Fix build

Upgrade go-provider for panic fix
Fix ECR auth
2024-03-29 15:43:29 -07:00 · 2024-03-29 15:37:14 -07:00 · 2024-03-29 15:35:50 -07:00 · 2024-03-29 11:22:08 -07:00 · 2024-03-28 10:52:17 -07:00 · 2024-03-27 15:27:07 -07:00
402 changed files with 66219 additions and 4355 deletions
--- a/.gitattributes
+++ b/.gitattributes
@@ -0,0 +1,2 @@
 sdk/**/* linguist-generated=true
 provider/internal/mock*.go linguist-generated=true
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -0,0 +1,15 @@
 version: 2
 updates:
  - package-ecosystem: gomod
    directory: /
    schedule:
      interval: daily
    groups:
      pulumi:
        patterns:
          - "github.com/pulumi/*"
        exclude-patterns:
          - "k8s.io/utils"
    labels:
      - dependencies
      - impact/no-changelog-required
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -0,0 +1,572 @@
 # WARNING: This file is autogenerated - changes will be overwritten if not made via https://github.com/pulumi/ci-mgmt
 name: build
 on:
  push:
    branches:
    - master
    - main
    - feature-**
    paths-ignore:
    - CHANGELOG.md
    tags-ignore:
    - v*
    - sdk/*
    - "**"
  workflow_dispatch: {}
 env:
  GITHUB_TOKEN: ${{ secrets.PULUMI_BOT_TOKEN }}
  PROVIDER: dockerbuild
  PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }}
  PULUMI_LOCAL_NUGET: ${{ github.workspace }}/nuget
  NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
  NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
  NUGET_PUBLISH_KEY: ${{ secrets.NUGET_PUBLISH_KEY }}
  PYPI_USERNAME: __token__
  PYPI_PASSWORD: ${{ secrets.PYPI_API_TOKEN }}
  TRAVIS_OS_NAME: linux
  SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }}
  PULUMI_GO_DEP_ROOT: ${{ github.workspace }}/..
  PUBLISH_REPO_USERNAME: ${{ secrets.OSSRH_USERNAME }}
  PUBLISH_REPO_PASSWORD: ${{ secrets.OSSRH_PASSWORD }}
  SIGNING_KEY_ID: ${{ secrets.JAVA_SIGNING_KEY_ID }}
  SIGNING_KEY: ${{ secrets.JAVA_SIGNING_KEY }}
  SIGNING_PASSWORD: ${{ secrets.JAVA_SIGNING_PASSWORD }}
  GOVERSION: 1.21.x
  NODEVERSION: 16.x
  PYTHONVERSION: "3.11"
  DOTNETVERSION: |
    6.0.x
    3.1.301
  JAVAVERSION: "11"
  AWS_REGION: us-west-2
  PULUMI_API: https://api.pulumi-staging.io
  ARM_CLIENT_ID: 30e520fa-12b4-4e21-b473-9426c5ac2e1e
  ARM_SUBSCRIPTION_ID: 0282681f-7a9e-424b-80b2-96babd57a8a1
  ARM_TENANT_ID: 706143bc-e1d4-4593-aee2-c9dc60ab9be7
  ARM_CLIENT_SECRET: ${{ secrets.ARM_CLIENT_SECRET }}
  AZURE_LOCATION: westus
  DIGITALOCEAN_TOKEN: ${{ secrets.DIGITALOCEAN_TOKEN }}
  GOLANGCI_LINT_TIMEOUT: 10m
  GOOGLE_CI_SERVICE_ACCOUNT_EMAIL: pulumi-ci@pulumi-ci-gcp-provider.iam.gserviceaccount.com
  GOOGLE_CI_WORKLOAD_IDENTITY_POOL: pulumi-ci
  GOOGLE_CI_WORKLOAD_IDENTITY_PROVIDER: pulumi-ci
  GOOGLE_PROJECT: pulumi-ci-gcp-provider
  GOOGLE_PROJECT_NUMBER: 895284651812
  GOOGLE_REGION: us-central1
  GOOGLE_ZONE: us-central1-a
  DOCKER_HUB_PASSWORD: ${{ secrets.DOCKER_HUB_PASSWORD }}
 jobs:
  prerequisites:
    runs-on: ubuntu-latest
    name: prerequisites
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - if: github.event_name == 'pull_request'
      name: Install Schema Tools
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/schema-tools
    - name: Build codegen binaries
      run: make codegen
    - name: Build Schema
      run: make generate_schema
    - if: github.event_name == 'pull_request'
      name: Check Schema is Valid
      run: >-
        echo 'SCHEMA_CHANGES<<EOF' >> $GITHUB_ENV
        schema-tools compare -p ${{ env.PROVIDER }} -o ${{ github.event.repository.default_branch }} -n --local-path=provider/cmd/pulumi-resource-${{ env.PROVIDER }}/schema.json >> $GITHUB_ENV
        echo 'EOF' >> $GITHUB_ENV
    - if: github.event_name == 'pull_request'
      name: Comment on PR with Details of Schema Check
      uses: thollander/actions-comment-pull-request@v2
      with:
        message: |
          ${{ env.SCHEMA_CHANGES }}
        comment_tag: schemaCheck
        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
    - if: contains(env.SCHEMA_CHANGES, 'Looking good! No breaking changes found.') &&
        github.actor == 'pulumi-bot'
      name: Add label if no breaking changes
      uses: actions-ecosystem/action-add-labels@v1.1.0
      with:
        labels: impact/no-changelog-required
        number: ${{ github.event.issue.number }}
        github_token: ${{ secrets.GITHUB_TOKEN }}
    - name: Build Provider
      run: make provider
    - name: Check worktree clean
      run: ./ci-scripts/ci/check-worktree-is-clean
    - run: git status --porcelain
    - name: Tar provider binaries
      run: tar -zcf ${{ github.workspace }}/bin/provider.tar.gz -C ${{
        github.workspace}}/bin/ pulumi-resource-${{ env.PROVIDER }}
        pulumi-gen-${{ env.PROVIDER}}
    - name: Upload artifacts
      uses: actions/upload-artifact@v4
      with:
        name: pulumi-${{ env.PROVIDER }}-provider.tar.gz
        path: ${{ github.workspace }}/bin/provider.tar.gz
    - name: Test Provider Library
      run: make test_provider
    - name: Upload coverage reports to Codecov
      uses: codecov/codecov-action@v4
      env:
        CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }}
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure in building provider prerequisites
        fields: repo,commit,author,action
        status: ${{ job.status }}
  build_sdks:
    needs: prerequisites
    runs-on: pulumi-ubuntu-8core
    strategy:
      fail-fast: true
      matrix:
        language:
        - nodejs
        - python
        - dotnet
        - go
        - java
    name: build_sdks
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Setup Node
      uses: actions/setup-node@v4
      with:
        node-version: ${{ env.NODEVERSION }}
        registry-url: https://registry.npmjs.org
    - name: Setup DotNet
      uses: actions/setup-dotnet@v4
      with:
        dotnet-version: ${{ env.DOTNETVERSION }}
    - name: Setup Python
      uses: actions/setup-python@v5
      with:
        python-version: ${{ env.PYTHONVERSION }}
    - name: Setup Java
      uses: actions/setup-java@v4
      with:
        java-version: ${{ env.JAVAVERSION }}
        distribution: temurin
        cache: gradle
    - name: Setup Gradle
      uses: gradle/gradle-build-action@v3
      with:
        gradle-version: "7.6"
    - name: Download provider + tfgen binaries
      uses: actions/download-artifact@v4
      with:
        name: pulumi-${{ env.PROVIDER }}-provider.tar.gz
        path: ${{ github.workspace }}/bin
    - name: UnTar provider binaries
      run: tar -zxf ${{ github.workspace }}/bin/provider.tar.gz -C ${{
        github.workspace}}/bin
    - name: Restore Binary Permissions
      run: find ${{ github.workspace }} -name "pulumi-*-${{ env.PROVIDER }}" -print
        -exec chmod +x {} \;
    - name: Generate SDK
      run: make generate_${{ matrix.language }}
    - name: Build SDK
      run: make build_${{ matrix.language }}
    - name: Check worktree clean
      run: ./ci-scripts/ci/check-worktree-is-clean
    - run: git status --porcelain
    - name: Tar SDK folder
      run: tar -zcf sdk/${{ matrix.language }}.tar.gz -C sdk/${{ matrix.language }} .
    - name: Upload artifacts
      uses: actions/upload-artifact@v4
      with:
        name: ${{ matrix.language  }}-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/${{ matrix.language }}.tar.gz
        retention-days: 30
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure while building SDKs
        fields: repo,commit,author,action
        status: ${{ job.status }}
  test:
    runs-on: pulumi-ubuntu-8core
    needs:
    - build_sdks
    strategy:
      fail-fast: true
      matrix:
        language:
        - nodejs
        - python
        - dotnet
        - go
        - java
    name: test
    permissions:
      contents: read
      id-token: write
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Setup Node
      uses: actions/setup-node@v4
      with:
        node-version: ${{ env.NODEVERSION }}
        registry-url: https://registry.npmjs.org
    - name: Setup DotNet
      uses: actions/setup-dotnet@v4
      with:
        dotnet-version: ${{ env.DOTNETVERSION }}
    - name: Setup Python
      uses: actions/setup-python@v5
      with:
        python-version: ${{ env.PYTHONVERSION }}
    - name: Setup Java
      uses: actions/setup-java@v4
      with:
        java-version: ${{ env.JAVAVERSION }}
        distribution: temurin
        cache: gradle
    - name: Setup Gradle
      uses: gradle/gradle-build-action@v3
      with:
        gradle-version: "7.6"
    - name: Download provider + tfgen binaries
      uses: actions/download-artifact@v4
      with:
        name: pulumi-${{ env.PROVIDER }}-provider.tar.gz
        path: ${{ github.workspace }}/bin
    - name: UnTar provider binaries
      run: tar -zxf ${{ github.workspace }}/bin/provider.tar.gz -C ${{
        github.workspace}}/bin
    - name: Restore Binary Permissions
      run: find ${{ github.workspace }} -name "pulumi-*-${{ env.PROVIDER }}" -print
        -exec chmod +x {} \;
    - name: Download SDK
      uses: actions/download-artifact@v4
      with:
        name: ${{ matrix.language }}-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/
    - name: UnTar SDK folder
      run: tar -zxf ${{ github.workspace}}/sdk/${{ matrix.language}}.tar.gz -C ${{
        github.workspace}}/sdk/${{ matrix.language}}
    - name: Update path
      run: echo "${{ github.workspace }}/bin" >> $GITHUB_PATH
    - name: Install Node dependencies
      run: yarn global add typescript
    - run: dotnet nuget add source ${{ github.workspace }}/nuget
    - name: Install Python deps
      run: |-
        pip3 install virtualenv==20.0.23
        pip3 install pipenv
    - name: Install dependencies
      run: make install_${{ matrix.language}}_sdk
    - name: Configure AWS Credentials
      uses: aws-actions/configure-aws-credentials@v4
      with:
        aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
        aws-region: ${{ env.AWS_REGION }}
        aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
        role-duration-seconds: 3600
        role-session-name: ${{ env.PROVIDER }}@githubActions
        role-to-assume: ${{ secrets.AWS_CI_ROLE_ARN }}
    - name: Authenticate to Google Cloud
      uses: google-github-actions/auth@v0
      with:
        workload_identity_provider: projects/${{ env.GOOGLE_PROJECT_NUMBER
          }}/locations/global/workloadIdentityPools/${{
          env.GOOGLE_CI_WORKLOAD_IDENTITY_POOL }}/providers/${{
          env.GOOGLE_CI_WORKLOAD_IDENTITY_PROVIDER }}
        service_account: ${{ env.GOOGLE_CI_SERVICE_ACCOUNT_EMAIL }}
    - name: Setup gcloud auth
      uses: google-github-actions/setup-gcloud@v2
      with:
        install_components: gke-gcloud-auth-plugin
    - name: Install gotestfmt
      uses: GoTestTools/gotestfmt-action@v2
      with:
        version: v2.5.0
        token: ${{ secrets.GITHUB_TOKEN }}
    - name: Run tests
      run: >-
        set -euo pipefail
        cd examples && go test -v -json -count=1 -cover -timeout 2h -tags=${{ matrix.language }} -parallel 4 . 2>&1 | tee /tmp/gotest.log | gotestfmt
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure in SDK tests
        fields: repo,commit,author,action
        status: ${{ job.status }}
  publish:
    runs-on: ubuntu-latest
    needs: test
    name: publish
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Clear GitHub Actions Ubuntu runner disk space
      uses: jlumbroso/free-disk-space@v1.3.1
      with:
        tool-cache: false
        dotnet: false
        android: true
        haskell: true
        swap-storage: true
        large-packages: false
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Configure AWS Credentials
      uses: aws-actions/configure-aws-credentials@v4
      with:
        aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
        aws-region: us-east-2
        aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
        role-duration-seconds: 7200
        role-session-name: ${{ env.PROVIDER }}@githubActions
        role-external-id: upload-pulumi-release
        role-to-assume: ${{ secrets.AWS_UPLOAD_ROLE_ARN }}
    - name: Set PreRelease Version
      run: echo "GORELEASER_CURRENT_TAG=v$(pulumictl get version --language generic)"
        >> $GITHUB_ENV
    - name: Run GoReleaser
      uses: goreleaser/goreleaser-action@v5
      with:
        args: -p 3 -f .goreleaser.prerelease.yml --clean --skip=validate --timeout 60m0s
        version: latest
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure in publishing binaries
        fields: repo,commit,author,action
        status: ${{ job.status }}
  publish_sdk:
    runs-on: ubuntu-latest
    needs: publish
    name: publish_sdk
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Setup Node
      uses: actions/setup-node@v4
      with:
        node-version: ${{ env.NODEVERSION }}
        registry-url: https://registry.npmjs.org
    - name: Setup DotNet
      uses: actions/setup-dotnet@v4
      with:
        dotnet-version: ${{ env.DOTNETVERSION }}
    - name: Setup Python
      uses: actions/setup-python@v5
      with:
        python-version: ${{ env.PYTHONVERSION }}
    - name: Download python SDK
      uses: actions/download-artifact@v4
      with:
        name: python-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/
    - name: Uncompress python SDK
      run: tar -zxf ${{github.workspace}}/sdk/python.tar.gz -C
        ${{github.workspace}}/sdk/python
    - name: Download dotnet SDK
      uses: actions/download-artifact@v4
      with:
        name: dotnet-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/
    - name: Uncompress dotnet SDK
      run: tar -zxf ${{github.workspace}}/sdk/dotnet.tar.gz -C
        ${{github.workspace}}/sdk/dotnet
    - name: Download nodejs SDK
      uses: actions/download-artifact@v4
      with:
        name: nodejs-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/
    - name: Uncompress nodejs SDK
      run: tar -zxf ${{github.workspace}}/sdk/nodejs.tar.gz -C
        ${{github.workspace}}/sdk/nodejs
    - name: Install Twine
      run: python -m pip install pip twine
    - name: Publish SDKs
      run: ./ci-scripts/ci/publish-tfgen-package ${{ github.workspace }}
      env:
        NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
        PYPI_PUBLISH_ARTIFACTS: all
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure in publishing SDK
        fields: repo,commit,author,action
        status: ${{ job.status }}
  publish_java_sdk:
    runs-on: ubuntu-latest
    continue-on-error: true
    needs: publish
    name: publish_java_sdk
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Setup Java
      uses: actions/setup-java@v4
      with:
        java-version: ${{ env.JAVAVERSION }}
        distribution: temurin
        cache: gradle
    - name: Setup Gradle
      uses: gradle/gradle-build-action@v3
      with:
        gradle-version: "7.6"
    - name: Download java SDK
      uses: actions/download-artifact@v4
      with:
        name: java-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/
    - name: Uncompress java SDK
      run: tar -zxf ${{github.workspace}}/sdk/java.tar.gz -C
        ${{github.workspace}}/sdk/java
    - name: Set PACKAGE_VERSION to Env
      run: echo "PACKAGE_VERSION=$(pulumictl get version --language generic)" >>
        $GITHUB_ENV
    - name: Publish Java SDK
      uses: gradle/gradle-build-action@v3
      with:
        arguments: publishToSonatype closeAndReleaseSonatypeStagingRepository
        build-root-directory: ./sdk/java
        gradle-version: 7.4.1
  lint:
    runs-on: ubuntu-latest
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
        ref: ${{ env.PR_COMMIT_SHA }}
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: golangci-lint provider pkg
      uses: golangci/golangci-lint-action@v4
      with:
        version: ${{ env.GOLANGCI_LINT_VERSION }}
        args: -c ../.golangci.yml --timeout ${{ env.GOLANGCI_LINT_TIMEOUT }}
        working-directory: provider
    name: lint
    if: github.event_name == 'repository_dispatch' ||
      github.event.pull_request.head.repo.full_name == github.repository
--- a/.github/workflows/command-dispatch.yml
+++ b/.github/workflows/command-dispatch.yml
@@ -0,0 +1,67 @@
 # WARNING: This file is autogenerated - changes will be overwritten if not made via https://github.com/pulumi/ci-mgmt
 name: command-dispatch
 on:
  issue_comment:
    types:
    - created
    - edited
 env:
  GITHUB_TOKEN: ${{ secrets.PULUMI_BOT_TOKEN }}
  PROVIDER: dockerbuild
  PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }}
  PULUMI_LOCAL_NUGET: ${{ github.workspace }}/nuget
  NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
  NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
  NUGET_PUBLISH_KEY: ${{ secrets.NUGET_PUBLISH_KEY }}
  PYPI_USERNAME: __token__
  PYPI_PASSWORD: ${{ secrets.PYPI_API_TOKEN }}
  TRAVIS_OS_NAME: linux
  SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }}
  PULUMI_GO_DEP_ROOT: ${{ github.workspace }}/..
  PUBLISH_REPO_USERNAME: ${{ secrets.OSSRH_USERNAME }}
  PUBLISH_REPO_PASSWORD: ${{ secrets.OSSRH_PASSWORD }}
  SIGNING_KEY_ID: ${{ secrets.JAVA_SIGNING_KEY_ID }}
  SIGNING_KEY: ${{ secrets.JAVA_SIGNING_KEY }}
  SIGNING_PASSWORD: ${{ secrets.JAVA_SIGNING_PASSWORD }}
  GOVERSION: 1.21.x
  NODEVERSION: 16.x
  PYTHONVERSION: "3.11"
  DOTNETVERSION: |
    6.0.x
    3.1.301
  JAVAVERSION: "11"
  AWS_REGION: us-west-2
  PULUMI_API: https://api.pulumi-staging.io
  ARM_CLIENT_ID: 30e520fa-12b4-4e21-b473-9426c5ac2e1e
  ARM_SUBSCRIPTION_ID: 0282681f-7a9e-424b-80b2-96babd57a8a1
  ARM_TENANT_ID: 706143bc-e1d4-4593-aee2-c9dc60ab9be7
  ARM_CLIENT_SECRET: ${{ secrets.ARM_CLIENT_SECRET }}
  AZURE_LOCATION: westus
  DIGITALOCEAN_TOKEN: ${{ secrets.DIGITALOCEAN_TOKEN }}
  GOOGLE_CI_SERVICE_ACCOUNT_EMAIL: pulumi-ci@pulumi-ci-gcp-provider.iam.gserviceaccount.com
  GOOGLE_CI_WORKLOAD_IDENTITY_POOL: pulumi-ci
  GOOGLE_CI_WORKLOAD_IDENTITY_PROVIDER: pulumi-ci
  GOOGLE_PROJECT: pulumi-ci-gcp-provider
  GOOGLE_PROJECT_NUMBER: 895284651812
  GOOGLE_REGION: us-central1
  GOOGLE_ZONE: us-central1-a
  DOCKER_HUB_PASSWORD: ${{ secrets.DOCKER_HUB_PASSWORD }}
 jobs:
  command-dispatch-for-testing:
    runs-on: ubuntu-latest
    name: command-dispatch-for-testing
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - uses: peter-evans/slash-command-dispatch@v2
      with:
        token: ${{ secrets.PULUMI_BOT_TOKEN }}
        reaction-token: ${{ secrets.GITHUB_TOKEN }}
        commands: run-acceptance-tests
        permission: write
        issue-type: pull-request
        repository: pulumi/pulumi-dockerbuild
    if: ${{ github.event.issue.pull_request }}
--- a/.github/workflows/makefile.yaml
+++ b/.github/workflows/makefile.yaml
@@ -1,55 +0,0 @@
 name: Makefile
 on:
  workflow_dispatch:
  push:
    branches:
      - main
  pull_request:
    branches:
      - main
  schedule:
    - cron: "0 0 * * *"
 jobs:
  build:
    runs-on: ubuntu-latest
    container:
      image: docker://ghcr.io/pulumi/devcontainer:latest
      options: --user root
    permissions:
      contents: read
      packages: read
      actions: read
    steps:
      - name: Checkout repository
        uses: actions/checkout@v4
        id: git
        with:
          submodules: "recursive"
      - name: Unshallow clone for tags
        id: tags
        run: |
          sudo chown -R $(whoami) /__w/pulumi-docker-native/pulumi-docker-native
          git config --global --add safe.directory /__w/pulumi-docker-native/pulumi-docker-native
          git fetch --prune --unshallow --tags
      - name: Build
        id: build
        run: |
          make build
      - name: Install
        id: install
        run: |
          set -ex
          make install
      - name: PulumiUp
        id: up
        run: make up
      - name: PulumiDown
        id: down
        run: make down
      - name: Generate multi-language examples from yaml IaC program
        id: examples
        run: |
          set -ex
          make gen_examples
--- a/.github/workflows/prerelease.yml
+++ b/.github/workflows/prerelease.yml
@@ -0,0 +1,541 @@
 # WARNING: This file is autogenerated - changes will be overwritten if not made via https://github.com/pulumi/ci-mgmt
 name: prerelease
 on:
  push:
    tags:
    - v*.*.*-**
 env:
  GITHUB_TOKEN: ${{ secrets.PULUMI_BOT_TOKEN }}
  PROVIDER: dockerbuild
  PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }}
  PULUMI_LOCAL_NUGET: ${{ github.workspace }}/nuget
  NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
  NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
  NUGET_PUBLISH_KEY: ${{ secrets.NUGET_PUBLISH_KEY }}
  PYPI_USERNAME: __token__
  PYPI_PASSWORD: ${{ secrets.PYPI_API_TOKEN }}
  TRAVIS_OS_NAME: linux
  SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }}
  PULUMI_GO_DEP_ROOT: ${{ github.workspace }}/..
