diff --git a/cli/server.go b/cli/server.go
index f9e744761b22e..5018007e2b4e8 100644
--- a/cli/server.go
+++ b/cli/server.go
@@ -62,12 +62,6 @@ import (
 	"github.com/coder/serpent"
 	"github.com/coder/wgtunnel/tunnelsdk"
 
-	"github.com/coder/coder/v2/coderd/entitlements"
-	"github.com/coder/coder/v2/coderd/notifications/reports"
-	"github.com/coder/coder/v2/coderd/runtimeconfig"
-	"github.com/coder/coder/v2/coderd/webpush"
-	"github.com/coder/coder/v2/codersdk/drpcsdk"
-
 	"github.com/coder/coder/v2/buildinfo"
 	"github.com/coder/coder/v2/cli/clilog"
 	"github.com/coder/coder/v2/cli/cliui"
@@ -83,15 +77,19 @@ import (
 	"github.com/coder/coder/v2/coderd/database/migrations"
 	"github.com/coder/coder/v2/coderd/database/pubsub"
 	"github.com/coder/coder/v2/coderd/devtunnel"
+	"github.com/coder/coder/v2/coderd/entitlements"
 	"github.com/coder/coder/v2/coderd/externalauth"
 	"github.com/coder/coder/v2/coderd/gitsshkey"
 	"github.com/coder/coder/v2/coderd/httpmw"
 	"github.com/coder/coder/v2/coderd/jobreaper"
 	"github.com/coder/coder/v2/coderd/notifications"
+	"github.com/coder/coder/v2/coderd/notifications/reports"
 	"github.com/coder/coder/v2/coderd/oauthpki"
 	"github.com/coder/coder/v2/coderd/prometheusmetrics"
 	"github.com/coder/coder/v2/coderd/prometheusmetrics/insights"
 	"github.com/coder/coder/v2/coderd/promoauth"
+	"github.com/coder/coder/v2/coderd/provisionerdserver"
+	"github.com/coder/coder/v2/coderd/runtimeconfig"
 	"github.com/coder/coder/v2/coderd/schedule"
 	"github.com/coder/coder/v2/coderd/telemetry"
 	"github.com/coder/coder/v2/coderd/tracing"
@@ -99,9 +97,11 @@ import (
 	"github.com/coder/coder/v2/coderd/util/ptr"
 	"github.com/coder/coder/v2/coderd/util/slice"
 	stringutil "github.com/coder/coder/v2/coderd/util/strings"
+	"github.com/coder/coder/v2/coderd/webpush"
 	"github.com/coder/coder/v2/coderd/workspaceapps/appurl"
 	"github.com/coder/coder/v2/coderd/workspacestats"
 	"github.com/coder/coder/v2/codersdk"
+	"github.com/coder/coder/v2/codersdk/drpcsdk"
 	"github.com/coder/coder/v2/cryptorand"
 	"github.com/coder/coder/v2/provisioner/echo"
 	"github.com/coder/coder/v2/provisioner/terraform"
@@ -280,6 +280,12 @@ func enablePrometheus(
 		}
 	}
 
+	provisionerdserverMetrics := provisionerdserver.NewMetrics(logger)
+	if err := provisionerdserverMetrics.Register(options.PrometheusRegistry); err != nil {
+		return nil, xerrors.Errorf("failed to register provisionerd_server metrics: %w", err)
+	}
+	options.ProvisionerdServerMetrics = provisionerdserverMetrics
+
 	//nolint:revive
 	return ServeHandler(
 		ctx, logger, promhttp.InstrumentMetricHandler(
diff --git a/coderd/coderd.go b/coderd/coderd.go
index 724952bde7bb9..053880ce31b89 100644
--- a/coderd/coderd.go
+++ b/coderd/coderd.go
@@ -241,6 +241,8 @@ type Options struct {
 	UpdateAgentMetrics func(ctx context.Context, labels prometheusmetrics.AgentMetricLabels, metrics []*agentproto.Stats_Metric)
 	StatsBatcher       workspacestats.Batcher
 
+	ProvisionerdServerMetrics *provisionerdserver.Metrics
+
 	// WorkspaceAppAuditSessionTimeout allows changing the timeout for audit
 	// sessions. Raising or lowering this value will directly affect the write
 	// load of the audit log table. This is used for testing. Default 1 hour.
@@ -1930,6 +1932,7 @@ func (api *API) CreateInMemoryTaggedProvisionerDaemon(dialCtx context.Context, n
 		},
 		api.NotificationsEnqueuer,
 		&api.PrebuildsReconciler,
+		api.ProvisionerdServerMetrics,
 	)
 	if err != nil {
 		return nil, err
diff --git a/coderd/coderdtest/coderdtest.go b/coderd/coderdtest/coderdtest.go
index 34ba84a85e33a..f773053c3a56c 100644
--- a/coderd/coderdtest/coderdtest.go
+++ b/coderd/coderdtest/coderdtest.go
@@ -184,6 +184,8 @@ type Options struct {
 	OIDCConvertKeyCache                cryptokeys.SigningKeycache
 	Clock                              quartz.Clock
 	TelemetryReporter                  telemetry.Reporter
+
+	ProvisionerdServerMetrics *provisionerdserver.Metrics
 }
 
