Managed Instance Group (autoscaling, autohealing)
A zonal Managed Instance Group built from a hardened Shielded-VM instance template, private by default, with optional CPU autoscaling, autohealing, and zero-downtime rolling template updates.
Verification
Live-testedReally deployed, verified, idempotent and destroyed in a cloud sandbox.
Conformance
- Static validation (fmt · validate · tflint)
- Security scan (Checkov)
- Plan tests (mocked: validation rules · outputs)
Provenance
- SHA-256 checksum
- Signature (pending)
Functional
- Live-tested — applied, verified, destroyed
Last verified 2026-06-30 · how we verify
Documentation
gcp-managed-instance-group
A zonal Managed Instance Group built from a hardened instance template:
Shielded VM, Debian 12, private by default (no external IP). Optional
CPU-based autoscaling and autohealing. The instance template is created
with create_before_destroy, so template changes roll without an outage. Works
with Terraform and OpenTofu (>= 1.6), Google provider >= 7.0, < 8.0.
What you get:
- A
google_compute_instance_template(e2-micro, 10 GBpd-balancedDebian 12, Shielded VM, OS Login) withcreate_before_destroy - A zonal
google_compute_instance_group_managerwith named ports, an update policy, and optional autohealing - An optional
google_compute_autoscaler(CPU target) that owns the group size
Requirements
| Requirement | Version |
|---|---|
| Terraform / OpenTofu | >= 1.6 |
hashicorp/google | >= 7.0, < 8.0 |
Verification
Static-validated (fmt, validate, tflint). Live apply/destroy testing pending cloud sandbox availability — see catalog status.
License
Commercial — IaC Bazaar EULA. © IaC Bazaar. Original work (not derived from a third-party module).
Usage code & full reference unlock after purchase
The complete copy-paste usage, the full input/output reference, and operational notes ship with your licence — shown here and bundled in the download.
- Usage
- Inputs
- Outputs