  PUBLISH_REPO_USERNAME: ${{ secrets.OSSRH_USERNAME }}
  PUBLISH_REPO_PASSWORD: ${{ secrets.OSSRH_PASSWORD }}
  SIGNING_KEY_ID: ${{ secrets.JAVA_SIGNING_KEY_ID }}
  SIGNING_KEY: ${{ secrets.JAVA_SIGNING_KEY }}
  SIGNING_PASSWORD: ${{ secrets.JAVA_SIGNING_PASSWORD }}
  GOVERSION: 1.21.x
  NODEVERSION: 16.x
  PYTHONVERSION: "3.11"
  DOTNETVERSION: |
    6.0.x
    3.1.301
  JAVAVERSION: "11"
  AWS_REGION: us-west-2
  PULUMI_API: https://api.pulumi-staging.io
  ARM_CLIENT_ID: 30e520fa-12b4-4e21-b473-9426c5ac2e1e
  ARM_SUBSCRIPTION_ID: 0282681f-7a9e-424b-80b2-96babd57a8a1
  ARM_TENANT_ID: 706143bc-e1d4-4593-aee2-c9dc60ab9be7
  ARM_CLIENT_SECRET: ${{ secrets.ARM_CLIENT_SECRET }}
  AZURE_LOCATION: westus
  DIGITALOCEAN_TOKEN: ${{ secrets.DIGITALOCEAN_TOKEN }}
  GOOGLE_CI_SERVICE_ACCOUNT_EMAIL: pulumi-ci@pulumi-ci-gcp-provider.iam.gserviceaccount.com
  GOOGLE_CI_WORKLOAD_IDENTITY_POOL: pulumi-ci
  GOOGLE_CI_WORKLOAD_IDENTITY_PROVIDER: pulumi-ci
  GOOGLE_PROJECT: pulumi-ci-gcp-provider
  GOOGLE_PROJECT_NUMBER: 895284651812
  GOOGLE_REGION: us-central1
  GOOGLE_ZONE: us-central1-a
  DOCKER_HUB_PASSWORD: ${{ secrets.DOCKER_HUB_PASSWORD }}
  IS_PRERELEASE: true
 jobs:
  prerequisites:
    runs-on: ubuntu-latest
    name: prerequisites
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - if: github.event_name == 'pull_request'
      name: Install Schema Tools
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/schema-tools
    - name: Build codegen binaries
      run: make codegen
    - name: Build Schema
      run: make generate_schema
    - if: github.event_name == 'pull_request'
      name: Check Schema is Valid
      run: >-
        echo 'SCHEMA_CHANGES<<EOF' >> $GITHUB_ENV
        schema-tools compare -p ${{ env.PROVIDER }} -o ${{ github.event.repository.default_branch }} -n --local-path=provider/cmd/pulumi-resource-${{ env.PROVIDER }}/schema.json >> $GITHUB_ENV
        echo 'EOF' >> $GITHUB_ENV
    - if: github.event_name == 'pull_request'
      name: Comment on PR with Details of Schema Check
      uses: thollander/actions-comment-pull-request@v2
      with:
        message: |
          ${{ env.SCHEMA_CHANGES }}
        comment_tag: schemaCheck
        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
    - if: contains(env.SCHEMA_CHANGES, 'Looking good! No breaking changes found.') &&
        github.actor == 'pulumi-bot'
      name: Add label if no breaking changes
      uses: actions-ecosystem/action-add-labels@v1.1.0
      with:
        labels: impact/no-changelog-required
        number: ${{ github.event.issue.number }}
        github_token: ${{ secrets.GITHUB_TOKEN }}
    - name: Build Provider
      run: make provider
    - name: Check worktree clean
      run: ./ci-scripts/ci/check-worktree-is-clean
    - run: git status --porcelain
    - name: Tar provider binaries
      run: tar -zcf ${{ github.workspace }}/bin/provider.tar.gz -C ${{
        github.workspace}}/bin/ pulumi-resource-${{ env.PROVIDER }}
        pulumi-gen-${{ env.PROVIDER}}
    - name: Upload artifacts
      uses: actions/upload-artifact@v4
      with:
        name: pulumi-${{ env.PROVIDER }}-provider.tar.gz
        path: ${{ github.workspace }}/bin/provider.tar.gz
    - name: Test Provider Library
      run: make test_provider
    - name: Upload coverage reports to Codecov
      uses: codecov/codecov-action@v4
      env:
        CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }}
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure in building provider prerequisites
        fields: repo,commit,author,action
        status: ${{ job.status }}
  build_sdks:
    needs: prerequisites
    runs-on: pulumi-ubuntu-8core
    strategy:
      fail-fast: true
      matrix:
        language:
        - nodejs
        - python
        - dotnet
        - go
        - java
    name: build_sdks
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Setup Node
      uses: actions/setup-node@v4
      with:
        node-version: ${{ env.NODEVERSION }}
        registry-url: https://registry.npmjs.org
    - name: Setup DotNet
      uses: actions/setup-dotnet@v4
      with:
        dotnet-version: ${{ env.DOTNETVERSION }}
    - name: Setup Python
      uses: actions/setup-python@v5
      with:
        python-version: ${{ env.PYTHONVERSION }}
    - name: Setup Java
      uses: actions/setup-java@v4
      with:
        java-version: ${{ env.JAVAVERSION }}
        distribution: temurin
        cache: gradle
    - name: Setup Gradle
      uses: gradle/gradle-build-action@v3
      with:
        gradle-version: "7.6"
    - name: Download provider + tfgen binaries
      uses: actions/download-artifact@v4
      with:
        name: pulumi-${{ env.PROVIDER }}-provider.tar.gz
        path: ${{ github.workspace }}/bin
    - name: UnTar provider binaries
      run: tar -zxf ${{ github.workspace }}/bin/provider.tar.gz -C ${{
        github.workspace}}/bin
    - name: Restore Binary Permissions
      run: find ${{ github.workspace }} -name "pulumi-*-${{ env.PROVIDER }}" -print
        -exec chmod +x {} \;
    - name: Generate SDK
      run: make generate_${{ matrix.language }}
    - name: Build SDK
      run: make build_${{ matrix.language }}
    - name: Check worktree clean
      run: ./ci-scripts/ci/check-worktree-is-clean
    - run: git status --porcelain
    - name: Tar SDK folder
      run: tar -zcf sdk/${{ matrix.language }}.tar.gz -C sdk/${{ matrix.language }} .
    - name: Upload artifacts
      uses: actions/upload-artifact@v4
      with:
        name: ${{ matrix.language  }}-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/${{ matrix.language }}.tar.gz
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure while building SDKs
        fields: repo,commit,author,action
        status: ${{ job.status }}
  test:
    runs-on: pulumi-ubuntu-8core
    needs:
    - build_sdks
    strategy:
      fail-fast: true
      matrix:
        language:
        - nodejs
        - python
        - dotnet
        - go
        - java
    name: test
    permissions:
      contents: read
      id-token: write
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Setup Node
      uses: actions/setup-node@v4
      with:
        node-version: ${{ env.NODEVERSION }}
        registry-url: https://registry.npmjs.org
    - name: Setup DotNet
      uses: actions/setup-dotnet@v4
      with:
        dotnet-version: ${{ env.DOTNETVERSION }}
    - name: Setup Python
      uses: actions/setup-python@v5
      with:
        python-version: ${{ env.PYTHONVERSION }}
    - name: Setup Java
      uses: actions/setup-java@v4
      with:
        java-version: ${{ env.JAVAVERSION }}
        distribution: temurin
        cache: gradle
    - name: Setup Gradle
      uses: gradle/gradle-build-action@v3
      with:
        gradle-version: "7.6"
    - name: Download provider + tfgen binaries
      uses: actions/download-artifact@v4
      with:
        name: pulumi-${{ env.PROVIDER }}-provider.tar.gz
        path: ${{ github.workspace }}/bin
    - name: UnTar provider binaries
      run: tar -zxf ${{ github.workspace }}/bin/provider.tar.gz -C ${{
        github.workspace}}/bin
    - name: Restore Binary Permissions
      run: find ${{ github.workspace }} -name "pulumi-*-${{ env.PROVIDER }}" -print
        -exec chmod +x {} \;
    - name: Download SDK
      uses: actions/download-artifact@v4
      with:
        name: ${{ matrix.language }}-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/
    - name: UnTar SDK folder
      run: tar -zxf ${{ github.workspace}}/sdk/${{ matrix.language}}.tar.gz -C ${{
        github.workspace}}/sdk/${{ matrix.language}}
    - name: Update path
      run: echo "${{ github.workspace }}/bin" >> $GITHUB_PATH
    - name: Install Node dependencies
      run: yarn global add typescript
    - run: dotnet nuget add source ${{ github.workspace }}/nuget
    - name: Install Python deps
      run: |-
        pip3 install virtualenv==20.0.23
        pip3 install pipenv
    - name: Install dependencies
      run: make install_${{ matrix.language}}_sdk
    - name: Configure AWS Credentials
      uses: aws-actions/configure-aws-credentials@v4
      with:
        aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
        aws-region: ${{ env.AWS_REGION }}
        aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
        role-duration-seconds: 3600
        role-session-name: ${{ env.PROVIDER }}@githubActions
        role-to-assume: ${{ secrets.AWS_CI_ROLE_ARN }}
    - name: Authenticate to Google Cloud
      uses: google-github-actions/auth@v0
      with:
        workload_identity_provider: projects/${{ env.GOOGLE_PROJECT_NUMBER
          }}/locations/global/workloadIdentityPools/${{
          env.GOOGLE_CI_WORKLOAD_IDENTITY_POOL }}/providers/${{
          env.GOOGLE_CI_WORKLOAD_IDENTITY_PROVIDER }}
        service_account: ${{ env.GOOGLE_CI_SERVICE_ACCOUNT_EMAIL }}
    - name: Setup gcloud auth
      uses: google-github-actions/setup-gcloud@v2
      with:
        install_components: gke-gcloud-auth-plugin
    - name: Install gotestfmt
      uses: GoTestTools/gotestfmt-action@v2
      with:
        version: v2.5.0
        token: ${{ secrets.GITHUB_TOKEN }}
    - name: Run tests
      run: >-
        set -euo pipefail
        cd examples && go test -v -json -count=1 -cover -timeout 2h -tags=${{ matrix.language }} -parallel 4 . 2>&1 | tee /tmp/gotest.log | gotestfmt
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure in SDK tests
        fields: repo,commit,author,action
        status: ${{ job.status }}
  publish:
    runs-on: ubuntu-latest
    needs: test
    name: publish
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Clear GitHub Actions Ubuntu runner disk space
      uses: jlumbroso/free-disk-space@v1.3.1
      with:
        tool-cache: false
        dotnet: false
        android: true
        haskell: true
        swap-storage: true
        large-packages: false
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Configure AWS Credentials
      uses: aws-actions/configure-aws-credentials@v4
      with:
        aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
        aws-region: us-east-2
        aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
        role-duration-seconds: 7200
        role-session-name: ${{ env.PROVIDER }}@githubActions
        role-external-id: upload-pulumi-release
        role-to-assume: ${{ secrets.AWS_UPLOAD_ROLE_ARN }}
    - name: Set PreRelease Version
      run: echo "GORELEASER_CURRENT_TAG=v$(pulumictl get version --language generic)"
        >> $GITHUB_ENV
    - name: Run GoReleaser
      uses: goreleaser/goreleaser-action@v5
      with:
        args: -p 3 -f .goreleaser.prerelease.yml --clean --skip=validate --timeout 60m0s
        version: latest
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure in publishing binaries
        fields: repo,commit,author,action
        status: ${{ job.status }}
  publish_sdk:
    runs-on: ubuntu-latest
    needs: publish
    name: publish_sdk
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Setup Node
      uses: actions/setup-node@v4
      with:
        node-version: ${{ env.NODEVERSION }}
        registry-url: https://registry.npmjs.org
    - name: Setup DotNet
      uses: actions/setup-dotnet@v4
      with:
        dotnet-version: ${{ env.DOTNETVERSION }}
    - name: Setup Python
      uses: actions/setup-python@v5
      with:
        python-version: ${{ env.PYTHONVERSION }}
    - name: Download python SDK
      uses: actions/download-artifact@v4
      with:
        name: python-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/
    - name: Uncompress python SDK
      run: tar -zxf ${{github.workspace}}/sdk/python.tar.gz -C
        ${{github.workspace}}/sdk/python
    - name: Download dotnet SDK
      uses: actions/download-artifact@v4
      with:
        name: dotnet-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/
    - name: Uncompress dotnet SDK
      run: tar -zxf ${{github.workspace}}/sdk/dotnet.tar.gz -C
        ${{github.workspace}}/sdk/dotnet
    - name: Download nodejs SDK
      uses: actions/download-artifact@v4
      with:
        name: nodejs-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/
    - name: Uncompress nodejs SDK
      run: tar -zxf ${{github.workspace}}/sdk/nodejs.tar.gz -C
        ${{github.workspace}}/sdk/nodejs
    - name: Install Twine
      run: python -m pip install pip twine
    - name: Publish SDKs
      run: ./ci-scripts/ci/publish-tfgen-package ${{ github.workspace }}
      env:
        NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
        PYPI_PUBLISH_ARTIFACTS: all
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure in publishing SDK
        fields: repo,commit,author,action
        status: ${{ job.status }}
  publish_java_sdk:
    runs-on: ubuntu-latest
    continue-on-error: true
    needs: publish
    name: publish_java_sdk
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Setup Java
      uses: actions/setup-java@v4
      with:
        java-version: ${{ env.JAVAVERSION }}
        distribution: temurin
        cache: gradle
    - name: Setup Gradle
      uses: gradle/gradle-build-action@v3
      with:
        gradle-version: "7.6"
    - name: Download java SDK
      uses: actions/download-artifact@v4
      with:
        name: java-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/
    - name: Uncompress java SDK
      run: tar -zxf ${{github.workspace}}/sdk/java.tar.gz -C
        ${{github.workspace}}/sdk/java
    - name: Set PACKAGE_VERSION to Env
      run: echo "PACKAGE_VERSION=$(pulumictl get version --language generic)" >>
        $GITHUB_ENV
    - name: Publish Java SDK
      uses: gradle/gradle-build-action@v3
      with:
        arguments: publishToSonatype closeAndReleaseSonatypeStagingRepository
        build-root-directory: ./sdk/java
        gradle-version: 7.4.1
--- a/.github/workflows/pull-request.yml
+++ b/.github/workflows/pull-request.yml
@@ -0,0 +1,64 @@
 # WARNING: This file is autogenerated - changes will be overwritten if not made via https://github.com/pulumi/ci-mgmt
 name: pull-request
 on:
  pull_request_target: {}
 env:
  GITHUB_TOKEN: ${{ secrets.PULUMI_BOT_TOKEN }}
  PROVIDER: dockerbuild
  PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }}
  PULUMI_LOCAL_NUGET: ${{ github.workspace }}/nuget
  NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
  NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
  NUGET_PUBLISH_KEY: ${{ secrets.NUGET_PUBLISH_KEY }}
  PYPI_USERNAME: __token__
  PYPI_PASSWORD: ${{ secrets.PYPI_API_TOKEN }}
  TRAVIS_OS_NAME: linux
  SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }}
  PULUMI_GO_DEP_ROOT: ${{ github.workspace }}/..
  PUBLISH_REPO_USERNAME: ${{ secrets.OSSRH_USERNAME }}
  PUBLISH_REPO_PASSWORD: ${{ secrets.OSSRH_PASSWORD }}
  SIGNING_KEY_ID: ${{ secrets.JAVA_SIGNING_KEY_ID }}
  SIGNING_KEY: ${{ secrets.JAVA_SIGNING_KEY }}
  SIGNING_PASSWORD: ${{ secrets.JAVA_SIGNING_PASSWORD }}
  GOVERSION: 1.21.x
  NODEVERSION: 16.x
  PYTHONVERSION: "3.11"
  DOTNETVERSION: |
    6.0.x
    3.1.301
  JAVAVERSION: "11"
  AWS_REGION: us-west-2
  PULUMI_API: https://api.pulumi-staging.io
  ARM_CLIENT_ID: 30e520fa-12b4-4e21-b473-9426c5ac2e1e
  ARM_SUBSCRIPTION_ID: 0282681f-7a9e-424b-80b2-96babd57a8a1
  ARM_TENANT_ID: 706143bc-e1d4-4593-aee2-c9dc60ab9be7
  ARM_CLIENT_SECRET: ${{ secrets.ARM_CLIENT_SECRET }}
  AZURE_LOCATION: westus
  DIGITALOCEAN_TOKEN: ${{ secrets.DIGITALOCEAN_TOKEN }}
  GOOGLE_CI_SERVICE_ACCOUNT_EMAIL: pulumi-ci@pulumi-ci-gcp-provider.iam.gserviceaccount.com
  GOOGLE_CI_WORKLOAD_IDENTITY_POOL: pulumi-ci
  GOOGLE_CI_WORKLOAD_IDENTITY_PROVIDER: pulumi-ci
  GOOGLE_PROJECT: pulumi-ci-gcp-provider
  GOOGLE_PROJECT_NUMBER: 895284651812
  GOOGLE_REGION: us-central1
  GOOGLE_ZONE: us-central1-a
  DOCKER_HUB_PASSWORD: ${{ secrets.DOCKER_HUB_PASSWORD }}
 jobs:
  comment-on-pr:
    runs-on: ubuntu-latest
    name: comment-on-pr
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Comment PR
      uses: thollander/actions-comment-pull-request@v2
      with:
        message: >
          PR is now waiting for a maintainer to run the acceptance tests.
          **Note for the maintainer:** To run the acceptance tests, please comment */run-acceptance-tests* on the PR
        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
    if: github.event.pull_request.head.repo.full_name != github.repository
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -0,0 +1,571 @@
 # WARNING: This file is autogenerated - changes will be overwritten if not made via https://github.com/pulumi/ci-mgmt
 name: release
 on:
  push:
    tags:
    - v*.*.*
    - "!v*.*.*-**"
 env:
  GITHUB_TOKEN: ${{ secrets.PULUMI_BOT_TOKEN }}
  PROVIDER: dockerbuild
  PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }}
  PULUMI_LOCAL_NUGET: ${{ github.workspace }}/nuget
  NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
  NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
  NUGET_PUBLISH_KEY: ${{ secrets.NUGET_PUBLISH_KEY }}
  PYPI_USERNAME: __token__
  PYPI_PASSWORD: ${{ secrets.PYPI_API_TOKEN }}
  TRAVIS_OS_NAME: linux
  SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }}
  PULUMI_GO_DEP_ROOT: ${{ github.workspace }}/..
  PUBLISH_REPO_USERNAME: ${{ secrets.OSSRH_USERNAME }}
  PUBLISH_REPO_PASSWORD: ${{ secrets.OSSRH_PASSWORD }}
  SIGNING_KEY_ID: ${{ secrets.JAVA_SIGNING_KEY_ID }}
  SIGNING_KEY: ${{ secrets.JAVA_SIGNING_KEY }}
  SIGNING_PASSWORD: ${{ secrets.JAVA_SIGNING_PASSWORD }}
  GOVERSION: 1.21.x
  NODEVERSION: 16.x
  PYTHONVERSION: "3.11"
  DOTNETVERSION: |
    6.0.x
    3.1.301
  JAVAVERSION: "11"
  AWS_REGION: us-west-2
  PULUMI_API: https://api.pulumi-staging.io
  ARM_CLIENT_ID: 30e520fa-12b4-4e21-b473-9426c5ac2e1e
  ARM_SUBSCRIPTION_ID: 0282681f-7a9e-424b-80b2-96babd57a8a1
  ARM_TENANT_ID: 706143bc-e1d4-4593-aee2-c9dc60ab9be7
  ARM_CLIENT_SECRET: ${{ secrets.ARM_CLIENT_SECRET }}
  AZURE_LOCATION: westus
  DIGITALOCEAN_TOKEN: ${{ secrets.DIGITALOCEAN_TOKEN }}
  GOOGLE_CI_SERVICE_ACCOUNT_EMAIL: pulumi-ci@pulumi-ci-gcp-provider.iam.gserviceaccount.com
  GOOGLE_CI_WORKLOAD_IDENTITY_POOL: pulumi-ci
  GOOGLE_CI_WORKLOAD_IDENTITY_PROVIDER: pulumi-ci
  GOOGLE_PROJECT: pulumi-ci-gcp-provider
  GOOGLE_PROJECT_NUMBER: 895284651812
  GOOGLE_REGION: us-central1
  GOOGLE_ZONE: us-central1-a
  DOCKER_HUB_PASSWORD: ${{ secrets.DOCKER_HUB_PASSWORD }}
 jobs:
  prerequisites:
    runs-on: ubuntu-latest
    name: prerequisites
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - if: github.event_name == 'pull_request'
      name: Install Schema Tools
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/schema-tools
    - name: Build codegen binaries
      run: make codegen
    - name: Build Schema
      run: make generate_schema
    - if: github.event_name == 'pull_request'
      name: Check Schema is Valid
      run: >-
        echo 'SCHEMA_CHANGES<<EOF' >> $GITHUB_ENV
        schema-tools compare -p ${{ env.PROVIDER }} -o ${{ github.event.repository.default_branch }} -n --local-path=provider/cmd/pulumi-resource-${{ env.PROVIDER }}/schema.json >> $GITHUB_ENV
        echo 'EOF' >> $GITHUB_ENV
    - if: github.event_name == 'pull_request'
      name: Comment on PR with Details of Schema Check
      uses: thollander/actions-comment-pull-request@v2
      with:
        message: |
          ${{ env.SCHEMA_CHANGES }}
        comment_tag: schemaCheck
        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
    - if: contains(env.SCHEMA_CHANGES, 'Looking good! No breaking changes found.') &&
        github.actor == 'pulumi-bot'
      name: Add label if no breaking changes
      uses: actions-ecosystem/action-add-labels@v1.1.0
      with:
        labels: impact/no-changelog-required
        number: ${{ github.event.issue.number }}
        github_token: ${{ secrets.GITHUB_TOKEN }}
    - name: Build Provider
      run: make provider
    - name: Check worktree clean
      run: ./ci-scripts/ci/check-worktree-is-clean
    - run: git status --porcelain
    - name: Tar provider binaries
      run: tar -zcf ${{ github.workspace }}/bin/provider.tar.gz -C ${{
        github.workspace}}/bin/ pulumi-resource-${{ env.PROVIDER }}
        pulumi-gen-${{ env.PROVIDER}}
    - name: Upload artifacts
      uses: actions/upload-artifact@v4
      with:
        name: pulumi-${{ env.PROVIDER }}-provider.tar.gz
        path: ${{ github.workspace }}/bin/provider.tar.gz
    - name: Test Provider Library
      run: make test_provider
    - name: Upload coverage reports to Codecov
      uses: codecov/codecov-action@v4
      env:
        CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }}
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure in building provider prerequisites
        fields: repo,commit,author,action
        status: ${{ job.status }}
  build_sdks:
    needs: prerequisites
    runs-on: pulumi-ubuntu-8core
    strategy:
      fail-fast: true
      matrix:
        language:
        - nodejs
        - python
        - dotnet
        - go
        - java
    name: build_sdks
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Setup Node
      uses: actions/setup-node@v4
      with:
        node-version: ${{ env.NODEVERSION }}
        registry-url: https://registry.npmjs.org
    - name: Setup DotNet
      uses: actions/setup-dotnet@v4
      with:
        dotnet-version: ${{ env.DOTNETVERSION }}
    - name: Setup Python
      uses: actions/setup-python@v5
      with:
        python-version: ${{ env.PYTHONVERSION }}
    - name: Setup Java
      uses: actions/setup-java@v4
      with:
        java-version: ${{ env.JAVAVERSION }}
        distribution: temurin
        cache: gradle
    - name: Setup Gradle
      uses: gradle/gradle-build-action@v3
      with:
        gradle-version: "7.6"
    - name: Download provider + tfgen binaries
      uses: actions/download-artifact@v4
      with:
        name: pulumi-${{ env.PROVIDER }}-provider.tar.gz
        path: ${{ github.workspace }}/bin
    - name: UnTar provider binaries
      run: tar -zxf ${{ github.workspace }}/bin/provider.tar.gz -C ${{
        github.workspace}}/bin
    - name: Restore Binary Permissions
      run: find ${{ github.workspace }} -name "pulumi-*-${{ env.PROVIDER }}" -print
        -exec chmod +x {} \;
    - name: Generate SDK
      run: make generate_${{ matrix.language }}
    - name: Build SDK
      run: make build_${{ matrix.language }}
    - name: Check worktree clean
      run: ./ci-scripts/ci/check-worktree-is-clean
    - run: git status --porcelain
    - name: Tar SDK folder
      run: tar -zcf sdk/${{ matrix.language }}.tar.gz -C sdk/${{ matrix.language }} .