 // New constructs a codersdk client connected to an in-memory API instance.
@@ -604,6 +606,7 @@ func NewOptions(t testing.TB, options *Options) (func(http.Handler), context.Can
 			Clock:                              options.Clock,
 			AppEncryptionKeyCache:              options.APIKeyEncryptionCache,
 			OIDCConvertKeyCache:                options.OIDCConvertKeyCache,
+			ProvisionerdServerMetrics:          options.ProvisionerdServerMetrics,
 		}
 }
 
diff --git a/coderd/database/dbauthz/dbauthz.go b/coderd/database/dbauthz/dbauthz.go
index d1363c974214f..53c58a5de15a7 100644
--- a/coderd/database/dbauthz/dbauthz.go
+++ b/coderd/database/dbauthz/dbauthz.go
@@ -2699,6 +2699,13 @@ func (q *querier) GetQuotaConsumedForUser(ctx context.Context, params database.G
 	return q.db.GetQuotaConsumedForUser(ctx, params)
 }
 
+func (q *querier) GetRegularWorkspaceCreateMetrics(ctx context.Context) ([]database.GetRegularWorkspaceCreateMetricsRow, error) {
+	if err := q.authorizeContext(ctx, policy.ActionRead, rbac.ResourceWorkspace.All()); err != nil {
+		return nil, err
+	}
+	return q.db.GetRegularWorkspaceCreateMetrics(ctx)
+}
+
 func (q *querier) GetReplicaByID(ctx context.Context, id uuid.UUID) (database.Replica, error) {
 	if err := q.authorizeContext(ctx, policy.ActionRead, rbac.ResourceSystem); err != nil {
 		return database.Replica{}, err
diff --git a/coderd/database/dbauthz/dbauthz_test.go b/coderd/database/dbauthz/dbauthz_test.go
index cda914cc47617..68bed8f2ef5e9 100644
--- a/coderd/database/dbauthz/dbauthz_test.go
+++ b/coderd/database/dbauthz/dbauthz_test.go
@@ -73,7 +73,9 @@ func TestAsNoActor(t *testing.T) {
 func TestPing(t *testing.T) {
 	t.Parallel()
 
-	db, _ := dbtestutil.NewDB(t)
+	db := dbmock.NewMockStore(gomock.NewController(t))
+	db.EXPECT().Wrappers().Times(1).Return([]string{})
+	db.EXPECT().Ping(gomock.Any()).Times(1).Return(time.Second, nil)
 	q := dbauthz.New(db, &coderdtest.RecordingAuthorizer{}, slog.Make(), coderdtest.AccessControlStorePointer())
 	_, err := q.Ping(context.Background())
 	require.NoError(t, err, "must not error")
@@ -83,34 +85,39 @@ func TestPing(t *testing.T) {
 func TestInTX(t *testing.T) {
 	t.Parallel()
 
-	db, _ := dbtestutil.NewDB(t)
+	var (
+		ctrl  = gomock.NewController(t)
+		db    = dbmock.NewMockStore(ctrl)
+		mTx   = dbmock.NewMockStore(ctrl) // to record the 'in tx' calls
+		faker = gofakeit.New(0)
+		w     = testutil.Fake(t, faker, database.Workspace{})
+		actor = rbac.Subject{
+			ID:     uuid.NewString(),
+			Roles:  rbac.RoleIdentifiers{rbac.RoleOwner()},
+			Groups: []string{},
+			Scope:  rbac.ScopeAll,
+		}
+		ctx = dbauthz.As(context.Background(), actor)
+	)
+
+	db.EXPECT().Wrappers().Times(1).Return([]string{}) // called by dbauthz.New
 	q := dbauthz.New(db, &coderdtest.RecordingAuthorizer{
 		Wrapped: (&coderdtest.FakeAuthorizer{}).AlwaysReturn(xerrors.New("custom error")),
 	}, slog.Make(), coderdtest.AccessControlStorePointer())
-	actor := rbac.Subject{
-		ID:     uuid.NewString(),
-		Roles:  rbac.RoleIdentifiers{rbac.RoleOwner()},
-		Groups: []string{},
-		Scope:  rbac.ScopeAll,
-	}
-	u := dbgen.User(t, db, database.User{})
-	o := dbgen.Organization(t, db, database.Organization{})
-	tpl := dbgen.Template(t, db, database.Template{
-		CreatedBy:      u.ID,
-		OrganizationID: o.ID,
-	})
-	w := dbgen.Workspace(t, db, database.WorkspaceTable{
-		OwnerID:        u.ID,
-		TemplateID:     tpl.ID,
-		OrganizationID: o.ID,
-	})
-	ctx := dbauthz.As(context.Background(), actor)
+
+	db.EXPECT().InTx(gomock.Any(), gomock.Any()).Times(1).DoAndReturn(
+		func(f func(database.Store) error, _ *database.TxOptions) error {
+			return f(mTx)
+		},
+	)
+	mTx.EXPECT().Wrappers().Times(1).Return([]string{})
+	mTx.EXPECT().GetWorkspaceByID(gomock.Any(), gomock.Any()).Times(1).Return(w, nil)
 	err := q.InTx(func(tx database.Store) error {
 		// The inner tx should use the parent's authz
 		_, err := tx.GetWorkspaceByID(ctx, w.ID)
 		return err
 	}, nil)
-	require.Error(t, err, "must error")
+	require.ErrorContains(t, err, "custom error", "must be our custom error")
 	require.ErrorAs(t, err, &dbauthz.NotAuthorizedError{}, "must be an authorized error")
 	require.True(t, dbauthz.IsNotAuthorizedError(err), "must be an authorized error")
 }
@@ -120,24 +127,18 @@ func TestNew(t *testing.T) {
 	t.Parallel()
 
