_rule_params(
-        action, rule_type, enable, source, dest, dport, proto, comment,
+        action, rule_type, enable, iface, source, dest, dport, proto, r#macro, comment,
     );
     let param_refs: Vec<(&str, &str)> = params
         .iter()

{proxctl-0.2.0 → proxctl-0.2.2}/src/schema.rs RENAMED Viewed

@@ -381,6 +381,14 @@ fn build_metadata() -> HashMap<&'static str, CommandMeta> {
     meta!("ceph pool create", mutating: true, idempotent: false);
     meta!("ceph mon list", output_fields: &["name", "host", "addr"]);
+    // Apply
+    meta!("apply", mutating: true, idempotent: true, output_fields: &["kind", "name", "vmid", "action", "changes", "status", "error"]);
+    // Export
+    meta!("export vm", output_fields: &["kind", "name", "vmid", "node", "state", "config"]);
+    meta!("export container", output_fields: &["kind", "name", "vmid", "node", "state", "config"]);
+    meta!("export firewall", output_fields: &["kind", "scope", "target", "config"]);
     // API passthrough
     meta!("api get", output_fields: &[]);
     meta!("api post", mutating: true, idempotent: false);

proxctl-0.2.0/.pre-commit-config.yaml DELETED Viewed

@@ -1,31 +0,0 @@
-repos:
-  - repo: https://github.com/pre-commit/pre-commit-hooks
-    rev: v4.5.0
-    hooks:
-      - id: trailing-whitespace
-      - id: end-of-file-fixer
-      - id: check-added-large-files
-  - repo: local
-    hooks:
-      - id: cargo-fmt
-        name: cargo fmt
-        entry: cargo fmt -- --check
-        language: system
-        types: [rust]
-        pass_filenames: false
-      - id: cargo-clippy
-        name: cargo clippy
-        entry: cargo clippy -- -D warnings
-        language: system
-        types: [rust]
-        pass_filenames: false
-      - id: cargo-test
-        name: cargo test
-        entry: cargo test
-        language: system
-        types: [rust]
-        pass_filenames: false
-        stages: [pre-push]