    - name: Upload artifacts
      uses: actions/upload-artifact@v4
      with:
        name: ${{ matrix.language  }}-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/${{ matrix.language }}.tar.gz
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure while building SDKs
        fields: repo,commit,author,action
        status: ${{ job.status }}
  test:
    runs-on: pulumi-ubuntu-8core
    needs:
    - build_sdks
    strategy:
      fail-fast: true
      matrix:
        language:
        - nodejs
        - python
        - dotnet
        - go
        - java
    name: test
    permissions:
      contents: read
      id-token: write
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Setup Node
      uses: actions/setup-node@v4
      with:
        node-version: ${{ env.NODEVERSION }}
        registry-url: https://registry.npmjs.org
    - name: Setup DotNet
      uses: actions/setup-dotnet@v4
      with:
        dotnet-version: ${{ env.DOTNETVERSION }}
    - name: Setup Python
      uses: actions/setup-python@v5
      with:
        python-version: ${{ env.PYTHONVERSION }}
    - name: Setup Java
      uses: actions/setup-java@v4
      with:
        java-version: ${{ env.JAVAVERSION }}
        distribution: temurin
        cache: gradle
    - name: Setup Gradle
      uses: gradle/gradle-build-action@v3
      with:
        gradle-version: "7.6"
    - name: Download provider + tfgen binaries
      uses: actions/download-artifact@v4
      with:
        name: pulumi-${{ env.PROVIDER }}-provider.tar.gz
        path: ${{ github.workspace }}/bin
    - name: UnTar provider binaries
      run: tar -zxf ${{ github.workspace }}/bin/provider.tar.gz -C ${{
        github.workspace}}/bin
    - name: Restore Binary Permissions
      run: find ${{ github.workspace }} -name "pulumi-*-${{ env.PROVIDER }}" -print
        -exec chmod +x {} \;
    - name: Download SDK
      uses: actions/download-artifact@v4
      with:
        name: ${{ matrix.language }}-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/
    - name: UnTar SDK folder
      run: tar -zxf ${{ github.workspace}}/sdk/${{ matrix.language}}.tar.gz -C ${{
        github.workspace}}/sdk/${{ matrix.language}}
    - name: Update path
      run: echo "${{ github.workspace }}/bin" >> $GITHUB_PATH
    - name: Install Node dependencies
      run: yarn global add typescript
    - run: dotnet nuget add source ${{ github.workspace }}/nuget
    - name: Install Python deps
      run: |-
        pip3 install virtualenv==20.0.23
        pip3 install pipenv
    - name: Install dependencies
      run: make install_${{ matrix.language}}_sdk
    - name: Configure AWS Credentials
      uses: aws-actions/configure-aws-credentials@v4
      with:
        aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
        aws-region: ${{ env.AWS_REGION }}
        aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
        role-duration-seconds: 3600
        role-session-name: ${{ env.PROVIDER }}@githubActions
        role-to-assume: ${{ secrets.AWS_CI_ROLE_ARN }}
    - name: Authenticate to Google Cloud
      uses: google-github-actions/auth@v0
      with:
        workload_identity_provider: projects/${{ env.GOOGLE_PROJECT_NUMBER
          }}/locations/global/workloadIdentityPools/${{
          env.GOOGLE_CI_WORKLOAD_IDENTITY_POOL }}/providers/${{
          env.GOOGLE_CI_WORKLOAD_IDENTITY_PROVIDER }}
        service_account: ${{ env.GOOGLE_CI_SERVICE_ACCOUNT_EMAIL }}
    - name: Setup gcloud auth
      uses: google-github-actions/setup-gcloud@v2
      with:
        install_components: gke-gcloud-auth-plugin
    - name: Install gotestfmt
      uses: GoTestTools/gotestfmt-action@v2
      with:
        version: v2.5.0
        token: ${{ secrets.GITHUB_TOKEN }}
    - name: Run tests
      run: >-
        set -euo pipefail
        cd examples && go test -v -json -count=1 -cover -timeout 2h -tags=${{ matrix.language }} -parallel 4 . 2>&1 | tee /tmp/gotest.log | gotestfmt
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure in SDK tests
        fields: repo,commit,author,action
        status: ${{ job.status }}
  publish:
    runs-on: ubuntu-latest
    needs: test
    name: publish
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Clear GitHub Actions Ubuntu runner disk space
      uses: jlumbroso/free-disk-space@v1.3.1
      with:
        tool-cache: false
        dotnet: false
        android: true
        haskell: true
        swap-storage: true
        large-packages: false
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Configure AWS Credentials
      uses: aws-actions/configure-aws-credentials@v4
      with:
        aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
        aws-region: us-east-2
        aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
        role-duration-seconds: 7200
        role-session-name: ${{ env.PROVIDER }}@githubActions
        role-external-id: upload-pulumi-release
        role-to-assume: ${{ secrets.AWS_UPLOAD_ROLE_ARN }}
    - name: Set PreRelease Version
      run: echo "GORELEASER_CURRENT_TAG=v$(pulumictl get version --language generic)"
        >> $GITHUB_ENV
    - name: Run GoReleaser
      uses: goreleaser/goreleaser-action@v5
      with:
        args: -p 3 release --clean --timeout 60m0s
        version: latest
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure in publishing binaries
        fields: repo,commit,author,action
        status: ${{ job.status }}
  publish_sdk:
    runs-on: ubuntu-latest
    needs: publish
    name: publish_sdks
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Setup Node
      uses: actions/setup-node@v4
      with:
        node-version: ${{ env.NODEVERSION }}
        registry-url: https://registry.npmjs.org
    - name: Setup DotNet
      uses: actions/setup-dotnet@v4
      with:
        dotnet-version: ${{ env.DOTNETVERSION }}
    - name: Setup Python
      uses: actions/setup-python@v5
      with:
        python-version: ${{ env.PYTHONVERSION }}
    - name: Download python SDK
      uses: actions/download-artifact@v4
      with:
        name: python-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/
    - name: Uncompress python SDK
      run: tar -zxf ${{github.workspace}}/sdk/python.tar.gz -C
        ${{github.workspace}}/sdk/python
    - name: Download dotnet SDK
      uses: actions/download-artifact@v4
      with:
        name: dotnet-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/
    - name: Uncompress dotnet SDK
      run: tar -zxf ${{github.workspace}}/sdk/dotnet.tar.gz -C
        ${{github.workspace}}/sdk/dotnet
    - name: Download nodejs SDK
      uses: actions/download-artifact@v4
      with:
        name: nodejs-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/
    - name: Uncompress nodejs SDK
      run: tar -zxf ${{github.workspace}}/sdk/nodejs.tar.gz -C
        ${{github.workspace}}/sdk/nodejs
    - name: Install Twine
      run: python -m pip install pip twine
    - name: Publish SDKs
      run: ./ci-scripts/ci/publish-tfgen-package ${{ github.workspace }}
      env:
        NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
        PYPI_PUBLISH_ARTIFACTS: all
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure in publishing SDK
        fields: repo,commit,author,action
        status: ${{ job.status }}
  publish_java_sdk:
    runs-on: ubuntu-latest
    continue-on-error: true
    needs: publish
    name: publish_java_sdk
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Setup Java
      uses: actions/setup-java@v4
      with:
        java-version: ${{ env.JAVAVERSION }}
        distribution: temurin
        cache: gradle
    - name: Setup Gradle
      uses: gradle/gradle-build-action@v3
      with:
        gradle-version: "7.6"
    - name: Download java SDK
      uses: actions/download-artifact@v4
      with:
        name: java-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/
    - name: Uncompress java SDK
      run: tar -zxf ${{github.workspace}}/sdk/java.tar.gz -C
        ${{github.workspace}}/sdk/java
    - name: Set PACKAGE_VERSION to Env
      run: echo "PACKAGE_VERSION=$(pulumictl get version --language generic)" >>
        $GITHUB_ENV
    - name: Publish Java SDK
      uses: gradle/gradle-build-action@v3
      with:
        arguments: publishToSonatype closeAndReleaseSonatypeStagingRepository
        build-root-directory: ./sdk/java
        gradle-version: 7.4.1
  tag_sdk:
    runs-on: ubuntu-latest
    needs: publish_sdk
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Add SDK version tag
      run: git tag sdk/v$(pulumictl get version --language generic) && git push origin
        sdk/v$(pulumictl get version --language generic)
    name: tag_sdk
  dispatch_docs_build:
    runs-on: ubuntu-latest
    needs: tag_sdk
    steps:
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Dispatch Event
      run: pulumictl create docs-build pulumi-${{ env.PROVIDER }}
        ${GITHUB_REF#refs/tags/}
      env:
        GITHUB_TOKEN: ${{ secrets.PULUMI_BOT_TOKEN }}
    name: dispatch_docs_build
--- a/.github/workflows/run-acceptance-tests.yml
+++ b/.github/workflows/run-acceptance-tests.yml
@@ -0,0 +1,422 @@
 # WARNING: This file is autogenerated - changes will be overwritten if not made via https://github.com/pulumi/ci-mgmt
 name: run-acceptance-tests
 on:
  repository_dispatch:
    types:
    - run-acceptance-tests-command
  pull_request:
    branches:
    - master
    - main
    paths-ignore:
    - CHANGELOG.md
  workflow_dispatch: {}
 env:
  GITHUB_TOKEN: ${{ secrets.PULUMI_BOT_TOKEN }}
  PROVIDER: dockerbuild
  PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }}
  PULUMI_LOCAL_NUGET: ${{ github.workspace }}/nuget
  NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
  NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
  NUGET_PUBLISH_KEY: ${{ secrets.NUGET_PUBLISH_KEY }}
  PYPI_USERNAME: __token__
  PYPI_PASSWORD: ${{ secrets.PYPI_API_TOKEN }}
  TRAVIS_OS_NAME: linux
  SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }}
  PULUMI_GO_DEP_ROOT: ${{ github.workspace }}/..
  PUBLISH_REPO_USERNAME: ${{ secrets.OSSRH_USERNAME }}
  PUBLISH_REPO_PASSWORD: ${{ secrets.OSSRH_PASSWORD }}
  SIGNING_KEY_ID: ${{ secrets.JAVA_SIGNING_KEY_ID }}
  SIGNING_KEY: ${{ secrets.JAVA_SIGNING_KEY }}
  SIGNING_PASSWORD: ${{ secrets.JAVA_SIGNING_PASSWORD }}
  GOVERSION: 1.21.x
  NODEVERSION: 16.x
  PYTHONVERSION: "3.11"
  DOTNETVERSION: |
    6.0.x
    3.1.301
  JAVAVERSION: "11"
  AWS_REGION: us-west-2
  PULUMI_API: https://api.pulumi-staging.io
  ARM_CLIENT_ID: 30e520fa-12b4-4e21-b473-9426c5ac2e1e
  ARM_SUBSCRIPTION_ID: 0282681f-7a9e-424b-80b2-96babd57a8a1
  ARM_TENANT_ID: 706143bc-e1d4-4593-aee2-c9dc60ab9be7
  ARM_CLIENT_SECRET: ${{ secrets.ARM_CLIENT_SECRET }}
  AZURE_LOCATION: westus
  DIGITALOCEAN_TOKEN: ${{ secrets.DIGITALOCEAN_TOKEN }}
  GOLANGCI_LINT_TIMEOUT: 10m
  GOOGLE_CI_SERVICE_ACCOUNT_EMAIL: pulumi-ci@pulumi-ci-gcp-provider.iam.gserviceaccount.com
  GOOGLE_CI_WORKLOAD_IDENTITY_POOL: pulumi-ci
  GOOGLE_CI_WORKLOAD_IDENTITY_PROVIDER: pulumi-ci
  GOOGLE_PROJECT: pulumi-ci-gcp-provider
  GOOGLE_PROJECT_NUMBER: 895284651812
  GOOGLE_REGION: us-central1
  GOOGLE_ZONE: us-central1-a
  DOCKER_HUB_PASSWORD: ${{ secrets.DOCKER_HUB_PASSWORD }}
  PR_COMMIT_SHA: ${{ github.event.client_payload.pull_request.head.sha }}
 jobs:
  comment-notification:
    runs-on: ubuntu-latest
    name: comment-notification
    steps:
    - name: Create URL to the run output
      id: vars
      run: echo
        run-url=https://github.com/$GITHUB_REPOSITORY/actions/runs/$GITHUB_RUN_ID
        >> "$GITHUB_OUTPUT"
    - name: Update with Result
      uses: peter-evans/create-or-update-comment@v1
      with:
        token: ${{ secrets.PULUMI_BOT_TOKEN }}
        repository: ${{ github.event.client_payload.github.payload.repository.full_name }}
        issue-number: ${{ github.event.client_payload.github.payload.issue.number }}
        body: "Please view the PR build: ${{ steps.vars.outputs.run-url }}"
    if: github.event_name == 'repository_dispatch'
  prerequisites:
    runs-on: ubuntu-latest
    name: prerequisites
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
        ref: ${{ env.PR_COMMIT_SHA }}
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - if: github.event_name == 'pull_request'
      name: Install Schema Tools
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/schema-tools
    - name: Build codegen binaries
      run: make codegen
    - name: Build Schema
      run: make generate_schema
    - if: github.event_name == 'pull_request'
      name: Check Schema is Valid
      run: >-
        echo 'SCHEMA_CHANGES<<EOF' >> $GITHUB_ENV
        schema-tools compare -p ${{ env.PROVIDER }} -o ${{ github.event.repository.default_branch }} -n --local-path=provider/cmd/pulumi-resource-${{ env.PROVIDER }}/schema.json >> $GITHUB_ENV
        echo 'EOF' >> $GITHUB_ENV
    - if: github.event_name == 'pull_request'
      name: Comment on PR with Details of Schema Check
      uses: thollander/actions-comment-pull-request@v2
      with:
        message: |
          ${{ env.SCHEMA_CHANGES }}
        comment_tag: schemaCheck
        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
    - if: contains(env.SCHEMA_CHANGES, 'Looking good! No breaking changes found.') &&
        github.actor == 'pulumi-bot'
      name: Add label if no breaking changes
      uses: actions-ecosystem/action-add-labels@v1.1.0
      with:
        labels: impact/no-changelog-required
        number: ${{ github.event.issue.number }}
        github_token: ${{ secrets.GITHUB_TOKEN }}
    - name: Build Provider
      run: make provider
    - name: Check worktree clean
      run: ./ci-scripts/ci/check-worktree-is-clean
    - run: git status --porcelain
    - name: Tar provider binaries
      run: tar -zcf ${{ github.workspace }}/bin/provider.tar.gz -C ${{
        github.workspace}}/bin/ pulumi-resource-${{ env.PROVIDER }}
        pulumi-gen-${{ env.PROVIDER}}
    - name: Upload artifacts
      uses: actions/upload-artifact@v4
      with:
        name: pulumi-${{ env.PROVIDER }}-provider.tar.gz
        path: ${{ github.workspace }}/bin/provider.tar.gz
    - name: Test Provider Library
      run: make test_provider
    - name: Upload coverage reports to Codecov
      uses: codecov/codecov-action@v4
      env:
        CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }}
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure in building provider prerequisites
        fields: repo,commit,author,action
        status: ${{ job.status }}
    if: github.event_name == 'repository_dispatch' ||
      github.event.pull_request.head.repo.full_name == github.repository
  build_sdks:
    needs: prerequisites
    runs-on: pulumi-ubuntu-8core
    strategy:
      fail-fast: true
      matrix:
        language:
        - nodejs
        - python
        - dotnet
        - go
        - java
    name: build_sdks
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
        ref: ${{ env.PR_COMMIT_SHA }}
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Setup Node
      uses: actions/setup-node@v4
      with:
        node-version: ${{ env.NODEVERSION }}
        registry-url: https://registry.npmjs.org
    - name: Setup DotNet
      uses: actions/setup-dotnet@v4
      with:
        dotnet-version: ${{ env.DOTNETVERSION }}
    - name: Setup Python
      uses: actions/setup-python@v5
      with:
        python-version: ${{ env.PYTHONVERSION }}
    - name: Setup Java
      uses: actions/setup-java@v4
      with:
        java-version: ${{ env.JAVAVERSION }}
        distribution: temurin
        cache: gradle
    - name: Setup Gradle
      uses: gradle/gradle-build-action@v3
      with:
        gradle-version: "7.6"
    - name: Download provider + tfgen binaries
      uses: actions/download-artifact@v4
      with:
        name: pulumi-${{ env.PROVIDER }}-provider.tar.gz
        path: ${{ github.workspace }}/bin
    - name: UnTar provider binaries
      run: tar -zxf ${{ github.workspace }}/bin/provider.tar.gz -C ${{
        github.workspace}}/bin
    - name: Restore Binary Permissions
      run: find ${{ github.workspace }} -name "pulumi-*-${{ env.PROVIDER }}" -print
        -exec chmod +x {} \;
    - name: Generate SDK
      run: make generate_${{ matrix.language }}
    - name: Build SDK
      run: make build_${{ matrix.language }}
    - name: Check worktree clean
      run: ./ci-scripts/ci/check-worktree-is-clean
    - run: git status --porcelain
    - name: Tar SDK folder
      run: tar -zcf sdk/${{ matrix.language }}.tar.gz -C sdk/${{ matrix.language }} .
    - name: Upload artifacts
      uses: actions/upload-artifact@v4
      with:
        name: ${{ matrix.language  }}-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/${{ matrix.language }}.tar.gz
        retention-days: 30
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure while building SDKs
        fields: repo,commit,author,action
        status: ${{ job.status }}
    if: github.event_name == 'repository_dispatch' ||
      github.event.pull_request.head.repo.full_name == github.repository
  test:
    runs-on: pulumi-ubuntu-8core
    needs:
    - build_sdks
    strategy:
      fail-fast: true
      matrix:
        language:
        - nodejs
        - python
        - dotnet
        - go
        - java
    name: test
    permissions:
      contents: read
      id-token: write
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
        ref: ${{ env.PR_COMMIT_SHA }}
    - name: Checkout Scripts Repo
      uses: actions/checkout@v4
      with:
        path: ci-scripts
        repository: pulumi/scripts
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Setup Node
      uses: actions/setup-node@v4
      with:
        node-version: ${{ env.NODEVERSION }}
        registry-url: https://registry.npmjs.org
    - name: Setup DotNet
      uses: actions/setup-dotnet@v4
      with:
        dotnet-version: ${{ env.DOTNETVERSION }}
    - name: Setup Python
      uses: actions/setup-python@v5
      with:
        python-version: ${{ env.PYTHONVERSION }}
    - name: Setup Java
      uses: actions/setup-java@v4
      with:
        java-version: ${{ env.JAVAVERSION }}
        distribution: temurin
        cache: gradle
    - name: Setup Gradle
      uses: gradle/gradle-build-action@v3
      with:
        gradle-version: "7.6"
    - name: Download provider + tfgen binaries
      uses: actions/download-artifact@v4
      with:
        name: pulumi-${{ env.PROVIDER }}-provider.tar.gz
        path: ${{ github.workspace }}/bin
    - name: UnTar provider binaries
      run: tar -zxf ${{ github.workspace }}/bin/provider.tar.gz -C ${{
        github.workspace}}/bin
    - name: Restore Binary Permissions
      run: find ${{ github.workspace }} -name "pulumi-*-${{ env.PROVIDER }}" -print
        -exec chmod +x {} \;
    - name: Download SDK
      uses: actions/download-artifact@v4
      with:
        name: ${{ matrix.language }}-sdk.tar.gz
        path: ${{ github.workspace}}/sdk/
    - name: UnTar SDK folder
      run: tar -zxf ${{ github.workspace}}/sdk/${{ matrix.language}}.tar.gz -C ${{
        github.workspace}}/sdk/${{ matrix.language}}
    - name: Update path
      run: echo "${{ github.workspace }}/bin" >> $GITHUB_PATH
    - name: Install Node dependencies
      run: yarn global add typescript
    - run: dotnet nuget add source ${{ github.workspace }}/nuget
    - name: Install Python deps
      run: |-
        pip3 install virtualenv==20.0.23
        pip3 install pipenv
    - name: Install dependencies
      run: make install_${{ matrix.language}}_sdk
    - name: Configure AWS Credentials
      uses: aws-actions/configure-aws-credentials@v4
      with:
        aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
        aws-region: ${{ env.AWS_REGION }}
        aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
        role-duration-seconds: 3600
        role-session-name: ${{ env.PROVIDER }}@githubActions
        role-to-assume: ${{ secrets.AWS_CI_ROLE_ARN }}
    - name: Authenticate to Google Cloud
      uses: google-github-actions/auth@v0
      with:
        workload_identity_provider: projects/${{ env.GOOGLE_PROJECT_NUMBER
          }}/locations/global/workloadIdentityPools/${{
          env.GOOGLE_CI_WORKLOAD_IDENTITY_POOL }}/providers/${{
          env.GOOGLE_CI_WORKLOAD_IDENTITY_PROVIDER }}
        service_account: ${{ env.GOOGLE_CI_SERVICE_ACCOUNT_EMAIL }}
    - name: Setup gcloud auth
      uses: google-github-actions/setup-gcloud@v2
      with:
        install_components: gke-gcloud-auth-plugin
    - name: Install gotestfmt
      uses: GoTestTools/gotestfmt-action@v2
      with:
        version: v2.5.0
        token: ${{ secrets.GITHUB_TOKEN }}
    - name: Run tests
      run: >-
        set -euo pipefail
        cd examples && go test -v -json -count=1 -cover -timeout 2h -tags=${{ matrix.language }} -parallel 4 . 2>&1 | tee /tmp/gotest.log | gotestfmt
    - if: failure() && github.event_name == 'push'
      name: Notify Slack
      uses: 8398a7/action-slack@v3
      with:
        author_name: Failure in SDK tests
        fields: repo,commit,author,action
        status: ${{ job.status }}
    if: github.event_name == 'repository_dispatch' ||
      github.event.pull_request.head.repo.full_name == github.repository
  sentinel:
    runs-on: ubuntu-latest
    name: sentinel
    steps:
    - name: Is workflow a success
      run: echo yes
    if: github.event_name == 'repository_dispatch' ||
      github.event.pull_request.head.repo.full_name == github.repository
    needs:
    - test
    - lint
  lint:
    runs-on: ubuntu-latest
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
        ref: ${{ env.PR_COMMIT_SHA }}
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: golangci-lint provider pkg
      uses: golangci/golangci-lint-action@v4
      with:
        version: ${{ env.GOLANGCI_LINT_VERSION }}
        args: -c ../.golangci.yml --timeout ${{ env.GOLANGCI_LINT_TIMEOUT }}
        working-directory: provider
    name: lint
    if: github.event_name == 'repository_dispatch' ||
      github.event.pull_request.head.repo.full_name == github.repository
--- a/.github/workflows/weekly-pulumi-update.yml
+++ b/.github/workflows/weekly-pulumi-update.yml
@@ -0,0 +1,137 @@
 # WARNING: This file is autogenerated - changes will be overwritten if not made via https://github.com/pulumi/ci-mgmt
 name: weekly-pulumi-update
 on:
  schedule:
  - cron: 35 12 * * 4
  workflow_dispatch: {}
 env:
  GITHUB_TOKEN: ${{ secrets.PULUMI_BOT_TOKEN }}
  PROVIDER: dockerbuild
  PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }}
  PULUMI_LOCAL_NUGET: ${{ github.workspace }}/nuget
  NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
  NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
  NUGET_PUBLISH_KEY: ${{ secrets.NUGET_PUBLISH_KEY }}
  PYPI_USERNAME: __token__
  PYPI_PASSWORD: ${{ secrets.PYPI_API_TOKEN }}
  TRAVIS_OS_NAME: linux
  SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }}
  PULUMI_GO_DEP_ROOT: ${{ github.workspace }}/..