 	var (
-		db, _ = dbtestutil.NewDB(t)
+		ctrl  = gomock.NewController(t)
+		db    = dbmock.NewMockStore(ctrl)
+		faker = gofakeit.New(0)
 		rec   = &coderdtest.RecordingAuthorizer{
 			Wrapped: &coderdtest.FakeAuthorizer{},
 		}
 		subj = rbac.Subject{}
 		ctx  = dbauthz.As(context.Background(), rbac.Subject{})
 	)
-	u := dbgen.User(t, db, database.User{})
-	org := dbgen.Organization(t, db, database.Organization{})
-	tpl := dbgen.Template(t, db, database.Template{
-		OrganizationID: org.ID,
-		CreatedBy:      u.ID,
-	})
-	exp := dbgen.Workspace(t, db, database.WorkspaceTable{
-		OwnerID:        u.ID,
-		OrganizationID: org.ID,
-		TemplateID:     tpl.ID,
-	})
+	db.EXPECT().Wrappers().Times(1).Return([]string{}).Times(2) // two calls to New()
+	exp := testutil.Fake(t, faker, database.Workspace{})
+	db.EXPECT().GetWorkspaceByID(gomock.Any(), exp.ID).Times(1).Return(exp, nil)
 	// Double wrap should not cause an actual double wrap. So only 1 rbac call
 	// should be made.
 	az := dbauthz.New(db, rec, slog.Make(), coderdtest.AccessControlStorePointer())
@@ -145,7 +146,7 @@ func TestNew(t *testing.T) {
 
 	w, err := az.GetWorkspaceByID(ctx, exp.ID)
 	require.NoError(t, err, "must not error")
-	require.Equal(t, exp, w.WorkspaceTable(), "must be equal")
+	require.Equal(t, exp, w, "must be equal")
 
 	rec.AssertActor(t, subj, rec.Pair(policy.ActionRead, exp))
 	require.NoError(t, rec.AllAsserted(), "should only be 1 rbac call")
@@ -154,6 +155,8 @@ func TestNew(t *testing.T) {
 // TestDBAuthzRecursive is a simple test to search for infinite recursion
 // bugs. It isn't perfect, and only catches a subset of the possible bugs
 // as only the first db call will be made. But it is better than nothing.
+// This can be removed when all tests in this package are migrated to
+// dbmock as it will immediately detect recursive calls.
 func TestDBAuthzRecursive(t *testing.T) {
 	t.Parallel()
 	db, _ := dbtestutil.NewDB(t)
@@ -2174,6 +2177,10 @@ func (s *MethodTestSuite) TestWorkspace() {
 		dbm.EXPECT().GetWorkspaceAgentDevcontainersByAgentID(gomock.Any(), agt.ID).Return([]database.WorkspaceAgentDevcontainer{d}, nil).AnyTimes()
 		check.Args(agt.ID).Asserts(w, policy.ActionRead).Returns([]database.WorkspaceAgentDevcontainer{d})
 	}))
+	s.Run("GetRegularWorkspaceCreateMetrics", s.Subtest(func(_ database.Store, check *expects) {
+		check.Args().
+			Asserts(rbac.ResourceWorkspace.All(), policy.ActionRead)
+	}))
 }
 
 func (s *MethodTestSuite) TestWorkspacePortSharing() {
diff --git a/coderd/database/dbmetrics/querymetrics.go b/coderd/database/dbmetrics/querymetrics.go
index 4b5e953d771dd..3f729acdccf23 100644
--- a/coderd/database/dbmetrics/querymetrics.go
+++ b/coderd/database/dbmetrics/querymetrics.go
@@ -1356,6 +1356,13 @@ func (m queryMetricsStore) GetQuotaConsumedForUser(ctx context.Context, ownerID
 	return consumed, err
 }
 
