https://github.com/NixOS/amis

Home for NixOS AMI automation
https://github.com/NixOS/amis

Last synced: 5 months ago
JSON representation

Home for NixOS AMI automation

• Host: GitHub
• URL: https://github.com/NixOS/amis
• Owner: NixOS
• License: mit
• Created: 2023-11-24T12:54:23.000Z (about 2 years ago)
• Default Branch: main
• Last Pushed: 2025-08-05T00:41:03.000Z (5 months ago)
• Last Synced: 2025-08-05T02:31:57.215Z (5 months ago)
• Language: Python
• Homepage: https://nixos.github.io/amis/
• Size: 411 KB
• Stars: 65
• Watchers: 5
• Forks: 15
• Open Issues: 18
• Metadata Files:
  • Readme: README.md
  • Funding: .github/FUNDING.yml
  • License: LICENSE
  • Security: SECURITY.md

Awesome Lists containing this project

• best-of-nix - GitHub - 31% open · ⏱️ 29.09.2025) (DevOps)

README

          
# NixOS AMIs

[![OpenSSF Scorecard](https://api.scorecard.dev/projects/github.com/NixOS/amis/badge)](https://scorecard.dev/viewer/?uri=github.com/NixOS/amis)

[Join our Matrix Channel!](https://matrix.to/#/#aws:nixos.org)

Github Action that regularly uploads AMIs for release channels

## Can I use this to upload custom AMIs?

Yes! for example with a config like this:

```nix

{

  inputs.nixpkgs.url = "github:NixOS/nixpkgs/nixos-unstable";

  outputs = { nixpkgs, ... }: {

    nixosConfigurations.my-system = nixpkgs.lib.nixosSystem {

      modules = [

        "${nixpkgs}/nixos/maintainers/scripts/ec2/amazon-image.nix"

        {

          virtualisation.diskSize = "auto";  # or gigabytes. default is 3 * 1024

          nixpkgs.hostPlatform = "x86_64-linux";

          services.nginx.enable = true;

        }

      ];

    };

  };

}

```

you can upload it to your account like this:

```bash

nix build .#nixosConfigurations.my-system.config.system.build.amazonImage

nix run github:NixOS/amis#upload-ami -- --prefix my-system --s3-bucket my-bucket --image-info ./result/nix-support/image-info.json

```

## Setting up account

Some steps need to be done manually to set up the account.  This is a one time

process. These are hard to automate with Terraform.

First opt in to all regions:

```bash

nix run .#enable-regions

```

You might get rate-limited so need to wait and rerun until all finish:

```

botocore.errorfactory.TooManyRequestsException: An error occurred (TooManyRequestsException) when calling the EnableRegion operation (reached max retries: 4): This request has exceeded the quota for 'Number of concurrent region-opt requests for an account'. Consider retrying the operation later once some requests have been completed.

```

Now wait until all regions are enabled. You can use:

```

aws account list-regions --region-opt-status-contains ENABLING

```

Then request a quota increase for the number of AMIs you want to publish.

This will create support tickets in all regions.  You can check the status

of the tickets in the AWS console. It might take a few days for the tickets

to be resolved.

```bash

nix run .#request-public-ami-quota-increase -- --desired-value 1000

```

Finally enable public AMIs:

```bash

nix run .#disable-image-block-public-access

```