  PUBLISH_REPO_USERNAME: ${{ secrets.OSSRH_USERNAME }}
  PUBLISH_REPO_PASSWORD: ${{ secrets.OSSRH_PASSWORD }}
  SIGNING_KEY_ID: ${{ secrets.JAVA_SIGNING_KEY_ID }}
  SIGNING_KEY: ${{ secrets.JAVA_SIGNING_KEY }}
  SIGNING_PASSWORD: ${{ secrets.JAVA_SIGNING_PASSWORD }}
  GOVERSION: 1.21.x
  NODEVERSION: 16.x
  PYTHONVERSION: "3.11"
  DOTNETVERSION: |
    6.0.x
    3.1.301
  JAVAVERSION: "11"
  AWS_REGION: us-west-2
  PULUMI_API: https://api.pulumi-staging.io
  ARM_CLIENT_ID: 30e520fa-12b4-4e21-b473-9426c5ac2e1e
  ARM_SUBSCRIPTION_ID: 0282681f-7a9e-424b-80b2-96babd57a8a1
  ARM_TENANT_ID: 706143bc-e1d4-4593-aee2-c9dc60ab9be7
  ARM_CLIENT_SECRET: ${{ secrets.ARM_CLIENT_SECRET }}
  AZURE_LOCATION: westus
  DIGITALOCEAN_TOKEN: ${{ secrets.DIGITALOCEAN_TOKEN }}
  GOOGLE_CI_SERVICE_ACCOUNT_EMAIL: pulumi-ci@pulumi-ci-gcp-provider.iam.gserviceaccount.com
  GOOGLE_CI_WORKLOAD_IDENTITY_POOL: pulumi-ci
  GOOGLE_CI_WORKLOAD_IDENTITY_PROVIDER: pulumi-ci
  GOOGLE_PROJECT: pulumi-ci-gcp-provider
  GOOGLE_PROJECT_NUMBER: 895284651812
  GOOGLE_REGION: us-central1
  GOOGLE_ZONE: us-central1-a
  DOCKER_HUB_PASSWORD: ${{ secrets.DOCKER_HUB_PASSWORD }}
 jobs:
  weekly-pulumi-update:
    runs-on: ubuntu-latest
    steps:
    - name: Checkout Repo
      uses: actions/checkout@v4
      with:
        lfs: true
    - name: Unshallow clone for tags
      run: git fetch --prune --unshallow --tags
    - name: Install Go
      uses: actions/setup-go@v5
      with:
        go-version: ${{ env.GOVERSION }}
    - name: Install pulumictl
      uses: jaxxstorm/action-install-gh-release@v1.11.0
      with:
        repo: pulumi/pulumictl
    - name: Install Pulumi CLI
      uses: pulumi/actions@v5
    - name: Setup DotNet
      uses: actions/setup-dotnet@v4
      with:
        dotnet-version: ${{ env.DOTNETVERSION }}
    - name: Setup Node
      uses: actions/setup-node@v4
      with:
        node-version: ${{ env.NODEVERSION }}
        registry-url: https://registry.npmjs.org
    - name: Setup Python
      uses: actions/setup-python@v5
      with:
        python-version: ${{ env.PYTHONVERSION }}
    - name: Update Pulumi/Pulumi
      id: gomod
      run: >-
        git config --local user.email 'bot@pulumi.com'
        git config --local user.name 'pulumi-bot'
        git checkout -b update-pulumi/${{ github.run_id }}-${{ github.run_number }}
        for MODFILE in $(find . -name go.mod); do pushd $(dirname $MODFILE); go get github.com/pulumi/pulumi/pkg/v3 github.com/pulumi/pulumi/sdk/v3; go mod tidy; popd; done
        git update-index -q --refresh
        if ! git diff-files --quiet; then echo changes=1 >> "$GITHUB_OUTPUT"; fi
    - name: Provider with Pulumi Upgrade
      if: steps.gomod.outputs.changes != 0
      run: >-
        make codegen && make local_generate
        git add sdk/nodejs
        git commit -m "Regenerating Node.js SDK based on updated modules" || echo "ignore commit failure, may be empty"
        git add sdk/python
        git commit -m "Regenerating Python SDK based on updated modules" || echo "ignore commit failure, may be empty"
        git add sdk/dotnet
        git commit -m "Regenerating .NET SDK based on updated modules" || echo "ignore commit failure, may be empty"
        git add sdk/go*
        git commit -m "Regenerating Go SDK based on updated modules" || echo "ignore commit failure, may be empty"
        git add sdk/java*
        git commit -m "Regenerating Java SDK based on updated modules" || echo "ignore commit failure, may be empty"
        git add .
        git commit -m "Updated modules" || echo "ignore commit failure, may be empty"
        git push origin update-pulumi/${{ github.run_id }}-${{ github.run_number }}
    - name: Create PR
      id: create-pr
      if: steps.gomod.outputs.changes != 0
      uses: repo-sync/pull-request@v2.6.2
      with:
        source_branch: update-pulumi/${{ github.run_id }}-${{ github.run_number }}
        destination_branch: master
        pr_title: Automated Pulumi/Pulumi upgrade
        github_token: ${{ secrets.PULUMI_BOT_TOKEN }}
      env:
        GITHUB_TOKEN: ${{ secrets.PULUMI_BOT_TOKEN }}
    name: weekly-pulumi-update
--- a/.gitignore
+++ b/.gitignore
@@ -5,12 +5,17 @@
 **/.vs
 **/.idea
 **/.ionide
-.pulumi
+**/.vscode
 *.swp
 Pulumi.*.yaml
 yarn.lock
 ci-scripts
-/nuget/
+nuget/
-provider/**/schema-embed.json
+coverage.txt
 sdk/dotnet/version.txt
 sdk/java/.gradle
 sdk/java/build/
 sdk/java/build.gradle
 sdk/python/venv
--- a/.golangci.yml
+++ b/.golangci.yml
@@ -0,0 +1,101 @@
 linters:
  enable-all: false
  enable:
    - depguard
    - errcheck
    - exhaustive
    - exportloopref
    - gci
    - gocritic
    - gofumpt
    - goheader
    - gosec
    - govet
    - importas
    - ineffassign
    - lll
    - misspell
    - nakedret
    - nolintlint
    - paralleltest
    - perfsprint
    - prealloc
    - revive
    - unconvert
    - unused
 linters-settings:
  depguard:
    rules:
      protobuf:
        deny:
          - pkg: "github.com/golang/protobuf"
            desc: Use google.golang.org/protobuf instead
  gci:
    sections:
      - standard # Standard section: captures all standard library packages.
      - blank # Blank section: contains all blank imports.
      - default # Default section: contains all imports that could not be matched to another section type.
      - prefix(github.com/pulumi/) # Custom section: groups all imports with the github.com/pulumi/ prefix.
      - prefix(github.com/pulumi/pulumi-dockerbuild/) # Custom section: local imports
    custom-order: true
  gocritic:
    enable-all: true
    disabled-checks:
      - hugeParam
      - importShadow
  goheader:
    template: |-
      Copyright 2024, Pulumi Corporation.
      Licensed under the Apache License, Version 2.0 (the "License");
      you may not use this file except in compliance with the License.
      You may obtain a copy of the License at
          http://www.apache.org/licenses/LICENSE-2.0
      Unless required by applicable law or agreed to in writing, software
      distributed under the License is distributed on an "AS IS" BASIS,
      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
      See the License for the specific language governing permissions and
      limitations under the License.
  govet:
    enable:
      - nilness
      # Reject comparisons of reflect.Value with DeepEqual or '=='.
      - reflectvaluecompare
      # Reject sort.Slice calls with a non-slice argument.
      - sortslice
      # Detect write to struct/arrays by-value that aren't read again.
      - unusedwrite
  nakedret:
    # Make an issue if func has more lines of code than this setting, and it has naked returns.
    # Default: 30
    max-func-lines: 60
  nolintlint:
    # Some linter exclusions are added to generated or templated files
    # pre-emptively.
    # Don't complain about these.
    allow-unused: true
 issues:
  exclude-use-default: false
  exclude-rules:
    # Don't warn on unused parameters.
    # Parameter names are useful; replacing them with '_' is undesirable.
    - linters: [revive]
      text: 'unused-parameter: parameter \S+ seems to be unused, consider removing or renaming it as _'
    # staticcheck already has smarter checks for empty blocks.
    # revive's empty-block linter has false positives.
    # For example, as of writing this, the following is not allowed.
    #   for foo() { }
    - linters: [revive]
      text: "empty-block: this block is empty, you can remove it"
    # We *frequently* use the term 'new' in the context of properties
    # (new and old properties),
    # and we rarely use the 'new' built-in function.
    # It's fine to ignore these cases.
    - linters: [revive]
      text: "redefines-builtin-id: redefinition of the built-in function new"
--- a/.goreleaser.prerelease.yml
+++ b/.goreleaser.prerelease.yml
@@ -0,0 +1,36 @@
 # WARNING: This file is autogenerated - changes will be overwritten if not made via https://github.com/pulumi/ci-mgmt
 project_name: pulumi-dockerbuild
 builds:
 - dir: provider
  env:
  - CGO_ENABLED=0
  - GO111MODULE=on
  goos:
  - darwin
  - windows
  - linux
  goarch:
  - amd64
  - arm64
  ignore: []
  main: ./cmd/pulumi-resource-dockerbuild/
  ldflags:
  - -X github.com/pulumi/pulumi-dockerbuild/provider/pkg/version.Version={{.Tag}}
  binary: pulumi-resource-dockerbuild
 archives:
 - name_template: "{{ .Binary }}-{{ .Tag }}-{{ .Os }}-{{ .Arch }}"
  id: archive
 snapshot:
  name_template: "{{ .Tag }}-SNAPSHOT"
 changelog:
  skip: true
 release:
  disable: true
 blobs:
 - provider: s3
  region: us-west-2
  bucket: get.pulumi.com
  folder: releases/plugins/
  ids:
  - archive
--- a/.goreleaser.yml
+++ b/.goreleaser.yml
@@ -0,0 +1,36 @@
 # WARNING: This file is autogenerated - changes will be overwritten if not made via https://github.com/pulumi/ci-mgmt
 project_name: pulumi-dockerbuild
 builds:
 - dir: provider
  env:
  - CGO_ENABLED=0
  - GO111MODULE=on
  goos:
  - darwin
  - windows
  - linux
  goarch:
  - amd64
  - arm64
  ignore: []
  main: ./cmd/pulumi-resource-dockerbuild/
  ldflags:
  - -X github.com/pulumi/pulumi-dockerbuild/provider/pkg/version.Version={{.Tag}}
  binary: pulumi-resource-dockerbuild
 archives:
 - name_template: "{{ .Binary }}-{{ .Tag }}-{{ .Os }}-{{ .Arch }}"
  id: archive
 snapshot:
  name_template: "{{ .Tag }}-SNAPSHOT"
 changelog:
  skip: true
 release:
  disable: false
 blobs:
 - provider: s3
  region: us-west-2
  bucket: get.pulumi.com
  folder: releases/plugins/
  ids:
  - archive
--- a/265
+++ b/265
@@ -1,91 +1,99 @@
-PROJECT_NAME := Pulumi Docker Native Resource Provider
+PROJECT_NAME := Pulumi Docker Build Resource Provider
-PACK             := docker-native
+PACK             := dockerbuild
 PACKDIR          := sdk
-PROJECT          := github.com/pulumi/pulumi-docker-native
+PROJECT          := github.com/pulumi/pulumi-dockerbuild
-NODE_MODULE_NAME := @pulumi/docker-native
+NODE_MODULE_NAME := @pulumi/dockerbuild
-NUGET_PKG_NAME   := Pulumi.DockerNative
+NUGET_PKG_NAME   := Pulumi.Dockerbuild
-PROVIDER        := pulumi-resource-${PACK}
+PROVIDER         := pulumi-resource-${PACK}
-VERSION         ?= $(shell pulumictl get version)
+VERSION          ?= $(shell pulumictl get version)
-PROVIDER_PATH   := provider
+PROVIDER_PATH    := provider
-VERSION_PATH    := ${PROVIDER_PATH}.Version
+VERSION_PATH     := ${PROVIDER_PATH}.Version
 SCHEMA_PATH      := ${PROVIDER_PATH}/cmd/pulumi-resource-${PACK}/schema.json
-GOPATH			:= $(shell go env GOPATH)
+GOPATH			 := $(shell go env GOPATH)
-WORKING_DIR     := $(shell pwd)
+WORKING_DIR      := $(shell pwd)
-EXAMPLES_DIR    := ${WORKING_DIR}/examples/yaml
+EXAMPLES_DIR     := ${WORKING_DIR}/examples/yaml
-TESTPARALLELISM := 4
+TESTPARALLELISM  := 4
-ensure::
+PULUMI           := bin/pulumi
-	cd provider && go mod tidy
+GOGLANGCILINT    := bin/golangci-lint
 	cd sdk && go mod tidy
 	cd tests && go mod tidy
-provider::
+.PHONY: ensure
-	(cd provider && go build -o $(WORKING_DIR)/bin/${PROVIDER} -ldflags "-X ${PROJECT}/${VERSION_PATH}=${VERSION}" $(PROJECT)/${PROVIDER_PATH}/cmd/$(PROVIDER))
+ensure:: tidy lint test_provider examples
 .PHONY: tidy
 tidy: go.sum
 .PHONY: provider
 provider: bin/${PROVIDER} bin/pulumi-gen-${PACK} # Required by CI
 provider_debug::
 	(cd provider && go build -o $(WORKING_DIR)/bin/${PROVIDER} -gcflags="all=-N -l" -ldflags "-X ${PROJECT}/${VERSION_PATH}=${VERSION}" $(PROJECT)/${PROVIDER_PATH}/cmd/$(PROVIDER))
-test_provider::
+test_provider:: # Required by CI
-	cd tests && go test -short -v -count=1 -cover -timeout 2h -parallel ${TESTPARALLELISM} ./...
+	go test -short -v -coverprofile="coverage.txt" -coverpkg=./provider/... -timeout 2h -parallel ${TESTPARALLELISM} ./provider/...
-dotnet_sdk:: DOTNET_VERSION := $(shell pulumictl get version --language dotnet)
+test_examples: install_nodejs_sdk install_dotnet_sdk
-dotnet_sdk::
+	go test -short -v -cover -tags=all -timeout 2h -parallel ${TESTPARALLELISM} ./examples/...
 	rm -rf sdk/dotnet
 	pulumi package gen-sdk $(WORKING_DIR)/bin/$(PROVIDER) --language dotnet
 	cd ${PACKDIR}/dotnet/&& \
 		echo "${DOTNET_VERSION}" >version.txt && \
 		dotnet build /p:Version=${DOTNET_VERSION}
-go_sdk:: $(WORKING_DIR)/bin/$(PROVIDER)
+test_all:: test_provider test_examples
 	rm -rf sdk/go
 	pulumi package gen-sdk $(WORKING_DIR)/bin/$(PROVIDER) --language go
-nodejs_sdk:: VERSION := $(shell pulumictl get version --language javascript)
+.PHONY:
-nodejs_sdk::
+gen_examples:
 	rm -rf sdk/nodejs
 	pulumi package gen-sdk $(WORKING_DIR)/bin/$(PROVIDER) --language nodejs
 	cd ${PACKDIR}/nodejs/ && \
 		yarn install && \
 		yarn run tsc && \
 		cp ../../README.md ../../LICENSE package.json yarn.lock bin/ && \
 		sed -i.bak 's/$${VERSION}/$(VERSION)/g' bin/package.json && \
 		rm ./bin/package.json.bak
-python_sdk:: PYPI_VERSION := $(shell pulumictl get version --language python)
+examples: $(shell mkdir -p examples)
-python_sdk::
+examples: sdk examples/yaml examples/go examples/nodejs examples/python examples/dotnet examples/java
 	rm -rf sdk/python
 	pulumi package gen-sdk $(WORKING_DIR)/bin/$(PROVIDER) --language python
 	cp README.md ${PACKDIR}/python/
 	cd ${PACKDIR}/python/ && \
 		python3 setup.py clean --all 2>/dev/null && \
 		rm -rf ./bin/ ../python.bin/ && cp -R . ../python.bin && mv ../python.bin ./bin && \
 		sed -i.bak -e 's/^VERSION = .*/VERSION = "$(PYPI_VERSION)"/g' -e 's/^PLUGIN_VERSION = .*/PLUGIN_VERSION = "$(VERSION)"/g' ./bin/setup.py && \
 		rm ./bin/setup.py.bak && \
 		cd ./bin && python3 setup.py build sdist
-gen_examples: gen_go_example \
+examples/yaml:
-		gen_nodejs_example \
+	rm -rf ${WORKING_DIR}/examples/yaml/app
-		gen_python_example \
+	cp -r ${WORKING_DIR}/examples/app ${WORKING_DIR}/examples/yaml/app
 		gen_dotnet_example
-gen_%_example:
+examples/go: ${PULUMI} bin/${PROVIDER} ${WORKING_DIR}/examples/yaml/Pulumi.yaml
-	rm -rf ${WORKING_DIR}/examples/$*
+	$(call example,go)
-	pulumi convert \
+	@git checkout examples/go/go.mod
-		--cwd ${WORKING_DIR}/examples/yaml \
+
-		--logtostderr \
+examples/nodejs: ${PULUMI} bin/${PROVIDER} ${WORKING_DIR}/examples/yaml/Pulumi.yaml
-		--generate-only \
+	$(call example,nodejs)
-		--non-interactive \
+	@git checkout examples/nodejs/package.json
-		--language $* \
+
-		--out ${WORKING_DIR}/examples/$*
+examples/python: ${PULUMI} bin/${PROVIDER} ${WORKING_DIR}/examples/yaml/Pulumi.yaml
 	$(call example,python)
 	@git checkout examples/python/requirements.txt
 examples/dotnet: ${PULUMI} bin/${PROVIDER} ${WORKING_DIR}/examples/yaml/Pulumi.yaml
 	$(call example,dotnet)
 	@git checkout examples/dotnet/provider-dockerbuild.csproj
 examples/java: ${PULUMI} bin/${PROVIDER} ${WORKING_DIR}/examples/yaml/Pulumi.yaml
 	$(call example,java)
 	@git checkout examples/java/pom.xml
 ${PULUMI}: go.sum
 	GOBIN=${WORKING_DIR}/bin go install github.com/pulumi/pulumi/pkg/v3/cmd/pulumi
 ${GOGLANGCILINT}: go.sum
 	GOBIN=${WORKING_DIR}/bin go install github.com/golangci/golangci-lint/cmd/golangci-lint
 define pulumi_login
    export PULUMI_CONFIG_PASSPHRASE=asdfqwerty1234; \
    pulumi login --local;
 endef
 define example
 	rm -rf ${WORKING_DIR}/examples/$(1)
 	$(PULUMI) convert \
 		--cwd ${WORKING_DIR}/examples/yaml \
 		--logtostderr \
 		--generate-only \
 		--non-interactive \
 		--language $(1) \
 		--out ${WORKING_DIR}/examples/$(1)
 	cp -r ${WORKING_DIR}/examples/app ${WORKING_DIR}/examples/$(1)/app
 endef
 up::
 	$(call pulumi_login) \
 	cd ${EXAMPLES_DIR} && \
@@ -107,39 +115,134 @@ devcontainer::
 	cp -f .devcontainer/devcontainer.json .devcontainer.json
 .PHONY: build
 build:: provider dotnet_sdk go_sdk nodejs_sdk python_sdk
 # Required for the codegen action that runs in pulumi/pulumi
 only_build:: build
-lint::
+.PHONY: lint
-	for DIR in "provider" "sdk" "tests" ; do \
+lint: ${GOGLANGCILINT}
-		pushd $$DIR && golangci-lint run -c ../.golangci.yml --timeout 10m && popd ; \
+	${GOGLANGCILINT} run --fix -c .golangci.yml --timeout 10m
 	done
 install:: install_nodejs_sdk install_dotnet_sdk
 	cp $(WORKING_DIR)/bin/${PROVIDER} ${GOPATH}/bin
 GO_TEST 	 := go test -v -count=1 -cover -timeout 2h -parallel ${TESTPARALLELISM}
 test_all:: test_provider
 	cd tests/sdk/nodejs && $(GO_TEST) ./...
 	cd tests/sdk/python && $(GO_TEST) ./...
 	cd tests/sdk/dotnet && $(GO_TEST) ./...
 	cd tests/sdk/go && $(GO_TEST) ./...