+func (m queryMetricsStore) GetRegularWorkspaceCreateMetrics(ctx context.Context) ([]database.GetRegularWorkspaceCreateMetricsRow, error) {
+	start := time.Now()
+	r0, r1 := m.s.GetRegularWorkspaceCreateMetrics(ctx)
+	m.queryLatencies.WithLabelValues("GetRegularWorkspaceCreateMetrics").Observe(time.Since(start).Seconds())
+	return r0, r1
+}
+
 func (m queryMetricsStore) GetReplicaByID(ctx context.Context, id uuid.UUID) (database.Replica, error) {
 	start := time.Now()
 	replica, err := m.s.GetReplicaByID(ctx, id)
diff --git a/coderd/database/dbmock/dbmock.go b/coderd/database/dbmock/dbmock.go
index 02415d6cb8ea4..4f01933baf42b 100644
--- a/coderd/database/dbmock/dbmock.go
+++ b/coderd/database/dbmock/dbmock.go
@@ -2851,6 +2851,21 @@ func (mr *MockStoreMockRecorder) GetQuotaConsumedForUser(ctx, arg any) *gomock.C
 	return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "GetQuotaConsumedForUser", reflect.TypeOf((*MockStore)(nil).GetQuotaConsumedForUser), ctx, arg)
 }
 
+// GetRegularWorkspaceCreateMetrics mocks base method.
+func (m *MockStore) GetRegularWorkspaceCreateMetrics(ctx context.Context) ([]database.GetRegularWorkspaceCreateMetricsRow, error) {
+	m.ctrl.T.Helper()
+	ret := m.ctrl.Call(m, "GetRegularWorkspaceCreateMetrics", ctx)
+	ret0, _ := ret[0].([]database.GetRegularWorkspaceCreateMetricsRow)
+	ret1, _ := ret[1].(error)
+	return ret0, ret1
+}
+
+// GetRegularWorkspaceCreateMetrics indicates an expected call of GetRegularWorkspaceCreateMetrics.
+func (mr *MockStoreMockRecorder) GetRegularWorkspaceCreateMetrics(ctx any) *gomock.Call {
+	mr.mock.ctrl.T.Helper()
+	return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "GetRegularWorkspaceCreateMetrics", reflect.TypeOf((*MockStore)(nil).GetRegularWorkspaceCreateMetrics), ctx)
+}
+
 // GetReplicaByID mocks base method.
 func (m *MockStore) GetReplicaByID(ctx context.Context, id uuid.UUID) (database.Replica, error) {
 	m.ctrl.T.Helper()
diff --git a/coderd/database/querier.go b/coderd/database/querier.go
index 28ed7609c53d6..6e955b82b0bce 100644
--- a/coderd/database/querier.go
+++ b/coderd/database/querier.go
@@ -306,6 +306,9 @@ type sqlcQuerier interface {
 	GetProvisionerLogsAfterID(ctx context.Context, arg GetProvisionerLogsAfterIDParams) ([]ProvisionerJobLog, error)
 	GetQuotaAllowanceForUser(ctx context.Context, arg GetQuotaAllowanceForUserParams) (int64, error)
 	GetQuotaConsumedForUser(ctx context.Context, arg GetQuotaConsumedForUserParams) (int64, error)
+	// Count regular workspaces: only those whose first successful 'start' build
+	// was not initiated by the prebuild system user.
+	GetRegularWorkspaceCreateMetrics(ctx context.Context) ([]GetRegularWorkspaceCreateMetricsRow, error)
 	GetReplicaByID(ctx context.Context, id uuid.UUID) (Replica, error)
 	GetReplicasUpdatedAfter(ctx context.Context, updatedAt time.Time) ([]Replica, error)
 	GetRunningPrebuiltWorkspaces(ctx context.Context) ([]GetRunningPrebuiltWorkspacesRow, error)
diff --git a/coderd/database/queries.sql.go b/coderd/database/queries.sql.go
index d527d90887093..d5495c4df5a8c 100644
--- a/coderd/database/queries.sql.go
+++ b/coderd/database/queries.sql.go
@@ -7309,7 +7309,7 @@ const getPrebuildMetrics = `-- name: GetPrebuildMetrics :many
 SELECT
 	t.name as template_name,
 	tvp.name as preset_name,
-		o.name as organization_name,
+	o.name as organization_name,
 	COUNT(*) as created_count,
 	COUNT(*) FILTER (WHERE pj.job_status = 'failed'::provisioner_job_status) as failed_count,
 	COUNT(*) FILTER (
@@ -20131,6 +20131,75 @@ func (q *sqlQuerier) GetDeploymentWorkspaceStats(ctx context.Context) (GetDeploy
 	return i, err
 }
 