-install_dotnet_sdk::
+install_dotnet_sdk:: # Required by CI
 	rm -rf $(WORKING_DIR)/nuget/$(NUGET_PKG_NAME).*.nupkg
 	mkdir -p $(WORKING_DIR)/nuget
 	find . -name '*.nupkg' -print -exec cp -p {} ${WORKING_DIR}/nuget \;
-install_python_sdk::
+install_python_sdk:: # Required by CI
 	#target intentionally blank
-install_go_sdk::
+install_go_sdk:: # Required by CI
 	#target intentionally blank
-install_nodejs_sdk::
+install_nodejs_sdk:: # Required by CI
 	-yarn unlink --cwd $(WORKING_DIR)/sdk/nodejs/bin
 	yarn link --cwd $(WORKING_DIR)/sdk/nodejs/bin
 .PHONY: codegen
 codegen: # Required by CI
 .PHONY: generate_schema
 generate_schema: # Required by CI
 .PHONY: build_go install_go_sdk
 generate_go: sdk/go # Required by CI
 build_go: # Required by CI
 .PHONY: build_java install_java_sdk
 generate_java: sdk/java # Required by CI
 build_java: # Required by CI
 .PHONY: build_python install_python_sdk
 generate_python: sdk/python # Required by CI
 build_python: # Required by CI
 .PHONY: build_nodejs install_nodejs_sdk
 generate_nodejs: sdk/nodejs # Required by CI
 build_nodejs: # Required by CI
 .PHONY: build_dotnet install_dotnet_sdk
 generate_dotnet: sdk/dotnet # Required by CI
 build_dotnet: # Required by CI
 ${SCHEMA_PATH}: bin/${PROVIDER}
 	pulumi package get-schema bin/${PROVIDER} > $(SCHEMA_PATH)
 bin/${PROVIDER}: $(shell find ./provider -name '*.go') go.mod
 	(cd provider && go build -o ../bin/${PROVIDER} -ldflags "-X ${PROJECT}/${VERSION_PATH}=${VERSION}" $(PROJECT)/${PROVIDER_PATH}/cmd/$(PROVIDER))
 bin/pulumi-gen-${PACK}: # Required by CI
 	touch bin/pulumi-gen-${PACK}
 go.mod: $(shell find . -name '*.go')
 go.sum: go.mod
 	go mod tidy
 sdk: $(shell mkdir -p sdk)
 sdk: sdk/python sdk/nodejs sdk/java sdk/python sdk/go sdk/dotnet
 sdk/python: PYPI_VERSION := $(shell pulumictl get version --language python)
 sdk/python: TMPDIR := $(shell mktemp -d)
 sdk/python: $(PULUMI) bin/${PROVIDER}
 	rm -rf sdk/python
 	$(PULUMI) package gen-sdk bin/$(PROVIDER) --language python -o ${TMPDIR}
 	cp README.md ${TMPDIR}/python/
 	cd ${TMPDIR}/python/ && \
 		rm -rf ./bin/ ../python.bin/ && cp -R . ../python.bin && mv ../python.bin ./bin && \
 		sed -i.bak -e 's/^  version = .*/  version = "$(PYPI_VERSION)"/g' ./bin/pyproject.toml && \
 		rm ./bin/pyproject.toml.bak && \
 		python3 -m venv venv && \
 		./venv/bin/python -m pip install build && \
 		cd ./bin && \
 		../venv/bin/python -m build .
 	mv -f ${TMPDIR}/python ${WORKING_DIR}/sdk/.
 sdk/nodejs: NODE_VERSION := $(shell pulumictl get version --language javascript)
 sdk/nodejs: TMPDIR := $(shell mktemp -d)
 sdk/nodejs: $(PULUMI) bin/${PROVIDER}
 	rm -rf sdk/nodejs
 	$(PULUMI) package gen-sdk bin/$(PROVIDER) --language nodejs -o ${TMPDIR}
 	cp README.md LICENSE ${TMPDIR}/nodejs
 	cd ${TMPDIR}/nodejs/ && \
 		yarn install && \
 		yarn run tsc && \
 		cp README.md LICENSE package.json yarn.lock bin/ && \
 		sed -i.bak 's/$${VERSION}/$(NODE_VERSION)/g' bin/package.json && \
 		rm ./bin/package.json.bak
 	mv -f ${TMPDIR}/nodejs ${WORKING_DIR}/sdk/.
 sdk/go: TMPDIR := $(shell mktemp -d)
 sdk/go: $(PULUMI) bin/${PROVIDER}
 	rm -rf sdk/go
 	$(PULUMI) package gen-sdk bin/$(PROVIDER) --language go -o ${TMPDIR}
 	cp go.mod ${TMPDIR}/go/${PACK}/go.mod
 	cd ${TMPDIR}/go/${PACK} && \
 		go mod edit -module=github.com/pulumi/pulumi-${PACK}/${PACKDIR}/go/${PACK} && \
 		go mod tidy
 	mv -f ${TMPDIR}/go ${WORKING_DIR}/sdk/.
 sdk/dotnet: DOTNET_VERSION  := $(shell pulumictl get version --language dotnet)
 sdk/dotnet: TMPDIR := $(shell mktemp -d)
 sdk/dotnet: $(PULUMI) bin/${PROVIDER}
 	rm -rf sdk/dotnet
 	$(PULUMI) package gen-sdk bin/${PROVIDER} --language dotnet -o ${TMPDIR}
 	cd ${TMPDIR}/dotnet/ && \
 		echo "$(DOTNET_VERSION)" > version.txt && \
 		dotnet build /p:Version=${DOTNET_VERSION}
 	mv -f ${TMPDIR}/dotnet ${WORKING_DIR}/sdk/.
 sdk/java: PACKAGE_VERSION := $(shell pulumictl get version --language generic)
 sdk/java: TMPDIR := $(shell mktemp -d)
 sdk/java: $(PULUMI) bin/${PROVIDER}
 	rm -rf sdk/java
 	$(PULUMI) package gen-sdk --language java bin/${PROVIDER} -o ${TMPDIR}
 	cd ${TMPDIR}/java/ && gradle --console=plain build
 	mv -f ${TMPDIR}/java ${WORKING_DIR}/sdk/.
 docs: $(shell find docs/yaml -type f) $(shell find ./provider/internal/embed -name '*.md')
 	go generate docs/generate.go
 	@touch docs
--- a/codecov.yml
+++ b/codecov.yml
@@ -0,0 +1,12 @@
 comment:
  layout: "header, files, footer"
  hide_project_coverage: false
 coverage:
  status:
    project:
      default:
        informational: true
    patch:
      default:
        informational: true
--- a/docs/generate.go
+++ b/docs/generate.go
@@ -0,0 +1,216 @@
 // Copyright 2024, Pulumi Corporation.
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //     http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 //go:generate go run generate.go yaml ../provider/internal/embed
 // Package main ingests a multi-document YAML file and converts it into
 // Markdown examples.
 package main
 import (
 	"fmt"
 	"io"
 	"log"
 	"os"
 	"os/exec"
 	"path/filepath"
 	"strings"
 	"gopkg.in/yaml.v3"
 	"github.com/pulumi/pulumi/sdk/v3/go/common/util/contract"
 )
 func main() {
 	if len(os.Args) < 3 {
 		fmt.Fprintf(os.Stdout, "Usage: %s <yaml source dir path> <markdown destination path>\n", os.Args[0])
 		os.Exit(1)
 	}
 	yamlPath := os.Args[1]
 	mdPath := os.Args[2]
 	if !filepath.IsAbs(yamlPath) {
 		cwd, err := os.Getwd()
 		contract.AssertNoErrorf(err, "getting working directory")
 		yamlPath = filepath.Join(cwd, yamlPath)
 	}
 	if err := os.MkdirAll(mdPath, 0o750); err != nil {
 		panic(err)
 	}
 	fileInfo, err := os.Lstat(mdPath)
 	if err != nil || !fileInfo.IsDir() {
 		fmt.Fprintf(os.Stderr, "Expect markdown destination %q to be a directory\n", mdPath)
 		os.Exit(1)
 	}
 	yamlFiles, err := os.ReadDir(yamlPath)
 	if err != nil {
 		panic(err)
 	}
 	for _, yamlFile := range yamlFiles {
 		if err := processYaml(filepath.Join(yamlPath, yamlFile.Name()), mdPath); err != nil {
 			log.Fatal(fmt.Errorf("processing %q: %w", yamlFile.Name(), err))
 		}
 	}
 }
 func markdownExamples(examples []string) string {
 	s := "{{% examples %}}\n## Example Usage\n"
 	for _, example := range examples {
 		s += example
 	}
 	s += "{{% /examples %}}"
 	return s
 }
 func markdownExample(description string,
 	typescript string,
 	python string,
 	csharp string,
 	golang string,
 	yaml string,
 	java string,
 ) string {
 	return fmt.Sprintf("{{%% example %%}}\n### %s\n\n"+
 		"```typescript\n%s```\n"+
 		"```python\n%s```\n"+
 		"```csharp\n%s```\n"+
 		"```go\n%s```\n"+
 		"```yaml\n%s```\n"+
 		"```java\n%s```\n"+
 		"{{%% /example %%}}\n",
 		description, typescript, python, csharp, golang, yaml, java)
 }
 func convert(language, tempDir, programFile string) (string, error) {
 	exampleDir := filepath.Join(tempDir, "example"+language)
 	//nolint:gosec // No user-provided input.
 	cmd := exec.Command(
 		"pulumi",
 		"convert",
 		"--language",
 		language,
 		"--out",
 		filepath.Clean(filepath.Join(tempDir, exampleDir)),
 		"--generate-only",
 	)
 	cmd.Stderr = os.Stderr
 	cmd.Stdout = os.Stdout
 	cmd.Dir = tempDir
 	if err := cmd.Run(); err != nil {
 		return "", fmt.Errorf("converting: %w", err)
 	}
 	content, err := os.ReadFile(filepath.Clean(filepath.Join(tempDir, exampleDir, programFile)))
 	if err != nil {
 		return "", fmt.Errorf("reading: %w", err)
 	}
 	return string(content), nil
 }
 func processYaml(path, mdDir string) error {
 	yamlFile, err := os.Open(filepath.Clean(path))
 	if err != nil {
 		return err
 	}
 	base := filepath.Base(path)
 	md := strings.NewReplacer(".yaml", ".md", ".yml", ".md").Replace(base)
 	defer contract.IgnoreClose(yamlFile)
 	decoder := yaml.NewDecoder(yamlFile)
 	exampleStrings := []string{}
 	for {
 		keepGoing, err := func() (bool, error) {
 			example := map[string]interface{}{}
 			err := decoder.Decode(&example)
 			if err == io.EOF {
 				return false, nil
 			}
 			description, ok := example["description"].(string)
 			if !ok {
 				description = ""
 			}
 			dir, err := os.MkdirTemp("", "")
 			if err != nil {
 				return false, err
 			}
 			defer func() {
 				contract.IgnoreError(os.RemoveAll(dir))
 			}()
 			src, err := os.OpenFile(filepath.Clean(filepath.Join(dir, "Pulumi.yaml")), os.O_RDWR|os.O_CREATE|os.O_TRUNC, 0o600)
 			if err != nil {
 				return false, err
 			}
 			fmt.Println("Converting:", example)
 			if err := yaml.NewEncoder(src).Encode(example); err != nil {
 				return false, err
 			}
 			contract.AssertNoErrorf(src.Close(), "closing")
 			typescript, err := convert("typescript", dir, "index.ts")
 			if err != nil {
 				return false, err
 			}
 			python, err := convert("python", dir, "__main__.py")
 			if err != nil {
 				return false, err
 			}
 			csharp, err := convert("csharp", dir, "Program.cs")
 			if err != nil {
 				return false, err
 			}
 			golang, err := convert("go", dir, "main.go")
 			if err != nil {
 				return false, err
 			}
 			java, err := convert("java", dir, "src/main/java/generated_program/App.java")
 			if err != nil {
 				return false, err
 			}
 			yamlContent, err := os.ReadFile(filepath.Clean(filepath.Join(dir, "Pulumi.yaml")))
 			if err != nil {
 				return false, err
 			}
 			yaml := string(yamlContent)
 			exampleStrings = append(exampleStrings, markdownExample(description, typescript, python, csharp, golang, yaml, java))
 			return true, nil
 		}()
 		if err != nil {
 			return err
 		}
 		if !keepGoing {
 			break
 		}
 	}
 	fmt.Fprintf(os.Stdout, "Writing %s\n", filepath.Join(mdDir, md))
 	f, err := os.OpenFile(filepath.Clean(filepath.Join(mdDir, md)), os.O_RDWR|os.O_CREATE|os.O_TRUNC, 0o600)
 	if err != nil {
 		return err
 	}
 	defer contract.IgnoreClose(f)
 	_, err = f.WriteString(markdownExamples(exampleStrings))
 	contract.AssertNoErrorf(err, "writing examples")
 	return nil
 }
--- a/docs/yaml/image-examples.yaml
+++ b/docs/yaml/image-examples.yaml
@@ -0,0 +1,180 @@
 name: ecr
 description: Push to AWS ECR with caching
 outputs:
  ref: ${my-image.ref}
 resources:
  ecr-repository:
    type: aws:ecr:Repository
  my-image:
    type: dockerbuild:Image
    properties:
      tags:
        - ${ecr-repository.repositoryUrl}:latest
      push: true
      context:
        location: ./app
      cacheFrom:
        - registry:
            ref: ${ecr-repository.repositoryUrl}:cache
      cacheTo:
        - registry:
            ref: ${ecr-repository.repositoryUrl}:cache
            imageManifest: true
            ociMediaTypes: true
      registries:
        - username: ${auth-token.userName}
          password: ${auth-token.password}
          address: ${ecr-repository.repositoryUrl}
 runtime: yaml
 variables:
  auth-token:
    fn::aws:ecr:getAuthorizationToken:
      registryId: ${ecr-repository.registryId}
 ---
 name: multi-platform
 runtime: yaml
 description: Multi-platform image
 resources:
  image:
    type: dockerbuild:Image
    properties:
      context:
        location: "app"
      platforms:
        - plan9/amd64
        - plan9/386
 ---
 name: registry
 runtime: yaml
 description: Registry export
 resources:
  image:
    type: dockerbuild:Image
    properties:
      tags:
        - "docker.io/pulumi/pulumi:3.107.0"
      context:
        location: "app"
      push: true
      registries:
        - address: docker.io
          username: pulumibot
          password: ${dockerHubPassword}
 outputs:
  ref: ${my-image.ref}
 ---
 name: caching
 runtime: yaml
 description: Caching
 resources:
  image:
    type: dockerbuild:Image
    properties:
      context:
        location: "app"
      cacheTo:
        - local:
            dest: tmp/cache
            mode: max
      cacheFrom:
        - local:
            src: tmp/cache
 ---
 name: dbc
 runtime: yaml
 description: Docker Build Cloud
 resources:
  image:
    type: dockerbuild:Image
    properties:
      context:
        location: "app"
      exec: true
      builder:
        name: cloud-builder-name
 ---
 name: build-args
 runtime: yaml
 description: Build arguments
 resources:
  image:
    type: dockerbuild:Image
    properties:
      context:
        location: "app"
      buildArgs:
        SET_ME_TO_TRUE: "true"
 ---
 name: build-target
 runtime: yaml
 description: Build target
 resources:
  image:
    type: dockerbuild:Image
    properties:
      context:
        location: "app"
      target: "build-me"
 ---
 name: named-contexts
 runtime: yaml
 description: Named contexts
 resources:
  image:
    type: dockerbuild:Image
    properties:
      context:
        location: app
        named:
          "golang:latest":
            location: "docker-image://golang@sha256:b8e62cf593cdaff36efd90aa3a37de268e6781a2e68c6610940c48f7cdf36984"
 ---
 name: remote-context
 runtime: yaml
 description: Remote context
 resources:
  image:
    type: dockerbuild:Image
    properties:
      context:
        location: "https://raw.githubusercontent.com/pulumi/pulumi-docker/api-types/provider/testdata/Dockerfile"
 ---
 name: inline
 runtime: yaml
 description: Inline Dockerfile
 resources:
  image:
    type: dockerbuild:Image
    properties:
      dockerfile:
        inline: |
          FROM busybox
          COPY hello.c ./
      context:
        location: "app"
 ---
 name: remote-context
 runtime: yaml
 description: Remote context
 resources:
  image:
    type: dockerbuild:Image
    properties:
      dockerfile:
        location: app/Dockerfile
      context:
        location: "https://github.com/docker-library/hello-world.git"
 ---
 name: docker-load
 runtime: yaml
 description: Local export
 resources:
  image:
    type: dockerbuild:Image
    properties:
      context:
        location: "app"
      exports:
        - docker:
            tar: true
--- a/docs/yaml/index-examples.yaml
+++ b/docs/yaml/index-examples.yaml
@@ -0,0 +1,48 @@
 name: registry-caching
 description: Multi-platform registry caching
 runtime: yaml
 resources:
  arm64:
    type: dockerbuild:Image
    properties:
      context:
        location: "app"
      platforms:
        - linux/arm64
      tags:
        - "docker.io/pulumi/pulumi:3.107.0-arm64"
      cacheTo:
        - registry:
            ref: "docker.io/pulumi/pulumi:cache-arm64"
            mode: max
      cacheFrom:
        - registry:
            ref: "docker.io/pulumi/pulumi:cache-arm64"
  amd64:
    type: dockerbuild:Image
    properties:
      context:
        location: "app"
      platforms:
        - linux/amd64
      tags:
        - "docker.io/pulumi/pulumi:3.107.0-amd64"
      cacheTo:
        - registry:
            ref: "docker.io/pulumi/pulumi:cache-amd64"
            mode: max
      cacheFrom:
        - registry:
            ref: "docker.io/pulumi/pulumi:cache-amd64"
  index:
    type: dockerbuild:Index
    properties:
      tag: "docker.io/pulumi/pulumi:3.107.0"
      sources:
        - ${amd64.ref}
        - ${arm64.ref}
 outputs:
  ref: ${index.ref}
--- a/examples/app/Dockerfile
+++ b/examples/app/Dockerfile
@@ -0,0 +1,2 @@
 FROM alpine
 RUN echo 👍
--- a/examples/app/Dockerfile.buildArgs
+++ b/examples/app/Dockerfile.buildArgs
@@ -0,0 +1,5 @@
 FROM alpine
 ARG SET_ME_TO_TRUE
 RUN [ "$SET_ME_TO_TRUE" = "true" ]
 RUN echo "That's the correct build arg, thanks! 👍"
--- a/examples/app/Dockerfile.emptyContext
+++ b/examples/app/Dockerfile.emptyContext
@@ -0,0 +1,2 @@
 FROM alpine
 RUN echo "This image doesn't use any local files, so it doesn't need a context parameter 👍"
--- a/examples/app/Dockerfile.extraHosts
+++ b/examples/app/Dockerfile.extraHosts
@@ -0,0 +1,3 @@
 FROM bash AS base
 RUN getent hosts metadata.google.internal
--- a/examples/app/Dockerfile.multiPlatform
+++ b/examples/app/Dockerfile.multiPlatform
@@ -0,0 +1,7 @@
 FROM --platform=$BUILDPLATFORM alpine as build
 RUN echo ${BUILDPLATFORM} > buildplatform
 RUN echo ${TARGETPLATFORM} > targetplatform
 FROM build
 RUN cat buildplatform
 RUN cat targetplatform
--- a/examples/app/Dockerfile.namedContexts
+++ b/examples/app/Dockerfile.namedContexts
@@ -0,0 +1,5 @@
 # syntax=docker/dockerfile:1.4
 FROM golang:latest
 RUN version="$(go version)" && echo $version && [ "$version" = "go version go1.21.7 linux/amd64" ]
 RUN echo "This image uses named contexts to pin golang:latest to a specific SHA 👍"
--- a/examples/app/Dockerfile.secrets
+++ b/examples/app/Dockerfile.secrets
@@ -0,0 +1,4 @@
 FROM alpine
 RUN --mount=type=secret,id=password [ "$(cat /run/secrets/password)" = "hunter2" ]
--- a/examples/app/Dockerfile.sshMount
+++ b/examples/app/Dockerfile.sshMount
@@ -0,0 +1,5 @@
 FROM alpine
 RUN apk add openssh-client
 RUN --mount=type=ssh ssh-add -l
--- a/examples/app/Dockerfile.target
+++ b/examples/app/Dockerfile.target
@@ -0,0 +1,8 @@
 FROM alpine as build-me
 RUN echo 👍
 FROM build-me as also-build-me
 RUN echo 🤙
 FROM build-me as dont-build-me
 RUN [ "true" = "false" ]
--- a/examples/dotnet/Program.cs
+++ b/examples/dotnet/Program.cs
@@ -1,21 +1,258 @@
 using System.Collections.Generic;
 using System.Linq;
 using Pulumi;
-using DockerNative = Pulumi.DockerNative;
+using Dockerbuild = Pulumi.Dockerbuild;
 return await Deployment.RunAsync(() => 
 {
-    var myRandomResource = new DockerNative.Random("myRandomResource", new()
+    var config = new Config();
    var dockerHubPassword = config.Require("dockerHubPassword");
    var multiPlatform = new Dockerbuild.Image("multiPlatform", new()
    {
-        Length = 24,
+        Dockerfile = new Dockerbuild.Inputs.DockerfileArgs
        {
            Location = "./app/Dockerfile.multiPlatform",
        },
        Context = new Dockerbuild.Inputs.BuildContextArgs
        {
            Location = "./app",
        },
        Platforms = new[]
        {
            Dockerbuild.Platform.Plan9_amd64,
            Dockerbuild.Platform.Plan9_386,
        },
    });
    var registryPush = new Dockerbuild.Image("registryPush", new()
    {
        Context = new Dockerbuild.Inputs.BuildContextArgs
        {
            Location = "./app",
        },
        Tags = new[]
        {
            "docker.io/pulumibot/buildkit-e2e:example",
        },
        Exports = new[]
        {
            new Dockerbuild.Inputs.ExportArgs
            {
                Registry = new Dockerbuild.Inputs.ExportRegistryArgs
                {
                    OciMediaTypes = true,
                    Push = false,
                },
            },
        },
        Registries = new[]
        {
            new Dockerbuild.Inputs.RegistryArgs
            {
                Address = "docker.io",
                Username = "pulumibot",
                Password = dockerHubPassword,
            },
        },
    });
    var cached = new Dockerbuild.Image("cached", new()
    {
        Context = new Dockerbuild.Inputs.BuildContextArgs
        {
            Location = "./app",
        },
        CacheTo = new[]
        {
            new Dockerbuild.Inputs.CacheToArgs
            {
                Local = new Dockerbuild.Inputs.CacheToLocalArgs
                {
                    Dest = "tmp/cache",
                    Mode = Dockerbuild.CacheMode.Max,
                },
            },
        },
        CacheFrom = new[]
        {
            new Dockerbuild.Inputs.CacheFromArgs
            {