+const getRegularWorkspaceCreateMetrics = `-- name: GetRegularWorkspaceCreateMetrics :many
+WITH first_success_build AS (
+	-- Earliest successful 'start' build per workspace
+	SELECT DISTINCT ON (wb.workspace_id)
+		wb.workspace_id,
+		wb.template_version_preset_id,
+		wb.initiator_id
+	FROM workspace_builds wb
+	JOIN provisioner_jobs pj ON pj.id = wb.job_id
+	WHERE
+		wb.transition = 'start'::workspace_transition
+  		AND pj.job_status = 'succeeded'::provisioner_job_status
+	ORDER BY wb.workspace_id, wb.build_number, wb.id
+)
+SELECT
+	t.name AS template_name,
+	COALESCE(tvp.name, '') AS preset_name,
+	o.name AS organization_name,
+	COUNT(*) AS created_count
+FROM first_success_build fsb
+	JOIN workspaces w ON w.id = fsb.workspace_id
+	JOIN templates t ON t.id = w.template_id
+	LEFT JOIN template_version_presets tvp ON tvp.id = fsb.template_version_preset_id
+	JOIN organizations o ON o.id = w.organization_id
+WHERE
+	NOT t.deleted
+	-- Exclude workspaces whose first successful start was the prebuilds system user
+	AND fsb.initiator_id != 'c42fdf75-3097-471c-8c33-fb52454d81c0'::uuid
+GROUP BY t.name, COALESCE(tvp.name, ''), o.name
+ORDER BY t.name, preset_name, o.name
+`
+
+type GetRegularWorkspaceCreateMetricsRow struct {
+	TemplateName     string `db:"template_name" json:"template_name"`
+	PresetName       string `db:"preset_name" json:"preset_name"`
+	OrganizationName string `db:"organization_name" json:"organization_name"`
+	CreatedCount     int64  `db:"created_count" json:"created_count"`
+}
+
+// Count regular workspaces: only those whose first successful 'start' build
+// was not initiated by the prebuild system user.
+func (q *sqlQuerier) GetRegularWorkspaceCreateMetrics(ctx context.Context) ([]GetRegularWorkspaceCreateMetricsRow, error) {
+	rows, err := q.db.QueryContext(ctx, getRegularWorkspaceCreateMetrics)
+	if err != nil {
+		return nil, err
+	}
+	defer rows.Close()
+	var items []GetRegularWorkspaceCreateMetricsRow
+	for rows.Next() {
+		var i GetRegularWorkspaceCreateMetricsRow
+		if err := rows.Scan(
+			&i.TemplateName,
+			&i.PresetName,
+			&i.OrganizationName,
+			&i.CreatedCount,
+		); err != nil {
+			return nil, err
+		}
+		items = append(items, i)
+	}
+	if err := rows.Close(); err != nil {
+		return nil, err
+	}
+	if err := rows.Err(); err != nil {
+		return nil, err
+	}
+	return items, nil
+}
+
 const getWorkspaceACLByID = `-- name: GetWorkspaceACLByID :one
 SELECT
 	group_acl as groups,
diff --git a/coderd/database/queries/prebuilds.sql b/coderd/database/queries/prebuilds.sql
index 8654453554e8c..2ad7f41d41fea 100644
--- a/coderd/database/queries/prebuilds.sql
+++ b/coderd/database/queries/prebuilds.sql
@@ -230,7 +230,7 @@ HAVING COUNT(*) = @hard_limit::bigint;
 SELECT
 	t.name as template_name,
 	tvp.name as preset_name,
-		o.name as organization_name,
+	o.name as organization_name,
 	COUNT(*) as created_count,
 	COUNT(*) FILTER (WHERE pj.job_status = 'failed'::provisioner_job_status) as failed_count,
 	COUNT(*) FILTER (
diff --git a/coderd/database/queries/workspaces.sql b/coderd/database/queries/workspaces.sql
index 802bded5b836b..80d8c7b920d74 100644
--- a/coderd/database/queries/workspaces.sql
+++ b/coderd/database/queries/workspaces.sql
@@ -923,3 +923,36 @@ SET
 	user_acl = @user_acl
 WHERE
 	id = @id;
+
+-- name: GetRegularWorkspaceCreateMetrics :many
+-- Count regular workspaces: only those whose first successful 'start' build
+-- was not initiated by the prebuild system user.
+WITH first_success_build AS (
+	-- Earliest successful 'start' build per workspace
+	SELECT DISTINCT ON (wb.workspace_id)
+		wb.workspace_id,
+		wb.template_version_preset_id,
+		wb.initiator_id
+	FROM workspace_builds wb
+	JOIN provisioner_jobs pj ON pj.id = wb.job_id
+	WHERE
+		wb.transition = 'start'::workspace_transition
+  		AND pj.job_status = 'succeeded'::provisioner_job_status
+	ORDER BY wb.workspace_id, wb.build_number, wb.id
+)
+SELECT
+	t.name AS template_name,
+	COALESCE(tvp.name, '') AS preset_name,
+	o.name AS organization_name,
+	COUNT(*) AS created_count
+FROM first_success_build fsb
+	JOIN workspaces w ON w.id = fsb.workspace_id
+	JOIN templates t ON t.id = w.template_id
+	LEFT JOIN template_version_presets tvp ON tvp.id = fsb.template_version_preset_id
+	JOIN organizations o ON o.id = w.organization_id
+WHERE
+	NOT t.deleted
+	-- Exclude workspaces whose first successful start was the prebuilds system user
+	AND fsb.initiator_id != 'c42fdf75-3097-471c-8c33-fb52454d81c0'::uuid
+GROUP BY t.name, COALESCE(tvp.name, ''), o.name
+ORDER BY t.name, preset_name, o.name;
diff --git a/coderd/prometheusmetrics/prometheusmetrics.go b/coderd/prometheusmetrics/prometheusmetrics.go
index 6ea8615f3779a..ed55e4598dc21 100644
--- a/coderd/prometheusmetrics/prometheusmetrics.go
+++ b/coderd/prometheusmetrics/prometheusmetrics.go
@@ -165,6 +165,18 @@ func Workspaces(ctx context.Context, logger slog.Logger, registerer prometheus.R
 		return nil, err
 	}
 