                Local = new Dockerbuild.Inputs.CacheFromLocalArgs
                {
                    Src = "tmp/cache",
                },
            },
        },
    });
    var buildArgs = new Dockerbuild.Image("buildArgs", new()
    {
        Dockerfile = new Dockerbuild.Inputs.DockerfileArgs
        {
            Location = "./app/Dockerfile.buildArgs",
        },
        Context = new Dockerbuild.Inputs.BuildContextArgs
        {
            Location = "./app",
        },
        BuildArgs = 
        {
            { "SET_ME_TO_TRUE", "true" },
        },
    });
    var extraHosts = new Dockerbuild.Image("extraHosts", new()
    {
        Dockerfile = new Dockerbuild.Inputs.DockerfileArgs
        {
            Location = "./app/Dockerfile.extraHosts",
        },
        Context = new Dockerbuild.Inputs.BuildContextArgs
        {
            Location = "./app",
        },
        AddHosts = new[]
        {
            "metadata.google.internal:169.254.169.254",
        },
    });
    var sshMount = new Dockerbuild.Image("sshMount", new()
    {
        Dockerfile = new Dockerbuild.Inputs.DockerfileArgs
        {
            Location = "./app/Dockerfile.sshMount",
        },
        Context = new Dockerbuild.Inputs.BuildContextArgs
        {
            Location = "./app",
        },
        Ssh = new[]
        {
            new Dockerbuild.Inputs.SSHArgs
            {
                Id = "default",
            },
        },
    });
    var secrets = new Dockerbuild.Image("secrets", new()
    {
        Dockerfile = new Dockerbuild.Inputs.DockerfileArgs
        {
            Location = "./app/Dockerfile.secrets",
        },
        Context = new Dockerbuild.Inputs.BuildContextArgs
        {
            Location = "./app",
        },
        Secrets = 
        {
            { "password", "hunter2" },
        },
    });
    var labels = new Dockerbuild.Image("labels", new()
    {
        Context = new Dockerbuild.Inputs.BuildContextArgs
        {
            Location = "./app",
        },
        Labels = 
        {
            { "description", "This image will get a descriptive label 👍" },
        },
    });
    var target = new Dockerbuild.Image("target", new()
    {
        Dockerfile = new Dockerbuild.Inputs.DockerfileArgs
        {
            Location = "./app/Dockerfile.target",
        },
        Context = new Dockerbuild.Inputs.BuildContextArgs
        {
            Location = "./app",
        },
        Target = "build-me",
    });
    var namedContexts = new Dockerbuild.Image("namedContexts", new()
    {
        Dockerfile = new Dockerbuild.Inputs.DockerfileArgs
        {
            Location = "./app/Dockerfile.namedContexts",
        },
        Context = new Dockerbuild.Inputs.BuildContextArgs
        {
            Location = "./app",
            Named = 
            {
                { "golang:latest", new Dockerbuild.Inputs.ContextArgs
                {
                    Location = "docker-image://golang@sha256:b8e62cf593cdaff36efd90aa3a37de268e6781a2e68c6610940c48f7cdf36984",
                } },
            },
        },
    });
    var remoteContext = new Dockerbuild.Image("remoteContext", new()
    {
        Context = new Dockerbuild.Inputs.BuildContextArgs
        {
            Location = "https://raw.githubusercontent.com/pulumi/pulumi-docker/api-types/provider/testdata/Dockerfile",
        },
    });
    var remoteContextWithInline = new Dockerbuild.Image("remoteContextWithInline", new()
    {
        Dockerfile = new Dockerbuild.Inputs.DockerfileArgs
        {
            Inline = @"FROM busybox
 COPY hello.c ./
 ",
        },
        Context = new Dockerbuild.Inputs.BuildContextArgs
        {
            Location = "https://github.com/docker-library/hello-world.git",
        },
    });
    var inline = new Dockerbuild.Image("inline", new()
    {
        Dockerfile = new Dockerbuild.Inputs.DockerfileArgs
        {
            Inline = @"FROM alpine
 RUN echo ""This uses an inline Dockerfile! 👍""
 ",
        },
        Context = new Dockerbuild.Inputs.BuildContextArgs
        {
            Location = "./app",
        },
    });
    var dockerLoad = new Dockerbuild.Image("dockerLoad", new()
    {
        Context = new Dockerbuild.Inputs.BuildContextArgs
        {
            Location = "./app",
        },
        Exports = new[]
        {
            new Dockerbuild.Inputs.ExportArgs
            {
                Docker = new Dockerbuild.Inputs.ExportDockerArgs
                {
                    Tar = true,
                },
            },
        },
    });
    return new Dictionary<string, object?>
    {
-        ["output"] = 
+        ["platforms"] = multiPlatform.Platforms,
        {
            { "value", myRandomResource.Result },
        },
    };
 });
--- a/examples/dotnet/Pulumi.yaml
+++ b/examples/dotnet/Pulumi.yaml
@@ -1,6 +1,10 @@
-name: provider-docker-native
+name: provider-dockerbuild
 runtime: dotnet
 config:
  dockerHubPassword:
    type: string
    secret: true
 plugins:
  providers:
-    - name: docker-native
+    - name: dockerbuild
      path: ../../bin
--- a/examples/dotnet/app/Dockerfile
+++ b/examples/dotnet/app/Dockerfile
@@ -0,0 +1,2 @@
 FROM alpine
 RUN echo 👍
--- a/examples/dotnet/app/Dockerfile.buildArgs
+++ b/examples/dotnet/app/Dockerfile.buildArgs
@@ -0,0 +1,5 @@
 FROM alpine
 ARG SET_ME_TO_TRUE
 RUN [ "$SET_ME_TO_TRUE" = "true" ]
 RUN echo "That's the correct build arg, thanks! 👍"
--- a/examples/dotnet/app/Dockerfile.emptyContext
+++ b/examples/dotnet/app/Dockerfile.emptyContext
@@ -0,0 +1,2 @@
 FROM alpine
 RUN echo "This image doesn't use any local files, so it doesn't need a context parameter 👍"
--- a/examples/dotnet/app/Dockerfile.extraHosts
+++ b/examples/dotnet/app/Dockerfile.extraHosts
@@ -0,0 +1,3 @@
 FROM bash AS base
 RUN getent hosts metadata.google.internal
--- a/examples/dotnet/app/Dockerfile.multiPlatform
+++ b/examples/dotnet/app/Dockerfile.multiPlatform
@@ -0,0 +1,7 @@
 FROM --platform=$BUILDPLATFORM alpine as build
 RUN echo ${BUILDPLATFORM} > buildplatform
 RUN echo ${TARGETPLATFORM} > targetplatform
 FROM build
 RUN cat buildplatform
 RUN cat targetplatform
--- a/examples/dotnet/app/Dockerfile.namedContexts
+++ b/examples/dotnet/app/Dockerfile.namedContexts
@@ -0,0 +1,5 @@
 # syntax=docker/dockerfile:1.4
 FROM golang:latest
 RUN version="$(go version)" && echo $version && [ "$version" = "go version go1.21.7 linux/amd64" ]
 RUN echo "This image uses named contexts to pin golang:latest to a specific SHA 👍"
--- a/examples/dotnet/app/Dockerfile.secrets
+++ b/examples/dotnet/app/Dockerfile.secrets
@@ -0,0 +1,4 @@
 FROM alpine
 RUN --mount=type=secret,id=password [ "$(cat /run/secrets/password)" = "hunter2" ]
--- a/examples/dotnet/app/Dockerfile.sshMount
+++ b/examples/dotnet/app/Dockerfile.sshMount
@@ -0,0 +1,5 @@
 FROM alpine
 RUN apk add openssh-client
 RUN --mount=type=ssh ssh-add -l
--- a/examples/dotnet/app/Dockerfile.target
+++ b/examples/dotnet/app/Dockerfile.target
@@ -0,0 +1,8 @@
 FROM alpine as build-me
 RUN echo 👍
 FROM build-me as also-build-me
 RUN echo 🤙
 FROM build-me as dont-build-me
 RUN [ "true" = "false" ]
--- a/examples/dotnet/provider-docker-native.csproj
+++ b/examples/dotnet/provider-docker-native.csproj
@@ -8,7 +8,7 @@
 	<ItemGroup>
 		<PackageReference Include="Pulumi" Version="3.*" />
-		<PackageReference Include="Pulumi.DockerNative" Version="0.0.1-alpha.1709848295+3427e611.dirty" />
+		<PackageReference Include="Pulumi.Dockerbuild" Version="*" />
 	</ItemGroup>
 </Project>
--- a/examples/dotnet_test.go
+++ b/examples/dotnet_test.go
@@ -0,0 +1,39 @@
 //go:build dotnet || all
 // +build dotnet all
 package examples
 import (
 	"os"
 	"os/exec"
 	"path"
 	"path/filepath"
 	"testing"
 	"github.com/pulumi/pulumi/pkg/v3/testing/integration"
 	"github.com/stretchr/testify/require"
 )
 func TestDotNetExample(t *testing.T) {
 	cwd, err := os.Getwd()
 	require.NoError(t, err)
 	nuget := filepath.Join(cwd, "../nuget")
 	t.Setenv("PULUMI_LOCAL_NUGET", nuget)
 	cmd := exec.Command("dotnet", "nuget", "add", "source", nuget)
 	_ = cmd.Run()
 	test := integration.ProgramTestOptions{
 		Dir: path.Join(cwd, "dotnet"),
 		Dependencies: []string{
 			"Pulumi.Dockerbuild",
 		},
 		Secrets: map[string]string{
 			"dockerHubPassword": os.Getenv("DOCKER_HUB_PASSWORD"),
 		},
 		NoParallel: true,
 	}
 	integration.ProgramTest(t, &test)
 }
--- a/examples/go/Pulumi.yaml
+++ b/examples/go/Pulumi.yaml
@@ -1,6 +1,10 @@
-name: provider-docker-native
+name: provider-dockerbuild
 runtime: go
 config:
  dockerHubPassword:
    type: string
    secret: true
 plugins:
  providers:
-    - name: docker-native
+    - name: dockerbuild
      path: ../../bin
--- a/examples/go/app/Dockerfile
+++ b/examples/go/app/Dockerfile
@@ -0,0 +1,2 @@
 FROM alpine
 RUN echo 👍
--- a/examples/go/app/Dockerfile.buildArgs
+++ b/examples/go/app/Dockerfile.buildArgs
@@ -0,0 +1,5 @@
 FROM alpine
 ARG SET_ME_TO_TRUE
 RUN [ "$SET_ME_TO_TRUE" = "true" ]
 RUN echo "That's the correct build arg, thanks! 👍"
--- a/examples/go/app/Dockerfile.emptyContext
+++ b/examples/go/app/Dockerfile.emptyContext
@@ -0,0 +1,2 @@
 FROM alpine
 RUN echo "This image doesn't use any local files, so it doesn't need a context parameter 👍"
--- a/examples/go/app/Dockerfile.extraHosts
+++ b/examples/go/app/Dockerfile.extraHosts
@@ -0,0 +1,3 @@
 FROM bash AS base
 RUN getent hosts metadata.google.internal
--- a/examples/go/app/Dockerfile.multiPlatform
+++ b/examples/go/app/Dockerfile.multiPlatform
@@ -0,0 +1,7 @@
 FROM --platform=$BUILDPLATFORM alpine as build
 RUN echo ${BUILDPLATFORM} > buildplatform
 RUN echo ${TARGETPLATFORM} > targetplatform
 FROM build
 RUN cat buildplatform
 RUN cat targetplatform
--- a/examples/go/app/Dockerfile.namedContexts
+++ b/examples/go/app/Dockerfile.namedContexts
@@ -0,0 +1,5 @@
 # syntax=docker/dockerfile:1.4
 FROM golang:latest
 RUN version="$(go version)" && echo $version && [ "$version" = "go version go1.21.7 linux/amd64" ]
 RUN echo "This image uses named contexts to pin golang:latest to a specific SHA 👍"
--- a/examples/go/app/Dockerfile.secrets
+++ b/examples/go/app/Dockerfile.secrets
@@ -0,0 +1,4 @@
 FROM alpine
 RUN --mount=type=secret,id=password [ "$(cat /run/secrets/password)" = "hunter2" ]
--- a/examples/go/app/Dockerfile.sshMount
+++ b/examples/go/app/Dockerfile.sshMount
@@ -0,0 +1,5 @@
 FROM alpine
 RUN apk add openssh-client
 RUN --mount=type=ssh ssh-add -l
--- a/examples/go/app/Dockerfile.target
+++ b/examples/go/app/Dockerfile.target
@@ -0,0 +1,8 @@
 FROM alpine as build-me
 RUN echo 👍
 FROM build-me as also-build-me
 RUN echo 🤙
 FROM build-me as dont-build-me
 RUN [ "true" = "false" ]
--- a/examples/go/go.mod
+++ b/examples/go/go.mod
@@ -1,7 +1,7 @@
-module provider-docker-native
+module provider-dockerbuild
 go 1.20
 require (
-	github.com/pulumi/pulumi/sdk/v3 v3.30.0
+	github.com/pulumi/pulumi/sdk/v3 v3.111.1
 )
--- a/examples/go/main.go
+++ b/examples/go/main.go
@@ -1,21 +1,222 @@
 package main
 import (
-	"github.com/pulumi/pulumi-docker-native/sdk/go/docker"
+	"github.com/pulumi/pulumi-dockerbuild/sdk/go/dockerbuild"
 	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
 	"github.com/pulumi/pulumi/sdk/v3/go/pulumi/config"
 )
 func main() {
 	pulumi.Run(func(ctx *pulumi.Context) error {
-		myRandomResource, err := docker.NewRandom(ctx, "myRandomResource", &docker.RandomArgs{
+		cfg := config.New(ctx, "")
-			Length: pulumi.Int(24),
+		dockerHubPassword := cfg.Require("dockerHubPassword")
 		multiPlatform, err := dockerbuild.NewImage(ctx, "multiPlatform", &dockerbuild.ImageArgs{
 			Dockerfile: &dockerbuild.DockerfileArgs{
 				Location: pulumi.String("./app/Dockerfile.multiPlatform"),
 			},
 			Context: &dockerbuild.BuildContextArgs{
 				Location: pulumi.String("./app"),
 			},
 			Platforms: dockerbuild.PlatformArray{
 				dockerbuild.Platform_Plan9_amd64,
 				dockerbuild.Platform_Plan9_386,
 			},
 		})
 		if err != nil {
 			return err
 		}
-		ctx.Export("output", map[string]interface{}{
+		_, err = dockerbuild.NewImage(ctx, "registryPush", &dockerbuild.ImageArgs{
-			"value": myRandomResource.Result,
+			Context: &dockerbuild.BuildContextArgs{
 				Location: pulumi.String("./app"),
 			},
 			Tags: pulumi.StringArray{
 				pulumi.String("docker.io/pulumibot/buildkit-e2e:example"),
 			},
 			Exports: dockerbuild.ExportArray{
 				&dockerbuild.ExportArgs{
 					Registry: &dockerbuild.ExportRegistryArgs{
 						OciMediaTypes: pulumi.Bool(true),
 						Push:          pulumi.Bool(false),
 					},
 				},
 			},
 			Registries: dockerbuild.RegistryArray{
 				&dockerbuild.RegistryArgs{
 					Address:  pulumi.String("docker.io"),
 					Username: pulumi.String("pulumibot"),
 					Password: pulumi.String(dockerHubPassword),
 				},
 			},
 		})
 		if err != nil {
 			return err
 		}
 		_, err = dockerbuild.NewImage(ctx, "cached", &dockerbuild.ImageArgs{
 			Context: &dockerbuild.BuildContextArgs{
 				Location: pulumi.String("./app"),
 			},
 			CacheTo: dockerbuild.CacheToArray{
 				&dockerbuild.CacheToArgs{
 					Local: &dockerbuild.CacheToLocalArgs{
 						Dest: pulumi.String("tmp/cache"),
 						Mode: dockerbuild.CacheModeMax,
 					},
 				},
 			},
 			CacheFrom: dockerbuild.CacheFromArray{
 				&dockerbuild.CacheFromArgs{
 					Local: &dockerbuild.CacheFromLocalArgs{
 						Src: pulumi.String("tmp/cache"),
 					},
 				},
 			},
 		})
 		if err != nil {
 			return err
 		}
 		_, err = dockerbuild.NewImage(ctx, "buildArgs", &dockerbuild.ImageArgs{
 			Dockerfile: &dockerbuild.DockerfileArgs{
 				Location: pulumi.String("./app/Dockerfile.buildArgs"),
 			},
 			Context: &dockerbuild.BuildContextArgs{
 				Location: pulumi.String("./app"),
 			},
 			BuildArgs: pulumi.StringMap{
 				"SET_ME_TO_TRUE": pulumi.String("true"),
 			},
 		})
 		if err != nil {
 			return err
 		}
 		_, err = dockerbuild.NewImage(ctx, "extraHosts", &dockerbuild.ImageArgs{
 			Dockerfile: &dockerbuild.DockerfileArgs{
 				Location: pulumi.String("./app/Dockerfile.extraHosts"),
 			},
 			Context: &dockerbuild.BuildContextArgs{
 				Location: pulumi.String("./app"),
 			},
 			AddHosts: pulumi.StringArray{
 				pulumi.String("metadata.google.internal:169.254.169.254"),
 			},
 		})
 		if err != nil {
 			return err
 		}
 		_, err = dockerbuild.NewImage(ctx, "sshMount", &dockerbuild.ImageArgs{
 			Dockerfile: &dockerbuild.DockerfileArgs{
 				Location: pulumi.String("./app/Dockerfile.sshMount"),
 			},
 			Context: &dockerbuild.BuildContextArgs{
 				Location: pulumi.String("./app"),
 			},
 			Ssh: dockerbuild.SSHArray{
 				&dockerbuild.SSHArgs{
 					Id: pulumi.String("default"),
 				},
 			},
 		})
 		if err != nil {
 			return err
 		}
 		_, err = dockerbuild.NewImage(ctx, "secrets", &dockerbuild.ImageArgs{
 			Dockerfile: &dockerbuild.DockerfileArgs{
 				Location: pulumi.String("./app/Dockerfile.secrets"),
 			},
 			Context: &dockerbuild.BuildContextArgs{
 				Location: pulumi.String("./app"),
 			},
 			Secrets: pulumi.StringMap{
 				"password": pulumi.String("hunter2"),
 			},
 		})
 		if err != nil {
 			return err
 		}
 		_, err = dockerbuild.NewImage(ctx, "labels", &dockerbuild.ImageArgs{
 			Context: &dockerbuild.BuildContextArgs{
 				Location: pulumi.String("./app"),
 			},
 			Labels: pulumi.StringMap{
 				"description": pulumi.String("This image will get a descriptive label 👍"),
 			},
 		})
 		if err != nil {
 			return err
 		}
 		_, err = dockerbuild.NewImage(ctx, "target", &dockerbuild.ImageArgs{
 			Dockerfile: &dockerbuild.DockerfileArgs{
 				Location: pulumi.String("./app/Dockerfile.target"),
 			},
 			Context: &dockerbuild.BuildContextArgs{
 				Location: pulumi.String("./app"),
 			},
 			Target: pulumi.String("build-me"),
 		})
 		if err != nil {
 			return err
 		}
 		_, err = dockerbuild.NewImage(ctx, "namedContexts", &dockerbuild.ImageArgs{
 			Dockerfile: &dockerbuild.DockerfileArgs{
 				Location: pulumi.String("./app/Dockerfile.namedContexts"),
 			},
 			Context: &dockerbuild.BuildContextArgs{
 				Location: pulumi.String("./app"),
 				Named: dockerbuild.ContextMap{
 					"golang:latest": &dockerbuild.ContextArgs{
 						Location: pulumi.String("docker-image://golang@sha256:b8e62cf593cdaff36efd90aa3a37de268e6781a2e68c6610940c48f7cdf36984"),
 					},
 				},
 			},
 		})
 		if err != nil {
 			return err
 		}
 		_, err = dockerbuild.NewImage(ctx, "remoteContext", &dockerbuild.ImageArgs{
 			Context: &dockerbuild.BuildContextArgs{
 				Location: pulumi.String("https://raw.githubusercontent.com/pulumi/pulumi-docker/api-types/provider/testdata/Dockerfile"),
 			},
 		})
 		if err != nil {
 			return err
 		}
 		_, err = dockerbuild.NewImage(ctx, "remoteContextWithInline", &dockerbuild.ImageArgs{
 			Dockerfile: &dockerbuild.DockerfileArgs{
 				Inline: pulumi.String("FROM busybox\nCOPY hello.c ./\n"),
 			},
 			Context: &dockerbuild.BuildContextArgs{
 				Location: pulumi.String("https://github.com/docker-library/hello-world.git"),
 			},
 		})
 		if err != nil {
 			return err
 		}
 		_, err = dockerbuild.NewImage(ctx, "inline", &dockerbuild.ImageArgs{
 			Dockerfile: &dockerbuild.DockerfileArgs{
 				Inline: pulumi.String("FROM alpine\nRUN echo \"This uses an inline Dockerfile! 👍\"\n"),
 			},
 			Context: &dockerbuild.BuildContextArgs{
 				Location: pulumi.String("./app"),
 			},
 		})
 		if err != nil {
 			return err
 		}
 		_, err = dockerbuild.NewImage(ctx, "dockerLoad", &dockerbuild.ImageArgs{
 			Context: &dockerbuild.BuildContextArgs{
 				Location: pulumi.String("./app"),
 			},
 			Exports: dockerbuild.ExportArray{
 				&dockerbuild.ExportArgs{
 					Docker: &dockerbuild.ExportDockerArgs{
 						Tar: pulumi.Bool(true),
 					},
 				},
 			},
 		})
 		if err != nil {
 			return err
 		}
 		ctx.Export("platforms", multiPlatform.Platforms)
 		return nil
 	})
 }
--- a/examples/go_test.go
+++ b/examples/go_test.go
@@ -0,0 +1,30 @@
 //go:build go || all
 // +build go all
 package examples
 import (
 	"os"
 	"path"
 	"testing"
 	"github.com/pulumi/pulumi/pkg/v3/testing/integration"
 	"github.com/stretchr/testify/require"
 )
 func TestGoExample(t *testing.T) {
 	cwd, err := os.Getwd()
 	require.NoError(t, err)
 	test := integration.ProgramTestOptions{
 		Dir: path.Join(cwd, "go"),
 		Dependencies: []string{
 			"github.com/pulumi/pulumi-dockerbuild/sdk/go/dockerbuild=../sdk/go/dockerbuild",
 		},
 		Secrets: map[string]string{
 			"dockerHubPassword": os.Getenv("DOCKER_HUB_PASSWORD"),
 		},
 	}
 	integration.ProgramTest(t, &test)
 }
--- a/examples/java/Pulumi.yaml
+++ b/examples/java/Pulumi.yaml
@@ -0,0 +1,10 @@
 name: provider-dockerbuild
 runtime: java
 config:
  dockerHubPassword:
    type: string
    secret: true
 plugins:
  providers:
    - name: dockerbuild
      path: ../../bin
--- a/examples/java/app/Dockerfile
+++ b/examples/java/app/Dockerfile
@@ -0,0 +1,2 @@
 FROM alpine
 RUN echo 👍
--- a/examples/java/app/Dockerfile.buildArgs
+++ b/examples/java/app/Dockerfile.buildArgs
@@ -0,0 +1,5 @@
 FROM alpine
 ARG SET_ME_TO_TRUE
 RUN [ "$SET_ME_TO_TRUE" = "true" ]
 RUN echo "That's the correct build arg, thanks! 👍"
--- a/examples/java/app/Dockerfile.emptyContext
+++ b/examples/java/app/Dockerfile.emptyContext
@@ -0,0 +1,2 @@
 FROM alpine