+	workspaceCreationTotal := prometheus.NewCounterVec(
+		prometheus.CounterOpts{
+			Namespace: "coderd",
+			Name:      "workspace_creation_total",
+			Help:      "Total regular (non-prebuilt) workspace creations by organization, template, and preset.",
+		},
+		[]string{"organization_name", "template_name", "preset_name"},
+	)
+	if err := registerer.Register(workspaceCreationTotal); err != nil {
+		return nil, err
+	}
+
 	ctx, cancelFunc := context.WithCancel(ctx)
 	done := make(chan struct{})
 
@@ -200,6 +212,27 @@ func Workspaces(ctx context.Context, logger slog.Logger, registerer prometheus.R
 				string(w.LatestBuildTransition),
 			).Add(1)
 		}
+
+		// Update regular workspaces (without a prebuild transition) creation counter
+		regularWorkspaces, err := db.GetRegularWorkspaceCreateMetrics(ctx)
+		if err != nil {
+			if errors.Is(err, sql.ErrNoRows) {
+				workspaceCreationTotal.Reset()
+			} else {
+				logger.Warn(ctx, "failed to load regular workspaces for metrics", slog.Error(err))
+			}
+			return
+		}
+
+		workspaceCreationTotal.Reset()
+
+		for _, regularWorkspace := range regularWorkspaces {
+			workspaceCreationTotal.WithLabelValues(
+				regularWorkspace.OrganizationName,
+				regularWorkspace.TemplateName,
+				regularWorkspace.PresetName,
+			).Add(float64(regularWorkspace.CreatedCount))
+		}
 	}
 
 	// Use time.Nanosecond to force an initial tick. It will be reset to the
diff --git a/coderd/prometheusmetrics/prometheusmetrics_test.go b/coderd/prometheusmetrics/prometheusmetrics_test.go
index 28046c1dff3fb..3d8704f92460d 100644
--- a/coderd/prometheusmetrics/prometheusmetrics_test.go
+++ b/coderd/prometheusmetrics/prometheusmetrics_test.go
@@ -424,6 +424,107 @@ func TestWorkspaceLatestBuildStatuses(t *testing.T) {
 	}
 }
 
+func TestWorkspaceCreationTotal(t *testing.T) {
+	t.Parallel()
+
+	for _, tc := range []struct {
+		Name               string
+		Database           func() database.Store
+		ExpectedWorkspaces int
+	}{
+		{
+			Name: "None",
+			Database: func() database.Store {
+				db, _ := dbtestutil.NewDB(t)
+				return db
+			},
+			ExpectedWorkspaces: 0,
+		},
+		{
+			// Should count only the successfully created workspaces
+			Name: "Multiple",
+			Database: func() database.Store {
+				db, _ := dbtestutil.NewDB(t)
+				u := dbgen.User(t, db, database.User{})
+				org := dbgen.Organization(t, db, database.Organization{})
+				insertTemplates(t, db, u, org)
+				insertCanceled(t, db, u, org)
+				insertFailed(t, db, u, org)
+				insertFailed(t, db, u, org)
+				insertSuccess(t, db, u, org)
+				insertSuccess(t, db, u, org)
+				insertSuccess(t, db, u, org)
+				insertRunning(t, db, u, org)
+				return db
+			},
+			ExpectedWorkspaces: 3,
+		},
+		{
+			// Should not include prebuilt workspaces
+			Name: "MultipleWithPrebuild",
+			Database: func() database.Store {
+				ctx := context.Background()
+				db, _ := dbtestutil.NewDB(t)
+				u := dbgen.User(t, db, database.User{})
+				prebuildUser, err := db.GetUserByID(ctx, database.PrebuildsSystemUserID)
+				require.NoError(t, err)
+				org := dbgen.Organization(t, db, database.Organization{})
+				insertTemplates(t, db, u, org)
+				insertCanceled(t, db, u, org)
+				insertFailed(t, db, u, org)
+				insertSuccess(t, db, u, org)
+				insertSuccess(t, db, prebuildUser, org)
+				insertRunning(t, db, u, org)
+				return db
+			},
+			ExpectedWorkspaces: 1,
+		},
+		{
+			// Should include deleted workspaces
+			Name: "MultipleWithDeleted",
+			Database: func() database.Store {
+				db, _ := dbtestutil.NewDB(t)
+				u := dbgen.User(t, db, database.User{})
+				org := dbgen.Organization(t, db, database.Organization{})
+				insertTemplates(t, db, u, org)
+				insertCanceled(t, db, u, org)
+				insertFailed(t, db, u, org)
+				insertSuccess(t, db, u, org)
+				insertRunning(t, db, u, org)
+				insertDeleted(t, db, u, org)
+				return db
+			},
+			ExpectedWorkspaces: 2,
+		},
+	} {
+		t.Run(tc.Name, func(t *testing.T) {
+			t.Parallel()
+			registry := prometheus.NewRegistry()
+			closeFunc, err := prometheusmetrics.Workspaces(context.Background(), testutil.Logger(t), registry, tc.Database(), testutil.IntervalFast)
+			require.NoError(t, err)
+			t.Cleanup(closeFunc)
+
+			require.Eventually(t, func() bool {
+				metrics, err := registry.Gather()
+				assert.NoError(t, err)
+
+				sum := 0
+				for _, m := range metrics {
+					if m.GetName() != "coderd_workspace_creation_total" {
+						continue
+					}
+					for _, metric := range m.Metric {
+						sum += int(metric.GetCounter().GetValue())
+					}
+				}
+
+				t.Logf("count = %d, expected == %d", sum, tc.ExpectedWorkspaces)
+				return sum == tc.ExpectedWorkspaces
+			}, testutil.WaitShort, testutil.IntervalFast)
+		})
+	}
+}
+
 func TestAgents(t *testing.T) {
 	t.Parallel()
 