 RUN echo "This image doesn't use any local files, so it doesn't need a context parameter 👍"
--- a/examples/java/app/Dockerfile.extraHosts
+++ b/examples/java/app/Dockerfile.extraHosts
@@ -0,0 +1,3 @@
 FROM bash AS base
 RUN getent hosts metadata.google.internal
--- a/examples/java/app/Dockerfile.multiPlatform
+++ b/examples/java/app/Dockerfile.multiPlatform
@@ -0,0 +1,7 @@
 FROM --platform=$BUILDPLATFORM alpine as build
 RUN echo ${BUILDPLATFORM} > buildplatform
 RUN echo ${TARGETPLATFORM} > targetplatform
 FROM build
 RUN cat buildplatform
 RUN cat targetplatform
--- a/examples/java/app/Dockerfile.namedContexts
+++ b/examples/java/app/Dockerfile.namedContexts
@@ -0,0 +1,5 @@
 # syntax=docker/dockerfile:1.4
 FROM golang:latest
 RUN version="$(go version)" && echo $version && [ "$version" = "go version go1.21.7 linux/amd64" ]
 RUN echo "This image uses named contexts to pin golang:latest to a specific SHA 👍"
--- a/examples/java/app/Dockerfile.secrets
+++ b/examples/java/app/Dockerfile.secrets
@@ -0,0 +1,4 @@
 FROM alpine
 RUN --mount=type=secret,id=password [ "$(cat /run/secrets/password)" = "hunter2" ]
--- a/examples/java/app/Dockerfile.sshMount
+++ b/examples/java/app/Dockerfile.sshMount
@@ -0,0 +1,5 @@
 FROM alpine
 RUN apk add openssh-client
 RUN --mount=type=ssh ssh-add -l
--- a/examples/java/app/Dockerfile.target
+++ b/examples/java/app/Dockerfile.target
@@ -0,0 +1,8 @@
 FROM alpine as build-me
 RUN echo 👍
 FROM build-me as also-build-me
 RUN echo 🤙
 FROM build-me as dont-build-me
 RUN [ "true" = "false" ]
--- a/examples/java/pom.xml
+++ b/examples/java/pom.xml
@@ -0,0 +1,92 @@
 <?xml version="1.0" encoding="UTF-8"?>
 		<project xmlns="http://maven.apache.org/POM/4.0.0"
 				 xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 				 xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
 			<modelVersion>4.0.0</modelVersion>
 			<groupId>com.pulumi</groupId>
 			<artifactId>provider-dockerbuild</artifactId>
 			<version>1.0-SNAPSHOT</version>
 			<properties>
 				<encoding>UTF-8</encoding>
 				<maven.compiler.source>11</maven.compiler.source>
 				<maven.compiler.target>11</maven.compiler.target>
 				<maven.compiler.release>11</maven.compiler.release>
 				<mainClass>generated_program.App</mainClass>
 				<mainArgs/>
 			</properties>
 			<dependencies>
 				<dependency>
 					<groupId>com.pulumi</groupId>
 					<artifactId>pulumi</artifactId>
 					<version>(,1.0]</version>
 				</dependency>
 				<dependency>
            		<groupId>com.pulumi</groupId>
            		<artifactId>dockerbuild</artifactId>
                    <version>[0.0.0,)</version>
        		</dependency>
 			</dependencies>
 			<build>
 				<plugins>
 					<plugin>
 						<groupId>org.apache.maven.plugins</groupId>
 						<artifactId>maven-jar-plugin</artifactId>
 						<version>3.2.2</version>
 						<configuration>
 							<archive>
 								<manifest>
 									<addClasspath>true</addClasspath>
 									<mainClass>${mainClass}</mainClass>
 								</manifest>
 							</archive>
 						</configuration>
 					</plugin>
 					<plugin>
 						<groupId>org.apache.maven.plugins</groupId>
 						<artifactId>maven-assembly-plugin</artifactId>
 						<version>3.4.2</version>
 						<configuration>
 							<archive>
 								<manifest>
 									<addClasspath>true</addClasspath>
 									<mainClass>${mainClass}</mainClass>
 								</manifest>
 							</archive>
 							<descriptorRefs>
 								<descriptorRef>jar-with-dependencies</descriptorRef>
 							</descriptorRefs>
 						</configuration>
 						<executions>
 							<execution>
 								<id>make-my-jar-with-dependencies</id>
 								<phase>package</phase>
 								<goals>
 									<goal>single</goal>
 								</goals>
 							</execution>
 						</executions>
 					</plugin>
 					<plugin>
 						<groupId>org.codehaus.mojo</groupId>
 						<artifactId>exec-maven-plugin</artifactId>
 						<version>3.1.0</version>
 						<configuration>
 							<mainClass>${mainClass}</mainClass>
 							<commandlineArgs>${mainArgs}</commandlineArgs>
 						</configuration>
 					</plugin>
 					<plugin>
 						<groupId>org.apache.maven.plugins</groupId>
 						<artifactId>maven-wrapper-plugin</artifactId>
 						<version>3.1.1</version>
 						<configuration>
 							<mavenVersion>3.8.5</mavenVersion>
 						</configuration>
 					</plugin>
 				</plugins>
 			</build>
 		</project>
--- a/examples/java/src/main/java/generated_program/App.java
+++ b/examples/java/src/main/java/generated_program/App.java
@@ -0,0 +1,193 @@
 package generated_program;
 import com.pulumi.Context;
 import com.pulumi.Pulumi;
 import com.pulumi.core.Output;
 import com.pulumi.dockerbuild.Image;
 import com.pulumi.dockerbuild.ImageArgs;
 import com.pulumi.dockerbuild.inputs.DockerfileArgs;
 import com.pulumi.dockerbuild.inputs.BuildContextArgs;
 import com.pulumi.dockerbuild.inputs.ExportArgs;
 import com.pulumi.dockerbuild.inputs.ExportRegistryArgs;
 import com.pulumi.dockerbuild.inputs.RegistryArgs;
 import com.pulumi.dockerbuild.inputs.CacheToArgs;
 import com.pulumi.dockerbuild.inputs.CacheToLocalArgs;
 import com.pulumi.dockerbuild.inputs.CacheFromArgs;
 import com.pulumi.dockerbuild.inputs.CacheFromLocalArgs;
 import com.pulumi.dockerbuild.inputs.SSHArgs;
 import com.pulumi.dockerbuild.inputs.ExportDockerArgs;
 import java.util.List;
 import java.util.ArrayList;
 import java.util.Map;
 import java.io.File;
 import java.nio.file.Files;
 import java.nio.file.Paths;
 public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        final var config = ctx.config();
        final var dockerHubPassword = config.get("dockerHubPassword");
        var multiPlatform = new Image("multiPlatform", ImageArgs.builder()        
            .dockerfile(DockerfileArgs.builder()
                .location("./app/Dockerfile.multiPlatform")
                .build())
            .context(BuildContextArgs.builder()
                .location("./app")
                .build())
            .platforms(            
                "plan9/amd64",
                "plan9/386")
            .build());
        var registryPush = new Image("registryPush", ImageArgs.builder()        
            .context(BuildContextArgs.builder()
                .location("./app")
                .build())
            .tags("docker.io/pulumibot/buildkit-e2e:example")
            .exports(ExportArgs.builder()
                .registry(ExportRegistryArgs.builder()
                    .ociMediaTypes(true)
                    .push(false)
                    .build())
                .build())
            .registries(RegistryArgs.builder()
                .address("docker.io")
                .username("pulumibot")
                .password(dockerHubPassword)
                .build())
            .build());
        var cached = new Image("cached", ImageArgs.builder()        
            .context(BuildContextArgs.builder()
                .location("./app")
                .build())
            .cacheTo(CacheToArgs.builder()
                .local(CacheToLocalArgs.builder()
                    .dest("tmp/cache")
                    .mode("max")
                    .build())
                .build())
            .cacheFrom(CacheFromArgs.builder()
                .local(CacheFromLocalArgs.builder()
                    .src("tmp/cache")
                    .build())
                .build())
            .build());
        var buildArgs = new Image("buildArgs", ImageArgs.builder()        
            .dockerfile(DockerfileArgs.builder()
                .location("./app/Dockerfile.buildArgs")
                .build())
            .context(BuildContextArgs.builder()
                .location("./app")
                .build())
            .buildArgs(Map.of("SET_ME_TO_TRUE", "true"))
            .build());
        var extraHosts = new Image("extraHosts", ImageArgs.builder()        
            .dockerfile(DockerfileArgs.builder()
                .location("./app/Dockerfile.extraHosts")
                .build())
            .context(BuildContextArgs.builder()
                .location("./app")
                .build())
            .addHosts("metadata.google.internal:169.254.169.254")
            .build());
        var sshMount = new Image("sshMount", ImageArgs.builder()        
            .dockerfile(DockerfileArgs.builder()
                .location("./app/Dockerfile.sshMount")
                .build())
            .context(BuildContextArgs.builder()
                .location("./app")
                .build())
            .ssh(SSHArgs.builder()
                .id("default")
                .build())
            .build());
        var secrets = new Image("secrets", ImageArgs.builder()        
            .dockerfile(DockerfileArgs.builder()
                .location("./app/Dockerfile.secrets")
                .build())
            .context(BuildContextArgs.builder()
                .location("./app")
                .build())
            .secrets(Map.of("password", "hunter2"))
            .build());
        var labels = new Image("labels", ImageArgs.builder()        
            .context(BuildContextArgs.builder()
                .location("./app")
                .build())
            .labels(Map.of("description", "This image will get a descriptive label 👍"))
            .build());
        var target = new Image("target", ImageArgs.builder()        
            .dockerfile(DockerfileArgs.builder()
                .location("./app/Dockerfile.target")
                .build())
            .context(BuildContextArgs.builder()
                .location("./app")
                .build())
            .target("build-me")
            .build());
        var namedContexts = new Image("namedContexts", ImageArgs.builder()        
            .dockerfile(DockerfileArgs.builder()
                .location("./app/Dockerfile.namedContexts")
                .build())
            .context(BuildContextArgs.builder()
                .location("./app")
                .named(Map.of("golang:latest", Map.of("location", "docker-image://golang@sha256:b8e62cf593cdaff36efd90aa3a37de268e6781a2e68c6610940c48f7cdf36984")))
                .build())
            .build());
        var remoteContext = new Image("remoteContext", ImageArgs.builder()        
            .context(BuildContextArgs.builder()
                .location("https://raw.githubusercontent.com/pulumi/pulumi-docker/api-types/provider/testdata/Dockerfile")
                .build())
            .build());
        var remoteContextWithInline = new Image("remoteContextWithInline", ImageArgs.builder()        
            .dockerfile(DockerfileArgs.builder()
                .inline("""
 FROM busybox
 COPY hello.c ./
                """)
                .build())
            .context(BuildContextArgs.builder()
                .location("https://github.com/docker-library/hello-world.git")
                .build())
            .build());
        var inline = new Image("inline", ImageArgs.builder()        
            .dockerfile(DockerfileArgs.builder()
                .inline("""
 FROM alpine
 RUN echo "This uses an inline Dockerfile! 👍"
                """)
                .build())
            .context(BuildContextArgs.builder()
                .location("./app")
                .build())
            .build());
        var dockerLoad = new Image("dockerLoad", ImageArgs.builder()        
            .context(BuildContextArgs.builder()
                .location("./app")
                .build())
            .exports(ExportArgs.builder()
                .docker(ExportDockerArgs.builder()
                    .tar(true)
                    .build())
                .build())
            .build());
        ctx.export("platforms", multiPlatform.platforms());
    }
 }
--- a/examples/java_test.go
+++ b/examples/java_test.go
@@ -0,0 +1,29 @@
 //go:build java || all
 // +build java all
 package examples
 import (
 	"os"
 	"path"
 	"testing"
 	"github.com/pulumi/pulumi/pkg/v3/testing/integration"
 	"github.com/stretchr/testify/require"
 )
 func TestJavaExample(t *testing.T) {
 	t.Skip("not working yet")
 	cwd, err := os.Getwd()
 	require.NoError(t, err)
 	test := integration.ProgramTestOptions{
 		Dir: path.Join(cwd, "java"),
 		Secrets: map[string]string{
 			"dockerHubPassword": os.Getenv("DOCKER_HUB_PASSWORD"),
 		},
 	}
 	integration.ProgramTest(t, &test)
 }
--- a/examples/main_test.go
+++ b/examples/main_test.go
@@ -0,0 +1,50 @@
 package examples
 import (
 	"crypto/rand"
 	"crypto/rsa"
 	"net"
 	"os"
 	"path/filepath"
 	"testing"
 	"golang.org/x/crypto/ssh/agent"
 )
 func TestMain(m *testing.M) {
 	sock := sshagent()
 	os.Setenv("SSH_AUTH_SOCK", sock)
 	os.Exit(m.Run())
 }
 // sshagent crates an in-memory SSH agent with one identity.
 func sshagent() string {
 	dir := os.TempDir()
 	sock := filepath.Join(dir, "test.sock")
 	// In case it already exists.
 	_ = os.Remove(sock)
 	l, err := net.Listen("unix", sock)
 	if err != nil {
 		panic(err)
 	}
 	a := agent.NewKeyring()
 	key, err := rsa.GenerateKey(rand.Reader, 2048)
 	if err != nil {
 		panic(err)
 	}
 	_ = a.Add(agent.AddedKey{PrivateKey: key})
 	go func() {
 		conn, err := l.Accept()
 		if err != nil {
 			panic(err)
 		}
 		agent.ServeAgent(a, conn)
 	}()
 	return sock
 }
--- a/examples/nodejs/Pulumi.yaml
+++ b/examples/nodejs/Pulumi.yaml
@@ -1,6 +1,10 @@
-name: provider-docker-native
+name: provider-dockerbuild
 runtime: nodejs
 config:
  dockerHubPassword:
    type: string
    secret: true
 plugins:
  providers:
-    - name: docker-native
+    - name: dockerbuild
      path: ../../bin
--- a/examples/nodejs/app/Dockerfile
+++ b/examples/nodejs/app/Dockerfile
@@ -0,0 +1,2 @@
 FROM alpine
 RUN echo 👍
--- a/examples/nodejs/app/Dockerfile.buildArgs
+++ b/examples/nodejs/app/Dockerfile.buildArgs
@@ -0,0 +1,5 @@
 FROM alpine
 ARG SET_ME_TO_TRUE
 RUN [ "$SET_ME_TO_TRUE" = "true" ]
 RUN echo "That's the correct build arg, thanks! 👍"
--- a/examples/nodejs/app/Dockerfile.emptyContext
+++ b/examples/nodejs/app/Dockerfile.emptyContext
@@ -0,0 +1,2 @@
 FROM alpine
 RUN echo "This image doesn't use any local files, so it doesn't need a context parameter 👍"
--- a/examples/nodejs/app/Dockerfile.extraHosts
+++ b/examples/nodejs/app/Dockerfile.extraHosts
@@ -0,0 +1,3 @@
 FROM bash AS base
 RUN getent hosts metadata.google.internal
--- a/examples/nodejs/app/Dockerfile.multiPlatform
+++ b/examples/nodejs/app/Dockerfile.multiPlatform
@@ -0,0 +1,7 @@
 FROM --platform=$BUILDPLATFORM alpine as build
 RUN echo ${BUILDPLATFORM} > buildplatform
 RUN echo ${TARGETPLATFORM} > targetplatform
 FROM build
 RUN cat buildplatform
 RUN cat targetplatform
--- a/examples/nodejs/app/Dockerfile.namedContexts
+++ b/examples/nodejs/app/Dockerfile.namedContexts
@@ -0,0 +1,5 @@
 # syntax=docker/dockerfile:1.4
 FROM golang:latest
 RUN version="$(go version)" && echo $version && [ "$version" = "go version go1.21.7 linux/amd64" ]
 RUN echo "This image uses named contexts to pin golang:latest to a specific SHA 👍"
--- a/examples/nodejs/app/Dockerfile.secrets
+++ b/examples/nodejs/app/Dockerfile.secrets
@@ -0,0 +1,4 @@
 FROM alpine
 RUN --mount=type=secret,id=password [ "$(cat /run/secrets/password)" = "hunter2" ]
--- a/examples/nodejs/app/Dockerfile.sshMount
+++ b/examples/nodejs/app/Dockerfile.sshMount
@@ -0,0 +1,5 @@
 FROM alpine
 RUN apk add openssh-client
 RUN --mount=type=ssh ssh-add -l
--- a/examples/nodejs/app/Dockerfile.target
+++ b/examples/nodejs/app/Dockerfile.target
@@ -0,0 +1,8 @@
 FROM alpine as build-me
 RUN echo 👍
 FROM build-me as also-build-me
 RUN echo 🤙
 FROM build-me as dont-build-me
 RUN [ "true" = "false" ]
--- a/examples/nodejs/index.ts
+++ b/examples/nodejs/index.ts
@@ -1,7 +1,156 @@
 import * as pulumi from "@pulumi/pulumi";
-import * as docker_native from "@pulumi/docker-native";
+import * as dockerbuild from "@pulumi/dockerbuild";
-const myRandomResource = new docker_native.Random("myRandomResource", {length: 24});
+const config = new pulumi.Config();
-export const output = {
+const dockerHubPassword = config.require("dockerHubPassword");
-    value: myRandomResource.result,
+const multiPlatform = new dockerbuild.Image("multiPlatform", {
-};
+    dockerfile: {
        location: "./app/Dockerfile.multiPlatform",
    },
    context: {
        location: "./app",
    },
    platforms: [
        dockerbuild.Platform.Plan9_amd64,
        dockerbuild.Platform.Plan9_386,
    ],
 });
 const registryPush = new dockerbuild.Image("registryPush", {
    context: {
        location: "./app",
    },
    tags: ["docker.io/pulumibot/buildkit-e2e:example"],
    exports: [{
        registry: {
            ociMediaTypes: true,
            push: false,
        },
    }],
    registries: [{
        address: "docker.io",
        username: "pulumibot",
        password: dockerHubPassword,
    }],
 });
 const cached = new dockerbuild.Image("cached", {
    context: {
        location: "./app",
    },
    cacheTo: [{
        local: {
            dest: "tmp/cache",
            mode: dockerbuild.CacheMode.Max,
        },
    }],
    cacheFrom: [{
        local: {
            src: "tmp/cache",
        },
    }],
 });
 const buildArgs = new dockerbuild.Image("buildArgs", {
    dockerfile: {
        location: "./app/Dockerfile.buildArgs",
    },
    context: {
        location: "./app",
    },
    buildArgs: {
        SET_ME_TO_TRUE: "true",
    },
 });
 const extraHosts = new dockerbuild.Image("extraHosts", {
    dockerfile: {
        location: "./app/Dockerfile.extraHosts",
    },
    context: {
        location: "./app",
    },
    addHosts: ["metadata.google.internal:169.254.169.254"],
 });
 const sshMount = new dockerbuild.Image("sshMount", {
    dockerfile: {
        location: "./app/Dockerfile.sshMount",
    },
    context: {
        location: "./app",
    },
    ssh: [{
        id: "default",
    }],
 });
 const secrets = new dockerbuild.Image("secrets", {
    dockerfile: {
        location: "./app/Dockerfile.secrets",
    },
    context: {
        location: "./app",
    },
    secrets: {
        password: "hunter2",
    },
 });
 const labels = new dockerbuild.Image("labels", {
    context: {
        location: "./app",
    },
    labels: {
        description: "This image will get a descriptive label 👍",
    },
 });
 const target = new dockerbuild.Image("target", {
    dockerfile: {
        location: "./app/Dockerfile.target",
    },
    context: {
        location: "./app",
    },
    target: "build-me",
 });
 const namedContexts = new dockerbuild.Image("namedContexts", {
    dockerfile: {
        location: "./app/Dockerfile.namedContexts",
    },
    context: {
        location: "./app",
        named: {
            "golang:latest": {
                location: "docker-image://golang@sha256:b8e62cf593cdaff36efd90aa3a37de268e6781a2e68c6610940c48f7cdf36984",
            },
        },
    },
 });
 const remoteContext = new dockerbuild.Image("remoteContext", {context: {
    location: "https://raw.githubusercontent.com/pulumi/pulumi-docker/api-types/provider/testdata/Dockerfile",
 }});
 const remoteContextWithInline = new dockerbuild.Image("remoteContextWithInline", {
    dockerfile: {
        inline: `FROM busybox
 COPY hello.c ./
 `,
    },
    context: {