@@ -897,6 +998,7 @@ func insertRunning(t *testing.T, db database.Store, u database.User, org databas
 		Transition:        database.WorkspaceTransitionStart,
 		Reason:            database.BuildReasonInitiator,
 		TemplateVersionID: templateVersionID,
+		InitiatorID:       u.ID,
 	})
 	require.NoError(t, err)
 	// This marks the job as started.
diff --git a/coderd/provisionerdserver/metrics.go b/coderd/provisionerdserver/metrics.go
new file mode 100644
index 0000000000000..67bd997055e1a
--- /dev/null
+++ b/coderd/provisionerdserver/metrics.go
@@ -0,0 +1,177 @@
+package provisionerdserver
+
+import (
+	"context"
+	"time"
+
+	"github.com/prometheus/client_golang/prometheus"
+
+	"cdr.dev/slog"
+)
+
+type Metrics struct {
+	logger                   slog.Logger
+	workspaceCreationTimings *prometheus.HistogramVec
+	workspaceClaimTimings    *prometheus.HistogramVec
+}
+
+type WorkspaceTimingType int
+
+const (
+	Unsupported WorkspaceTimingType = iota
+	WorkspaceCreation
+	PrebuildCreation
+	PrebuildClaim
+)
+
+const (
+	workspaceTypeRegular  = "regular"
+	workspaceTypePrebuild = "prebuild"
+)
+
+type WorkspaceTimingFlags struct {
+	IsPrebuild   bool
+	IsClaim      bool
+	IsFirstBuild bool
+}
+
+func NewMetrics(logger slog.Logger) *Metrics {
+	log := logger.Named("provisionerd_server_metrics")
+
+	return &Metrics{
+		logger: log,
+		workspaceCreationTimings: prometheus.NewHistogramVec(prometheus.HistogramOpts{
+			Namespace: "coderd",
+			Name:      "workspace_creation_duration_seconds",
+			Help:      "Time to create a workspace by organization, template, preset, and type (regular or prebuild).",
+			Buckets: []float64{
+				1, // 1s
+				10,
+				30,
+				60, // 1min
+				60 * 5,
+				60 * 10,
+				60 * 30, // 30min
+				60 * 60, // 1hr
+			},
+			NativeHistogramBucketFactor: 1.1,
+			// Max number of native buckets kept at once to bound memory.
+			NativeHistogramMaxBucketNumber: 100,
+			// Merge/flush small buckets periodically to control churn.
+			NativeHistogramMinResetDuration: time.Hour,
+			// Treat tiny values as zero (helps with noisy near-zero latencies).
+			NativeHistogramZeroThreshold:    0,
+			NativeHistogramMaxZeroThreshold: 0,
+		}, []string{"organization_name", "template_name", "preset_name", "type"}),
+		workspaceClaimTimings: prometheus.NewHistogramVec(prometheus.HistogramOpts{
+			Namespace: "coderd",
+			Name:      "prebuilt_workspace_claim_duration_seconds",
+			Help:      "Time to claim a prebuilt workspace by organization, template, and preset.",
+			// Higher resolution between 1–5m to show typical prebuild claim times.
+			// Cap at 5m since longer claims diminish prebuild value.
+			Buckets: []float64{
+				1, // 1s
+				5,
+				10,
+				20,
+				30,
+				60,  // 1m
+				120, // 2m
+				180, // 3m
+				240, // 4m
+				300, // 5m
+			},
+			NativeHistogramBucketFactor: 1.1,
+			// Max number of native buckets kept at once to bound memory.
+			NativeHistogramMaxBucketNumber: 100,
+			// Merge/flush small buckets periodically to control churn.
+			NativeHistogramMinResetDuration: time.Hour,
+			// Treat tiny values as zero (helps with noisy near-zero latencies).
+			NativeHistogramZeroThreshold:    0,
+			NativeHistogramMaxZeroThreshold: 0,
+		}, []string{"organization_name", "template_name", "preset_name"}),
+	}
+}
+
+func (m *Metrics) Register(reg prometheus.Registerer) error {
+	if err := reg.Register(m.workspaceCreationTimings); err != nil {
+		return err
+	}
+	return reg.Register(m.workspaceClaimTimings)
+}
+
+func (f WorkspaceTimingFlags) count() int {
+	count := 0
+	if f.IsPrebuild {
+		count++
+	}
+	if f.IsClaim {
+		count++
+	}
+	if f.IsFirstBuild {
+		count++
+	}
+	return count
+}
+
+// getWorkspaceTimingType returns the type of the workspace build:
+//   - isPrebuild: if the workspace build corresponds to the creation of a prebuilt workspace
+//   - isClaim: if the workspace build corresponds to the claim of a prebuilt workspace
+//   - isWorkspaceFirstBuild: if the workspace build corresponds to the creation of a regular workspace
+//     (not created from the prebuild pool)
+func getWorkspaceTimingType(flags WorkspaceTimingFlags) WorkspaceTimingType {
+	switch {
+	case flags.IsPrebuild:
+		return PrebuildCreation
+	case flags.IsClaim:
+		return PrebuildClaim
+	case flags.IsFirstBuild:
+		return WorkspaceCreation
+	default:
+		return Unsupported
+	}
+}
+
+// UpdateWorkspaceTimingsMetrics updates the workspace timing metrics based on the workspace build type
+func (m *Metrics) UpdateWorkspaceTimingsMetrics(
+	ctx context.Context,
+	flags WorkspaceTimingFlags,
+	organizationName string,
+	templateName string,
+	presetName string,
+	buildTime float64,
+) {
+	m.logger.Debug(ctx, "update workspace timings metrics",
+		"organizationName", organizationName,
+		"templateName", templateName,
+		"presetName", presetName,
+		"isPrebuild", flags.IsPrebuild,
+		"isClaim", flags.IsClaim,
+		"isWorkspaceFirstBuild", flags.IsFirstBuild)
+
+	if flags.count() > 1 {
+		m.logger.Warn(ctx, "invalid workspace timing flags",
+			"isPrebuild", flags.IsPrebuild,
+			"isClaim", flags.IsClaim,
+			"isWorkspaceFirstBuild", flags.IsFirstBuild)
+		return
+	}
+
+	workspaceTimingType := getWorkspaceTimingType(flags)
+	switch workspaceTimingType {
+	case WorkspaceCreation:
+		// Regular workspace creation (without prebuild pool)
+		m.workspaceCreationTimings.
+			WithLabelValues(organizationName, templateName, presetName, workspaceTypeRegular).Observe(buildTime)
+	case PrebuildCreation:
+		// Prebuilt workspace creation duration
+		m.workspaceCreationTimings.
+			WithLabelValues(organizationName, templateName, presetName, workspaceTypePrebuild).Observe(buildTime)
+	case PrebuildClaim:
+		// Prebuilt workspace claim duration
+		m.workspaceClaimTimings.
+			WithLabelValues(organizationName, templateName, presetName).Observe(buildTime)
+	default:
+		m.logger.Warn(ctx, "unsupported workspace timing flags")
+	}
+}
diff --git a/coderd/provisionerdserver/provisionerdserver.go b/coderd/provisionerdserver/provisionerdserver.go
index 938fdf1774008..4685dad881674 100644
--- a/coderd/provisionerdserver/provisionerdserver.go
+++ b/coderd/provisionerdserver/provisionerdserver.go
@@ -129,6 +129,8 @@ type server struct {
 