        location: "https://github.com/docker-library/hello-world.git",
    },
 });
 const inline = new dockerbuild.Image("inline", {
    dockerfile: {
        inline: `FROM alpine
 RUN echo "This uses an inline Dockerfile! 👍"
 `,
    },
    context: {
        location: "./app",
    },
 });
 const dockerLoad = new dockerbuild.Image("dockerLoad", {
    context: {
        location: "./app",
    },
    exports: [{
        docker: {
            tar: true,
        },
    }],
 });
 export const platforms = multiPlatform.platforms;
--- a/examples/nodejs/package.json
+++ b/examples/nodejs/package.json
@@ -1,11 +1,11 @@
 {
-	"name": "provider-docker-native",
+  "name": "provider-dockerbuild",
-	"devDependencies": {
+  "devDependencies": {
-		"@types/node": "^14"
+    "@types/node": "^18"
-	},
+  },
-	"dependencies": {
+  "dependencies": {
-		"typescript": "^4.0.0",
+    "typescript": "^4.0.0",
-		"@pulumi/pulumi": "^3.0.0",
+    "@pulumi/pulumi": "^3.0.0"
-		"@pulumi/docker-native": "0.0.1-alpha.1709848295+3427e611.dirty"
+  }
 	}
 }
--- a/examples/nodejs_test.go
+++ b/examples/nodejs_test.go
@@ -0,0 +1,28 @@
 //go:build nodejs || all
 // +build nodejs all
 package examples
 import (
 	"os"
 	"path"
 	"testing"
 	"github.com/pulumi/pulumi/pkg/v3/testing/integration"
 	"github.com/stretchr/testify/require"
 )
 func TestNodeExample(t *testing.T) {
 	cwd, err := os.Getwd()
 	require.NoError(t, err)
 	test := integration.ProgramTestOptions{
 		Dir:          path.Join(cwd, "nodejs"),
 		Dependencies: []string{"@pulumi/dockerbuild"},
 		Secrets: map[string]string{
 			"dockerHubPassword": os.Getenv("DOCKER_HUB_PASSWORD"),
 		},
 	}
 	integration.ProgramTest(t, &test)
 }
--- a/examples/python/Pulumi.yaml
+++ b/examples/python/Pulumi.yaml
@@ -1,6 +1,10 @@
-name: provider-docker-native
+name: provider-dockerbuild
 runtime: python
 config:
  dockerHubPassword:
    type: string
    secret: true
 plugins:
  providers:
-    - name: docker-native
+    - name: dockerbuild
      path: ../../bin
--- a/examples/python/main.py
+++ b/examples/python/main.py
@@ -1,7 +1,143 @@
 import pulumi
-import pulumi_docker_native as docker_native
+import pulumi_dockerbuild as dockerbuild
-my_random_resource = docker_native.Random("myRandomResource", length=24)
+config = pulumi.Config()
-pulumi.export("output", {
+docker_hub_password = config.require("dockerHubPassword")
-    "value": my_random_resource.result,
+multi_platform = dockerbuild.Image("multiPlatform",
-})
+    dockerfile=dockerbuild.DockerfileArgs(
        location="./app/Dockerfile.multiPlatform",
    ),
    context=dockerbuild.BuildContextArgs(
        location="./app",
    ),
    platforms=[
        dockerbuild.Platform.PLAN9_AMD64,
        dockerbuild.Platform.PLAN9_386,
    ])
 registry_push = dockerbuild.Image("registryPush",
    context=dockerbuild.BuildContextArgs(
        location="./app",
    ),
    tags=["docker.io/pulumibot/buildkit-e2e:example"],
    exports=[dockerbuild.ExportArgs(
        registry=dockerbuild.ExportRegistryArgs(
            oci_media_types=True,
            push=False,
        ),
    )],
    registries=[dockerbuild.RegistryArgs(
        address="docker.io",
        username="pulumibot",
        password=docker_hub_password,
    )])
 cached = dockerbuild.Image("cached",
    context=dockerbuild.BuildContextArgs(
        location="./app",
    ),
    cache_to=[dockerbuild.CacheToArgs(
        local=dockerbuild.CacheToLocalArgs(
            dest="tmp/cache",
            mode=dockerbuild.CacheMode.MAX,
        ),
    )],
    cache_from=[dockerbuild.CacheFromArgs(
        local=dockerbuild.CacheFromLocalArgs(
            src="tmp/cache",
        ),
    )])
 build_args = dockerbuild.Image("buildArgs",
    dockerfile=dockerbuild.DockerfileArgs(
        location="./app/Dockerfile.buildArgs",
    ),
    context=dockerbuild.BuildContextArgs(
        location="./app",
    ),
    build_args={
        "SET_ME_TO_TRUE": "true",
    })
 extra_hosts = dockerbuild.Image("extraHosts",
    dockerfile=dockerbuild.DockerfileArgs(
        location="./app/Dockerfile.extraHosts",
    ),
    context=dockerbuild.BuildContextArgs(
        location="./app",
    ),
    add_hosts=["metadata.google.internal:169.254.169.254"])
 ssh_mount = dockerbuild.Image("sshMount",
    dockerfile=dockerbuild.DockerfileArgs(
        location="./app/Dockerfile.sshMount",
    ),
    context=dockerbuild.BuildContextArgs(
        location="./app",
    ),
    ssh=[dockerbuild.SSHArgs(
        id="default",
    )])
 secrets = dockerbuild.Image("secrets",
    dockerfile=dockerbuild.DockerfileArgs(
        location="./app/Dockerfile.secrets",
    ),
    context=dockerbuild.BuildContextArgs(
        location="./app",
    ),
    secrets={
        "password": "hunter2",
    })
 labels = dockerbuild.Image("labels",
    context=dockerbuild.BuildContextArgs(
        location="./app",
    ),
    labels={
        "description": "This image will get a descriptive label 👍",
    })
 target = dockerbuild.Image("target",
    dockerfile=dockerbuild.DockerfileArgs(
        location="./app/Dockerfile.target",
    ),
    context=dockerbuild.BuildContextArgs(
        location="./app",
    ),
    target="build-me")
 named_contexts = dockerbuild.Image("namedContexts",
    dockerfile=dockerbuild.DockerfileArgs(
        location="./app/Dockerfile.namedContexts",
    ),
    context=dockerbuild.BuildContextArgs(
        location="./app",
        named={
            "golang:latest": dockerbuild.ContextArgs(
                location="docker-image://golang@sha256:b8e62cf593cdaff36efd90aa3a37de268e6781a2e68c6610940c48f7cdf36984",
            ),
        },
    ))
 remote_context = dockerbuild.Image("remoteContext", context=dockerbuild.BuildContextArgs(
    location="https://raw.githubusercontent.com/pulumi/pulumi-docker/api-types/provider/testdata/Dockerfile",
 ))
 remote_context_with_inline = dockerbuild.Image("remoteContextWithInline",
    dockerfile=dockerbuild.DockerfileArgs(
        inline="""FROM busybox
 COPY hello.c ./
 """,
    ),
    context=dockerbuild.BuildContextArgs(
        location="https://github.com/docker-library/hello-world.git",
    ))
 inline = dockerbuild.Image("inline",
    dockerfile=dockerbuild.DockerfileArgs(
        inline="""FROM alpine
 RUN echo "This uses an inline Dockerfile! 👍"
 """,
    ),
    context=dockerbuild.BuildContextArgs(
        location="./app",
    ))
 docker_load = dockerbuild.Image("dockerLoad",
    context=dockerbuild.BuildContextArgs(
        location="./app",
    ),
    exports=[dockerbuild.ExportArgs(
        docker=dockerbuild.ExportDockerArgs(
            tar=True,
        ),
    )])
 pulumi.export("platforms", multi_platform.platforms)
--- a/examples/python/app/Dockerfile
+++ b/examples/python/app/Dockerfile
@@ -0,0 +1,2 @@
 FROM alpine
 RUN echo 👍
--- a/examples/python/app/Dockerfile.buildArgs
+++ b/examples/python/app/Dockerfile.buildArgs
@@ -0,0 +1,5 @@
 FROM alpine
 ARG SET_ME_TO_TRUE
 RUN [ "$SET_ME_TO_TRUE" = "true" ]
 RUN echo "That's the correct build arg, thanks! 👍"
--- a/examples/python/app/Dockerfile.emptyContext
+++ b/examples/python/app/Dockerfile.emptyContext
@@ -0,0 +1,2 @@
 FROM alpine
 RUN echo "This image doesn't use any local files, so it doesn't need a context parameter 👍"
--- a/examples/python/app/Dockerfile.extraHosts
+++ b/examples/python/app/Dockerfile.extraHosts
@@ -0,0 +1,3 @@
 FROM bash AS base
 RUN getent hosts metadata.google.internal
--- a/examples/python/app/Dockerfile.multiPlatform
+++ b/examples/python/app/Dockerfile.multiPlatform
@@ -0,0 +1,7 @@
 FROM --platform=$BUILDPLATFORM alpine as build
 RUN echo ${BUILDPLATFORM} > buildplatform
 RUN echo ${TARGETPLATFORM} > targetplatform
 FROM build
 RUN cat buildplatform
 RUN cat targetplatform
--- a/examples/python/app/Dockerfile.namedContexts
+++ b/examples/python/app/Dockerfile.namedContexts
@@ -0,0 +1,5 @@
 # syntax=docker/dockerfile:1.4
 FROM golang:latest
 RUN version="$(go version)" && echo $version && [ "$version" = "go version go1.21.7 linux/amd64" ]
 RUN echo "This image uses named contexts to pin golang:latest to a specific SHA 👍"
--- a/examples/python/app/Dockerfile.secrets
+++ b/examples/python/app/Dockerfile.secrets
@@ -0,0 +1,4 @@
 FROM alpine
 RUN --mount=type=secret,id=password [ "$(cat /run/secrets/password)" = "hunter2" ]
--- a/examples/python/app/Dockerfile.sshMount
+++ b/examples/python/app/Dockerfile.sshMount
@@ -0,0 +1,5 @@
 FROM alpine
 RUN apk add openssh-client
 RUN --mount=type=ssh ssh-add -l
--- a/examples/python/app/Dockerfile.target
+++ b/examples/python/app/Dockerfile.target
@@ -0,0 +1,8 @@
 FROM alpine as build-me
 RUN echo 👍
 FROM build-me as also-build-me
 RUN echo 🤙
 FROM build-me as dont-build-me
 RUN [ "true" = "false" ]
--- a/examples/python/requirements.txt
+++ b/examples/python/requirements.txt
@@ -1,2 +1 @@
 pulumi>=3.0.0,<4.0.0
 pulumi-docker-native==0.0.1-alpha.1709848295+3427e611.dirty
--- a/examples/python_test.go
+++ b/examples/python_test.go
@@ -0,0 +1,31 @@
 //go:build python || all
 // +build python all
 package examples
 import (
 	"os"
 	"path"
 	"testing"
 	"github.com/pulumi/pulumi/pkg/v3/testing/integration"
 	"github.com/stretchr/testify/require"
 )
 func TestPythonExample(t *testing.T) {
 	cwd, err := os.Getwd()
 	require.NoError(t, err)
 	test := integration.ProgramTestOptions{
 		Dir:             path.Join(cwd, "python"),
 		RelativeWorkDir: ".",
 		Dependencies: []string{
 			path.Join("..", "sdk", "python", "bin"),
 		},
 		Secrets: map[string]string{
 			"dockerHubPassword": os.Getenv("DOCKER_HUB_PASSWORD"),
 		},
 	}
 	integration.ProgramTest(t, &test)
 }
--- a/examples/tests/ecr/.dockerignore
+++ b/examples/tests/ecr/.dockerignore
@@ -0,0 +1 @@
 *
--- a/examples/tests/ecr/Pulumi.yaml
+++ b/examples/tests/ecr/Pulumi.yaml
@@ -0,0 +1,36 @@
 name: ecr
 description: Push to AWS ECR with caching
 outputs:
  ref: ${my-image.ref}
 resources:
  ecr-repository:
    type: aws:ecr:Repository
    properties:
      forceDelete: true
  my-image:
    type: dockerbuild:Image
    properties:
      tags:
        - ${ecr-repository.repositoryUrl}:tag-name
      push: true
      context:
        location: .
      dockerfile:
        inline: FROM alpine
      cacheFrom:
        - registry:
            ref: ${ecr-repository.repositoryUrl}:cache
      cacheTo:
        - registry:
            ref: ${ecr-repository.repositoryUrl}:cache
            imageManifest: true
            ociMediaTypes: true
      registries:
        - username: ${auth-token.userName}
          password: ${auth-token.password}
          address: ${ecr-repository.repositoryUrl}
 runtime: yaml
 variables:
  auth-token:
    fn::aws:ecr:getAuthorizationToken:
      registryId: ${ecr-repository.registryId}
--- a/examples/yaml/Pulumi.yaml
+++ b/examples/yaml/Pulumi.yaml
@@ -1,16 +1,181 @@
-name: provider-docker-native
+name: provider-dockerbuild
 runtime: yaml
 plugins:
  providers:
-    - name: docker-native
+    - name: dockerbuild
      path: ../../bin
 resources:
-  myRandomResource:
+  # docker buildx build -f app/Dockerfile.multiPlatform --platform plan9/amd64,plan9/386 app
-    type: docker-native:Random
+  multiPlatform:
    type: dockerbuild:Image
    properties:
-      length: 24
+      dockerfile:
        location: "./app/Dockerfile.multiPlatform"
      context:
        location: "./app"
      platforms:
        - plan9/amd64
        - plan9/386
  # docker buildx build --output=type=registry app
  registryPush:
    type: dockerbuild:Image
    properties:
      context:
        location: "./app"
      tags: ["docker.io/pulumibot/buildkit-e2e:example"]
      exports:
        - registry:
            ociMediaTypes: true
            push: false # Omit this to actually push images.
      registries:
        - address: docker.io
          username: pulumibot
          password: ${dockerHubPassword}
  # docker buildx build --cache-to=type=local,dest=tmp/cache,mode=max --cache-from=type=local,src=tmp/cache app
  cached:
    type: dockerbuild:Image
    properties:
      context:
        location: "./app"
      cacheTo:
        - local:
            dest: tmp/cache
            mode: max
      cacheFrom:
        - local:
            src: tmp/cache
  # docker buildx build -f app/Dockerfile.buildArgs --build-arg SET_ME_TO_TRUE=true app
  buildArgs:
    type: dockerbuild:Image
    properties:
      dockerfile:
        location: "./app/Dockerfile.buildArgs"
      context:
        location: "./app"
      buildArgs:
        SET_ME_TO_TRUE: "true"
  # docker buildx build -f app/Dockerfile.extraHosts --add-host metadata.google.internal:169.254.169.254 app
  extraHosts:
    type: dockerbuild:Image
    properties:
      dockerfile:
        location: "./app/Dockerfile.extraHosts"
      context:
        location: "./app"
      addHosts:
        - "metadata.google.internal:169.254.169.254"
  # docker buildx build -f app/Dockerfile.sshMount --ssh default app
  sshMount:
    type: dockerbuild:Image
    properties:
      dockerfile:
        location: "./app/Dockerfile.sshMount"
      context:
        location: "./app"
      ssh:
        - id: default
  # PASSWORD=hunter2 docker buildx build -f app/Dockerfile.secrets --secret id=password,env=PASSWORD app
  secrets:
    type: dockerbuild:Image
    properties:
      dockerfile:
        location: "./app/Dockerfile.secrets"
      context:
        location: "./app"
      secrets:
        password: hunter2
  # docker buildx build --label "description=This image will get a descriptive label 👍" app
  labels:
    type: dockerbuild:Image
    properties:
      context:
        location: "./app"
      labels:
        description: "This image will get a descriptive label 👍"
  # docker buildx build -f app/Dockerfile.target --target build-me app
  target:
    type: dockerbuild:Image
    properties:
      dockerfile:
        location: "./app/Dockerfile.target"
      context:
        location: "./app"
      target: "build-me"
  # docker buildx build -f app/Dockerfile.namedContexts \
  #   --build-context golang:latest=docker-image://golang@sha256:b8e62cf593cdaff36efd90aa3a37de268e6781a2e68c6610940c48f7cdf36984 app
  namedContexts:
    type: dockerbuild:Image
    properties:
      dockerfile:
        location: "./app/Dockerfile.namedContexts"
      context:
        location: "./app"
        named:
          "golang:latest":
            location: "docker-image://golang@sha256:b8e62cf593cdaff36efd90aa3a37de268e6781a2e68c6610940c48f7cdf36984"
  # docker buildx build https://raw.githubusercontent.com/pulumi/pulumi-docker/api-types/provider/testdata/Dockerfile
  remoteContext:
    type: dockerbuild:Image
    properties:
      context:
        location: "https://raw.githubusercontent.com/pulumi/pulumi-docker/api-types/provider/testdata/Dockerfile"
  # docker buildx build -f - https://github.com/docker-library/hello-world.git <<EOF
  #  FROM busybox
  #  COPY hello.c ./
  #  EOF
  remoteContextWithInline:
    type: dockerbuild:Image
    properties:
      dockerfile:
        inline: |
          FROM busybox
          COPY hello.c ./
      context:
        location: "https://github.com/docker-library/hello-world.git"
  # echo "FROM alpine" | docker buildx build -f - .
  inline:
    type: dockerbuild:Image
    properties:
      dockerfile:
        inline: |
          FROM alpine
          RUN echo "This uses an inline Dockerfile! 👍"
      context:
        location: "./app"
  # docker buildx build --load .
  dockerLoad:
    type: dockerbuild:Image
    properties:
      context:
        location: "./app"
      exports:
        - docker:
            tar: true
  # docker buildx build - < app/Dockerfile.emptyContext
  #emptyContext:
  #  type: dockerbuild:Image
  #  properties:
  #    file: "app/Dockerfile.emptyContext"
  #    context: "-"
 config:
  dockerHubPassword:
    type: string
    secret: true
 outputs:
-  output:
+  platforms: ${multiPlatform.platforms}
    value: ${myRandomResource.result}
--- a/examples/yaml/app/Dockerfile
+++ b/examples/yaml/app/Dockerfile
@@ -0,0 +1,2 @@
 FROM alpine
 RUN echo 👍
--- a/examples/yaml/app/Dockerfile.buildArgs
+++ b/examples/yaml/app/Dockerfile.buildArgs
@@ -0,0 +1,5 @@
 FROM alpine
 ARG SET_ME_TO_TRUE
 RUN [ "$SET_ME_TO_TRUE" = "true" ]
 RUN echo "That's the correct build arg, thanks! 👍"
--- a/examples/yaml/app/Dockerfile.emptyContext
+++ b/examples/yaml/app/Dockerfile.emptyContext
@@ -0,0 +1,2 @@
 FROM alpine
 RUN echo "This image doesn't use any local files, so it doesn't need a context parameter 👍"
--- a/Show More
+++ b/Show More
Author	SHA1	Message	Date
Bryce Lampe	3a9c246ffb	Fix build	2024-03-29 15:43:29 -07:00
Bryce Lampe	fe4de036f1	Upgrade go-provider for panic fix	2024-03-29 15:37:14 -07:00
Bryce Lampe	5cb5ccbf53	Fix ECR auth	2024-03-29 15:35:50 -07:00
Bryce Lampe	da2fecf013	Fix references to buildx.Image	2024-03-29 11:22:08 -07:00
Bryce Lampe	6efd4b045b	Add license to SDK	2024-03-28 10:52:17 -07:00
Bryce Lampe	b6c5d4d511	Fix go tests	2024-03-27 15:27:07 -07:00
Bryce Lampe	b455d9037f	Add an identity to the agent	2024-03-27 15:16:08 -07:00
Bryce Lampe	f9b5ed8f67	Use in-memory SSH agent	2024-03-27 13:53:41 -07:00
Bryce Lampe	16196bb547	Regenerate SDK	2024-03-27 12:18:57 -07:00
Bryce Lampe	5bec2f3e1c	Add SSH test	2024-03-27 11:30:40 -07:00
Bryce Lampe	91c652a702	Regenerate Go	2024-03-26 17:06:19 -07:00
Bryce Lampe	cbf957533e	more lint	2024-03-26 15:36:24 -07:00
Bryce Lampe	d50d156bd8	Forklift buildx provider	2024-03-26 13:30:22 -07:00
Bryce Lampe	2b348f84e4	Housekeeping (#8 ) * Rename the provider to dockerbuild. * Add Makefile targets required by CI. * Add per-language test targets compatible with CI. * Fix broken example yaml. * Add gitignore exclusions to fix SDK generation in CI. * Fix lint errors. * Vendor pulumi CLI via `tools.go` instead of `.pulumi`. * Consolidate `go.mod`s into one file, with a minimal `go.mod` for the Go SDK. * Add codecov.	2024-03-20 11:09:37 -07:00
Bryce Lampe	3eb77f66f2	Add a placeholder schema	2024-03-18 16:00:39 -07:00
Bryce Lampe	9c6f393c02	Merge pull request #11 from pulumi/update-github-actions-workflows-119 Update GitHub Actions workflows.	2024-03-18 13:53:41 -07:00
Pulumi Bot	ba8df7440e	[internal] Update GitHub Actions workflow files	2024-03-18 20:49:40 +00:00
Bryce Lampe	a7e6ea40b6	Merge pull request #4 from pulumi/update-github-actions-workflows-113 Update GitHub Actions workflows.	2024-03-07 16:34:42 -08:00
Pulumi Bot	ab17803a13	[internal] Update GitHub Actions workflow files	2024-03-08 00:33:32 +00:00
Bryce Lampe	cc462e188f	Tidy examples	2024-03-07 16:32:58 -08:00
Bryce Lampe	3d69361449	Disable CI	2024-03-07 16:29:04 -08:00
		`@@ -0,0 +1,2 @@`
							`sdk/*/ linguist-generated=true`
							`provider/internal/mock*.go linguist-generated=true`
		`@@ -0,0 +1,2 @@`
							`FROM alpine`
							`RUN echo "This image doesn't use any local files, so it doesn't need a context parameter 👍"`
		`@@ -0,0 +1,3 @@`
							`FROM bash AS base`

							`RUN getent hosts metadata.google.internal`
		`@@ -0,0 +1,4 @@`
							`FROM alpine`

							`RUN --mount=type=secret,id=password [ "$(cat /run/secrets/password)" = "hunter2" ]`
`@@ -1,2 +1 @@`
	`pulumi>=3.0.0,<4.0.0`	`pulumi>=3.0.0,<4.0.0`
	`pulumi-docker-native==0.0.1-alpha.1709848295+3427e611.dirty`