 	heartbeatInterval time.Duration
 	heartbeatFn       func(ctx context.Context) error
+
+	metrics *Metrics
 }
 
 // We use the null byte (0x00) in generating a canonical map key for tags, so
@@ -178,6 +180,7 @@ func NewServer(
 	options Options,
 	enqueuer notifications.Enqueuer,
 	prebuildsOrchestrator *atomic.Pointer[prebuilds.ReconciliationOrchestrator],
+	metrics *Metrics,
 ) (proto.DRPCProvisionerDaemonServer, error) {
 	// Fail-fast if pointers are nil
 	if lifecycleCtx == nil {
@@ -248,6 +251,7 @@ func NewServer(
 		heartbeatFn:                 options.HeartbeatFn,
 		PrebuildsOrchestrator:       prebuildsOrchestrator,
 		UsageInserter:               usageInserter,
+		metrics:                     metrics,
 	}
 
 	if s.heartbeatFn == nil {
@@ -2281,6 +2285,50 @@ func (s *server) completeWorkspaceBuildJob(ctx context.Context, job database.Pro
 		}
 	}
 
+	// Update workspace (regular and prebuild) timing metrics
+	if s.metrics != nil {
+		// Only consider 'start' workspace builds
+		if workspaceBuild.Transition == database.WorkspaceTransitionStart {
+			// Get the updated job to report the metrics with correct data
+			updatedJob, err := s.Database.GetProvisionerJobByID(ctx, jobID)
+			if err != nil {
+				s.Logger.Error(ctx, "get updated job from database", slog.Error(err))
+			} else
+			// Only consider 'succeeded' provisioner jobs
+			if updatedJob.JobStatus == database.ProvisionerJobStatusSucceeded {
+				presetName := ""
+				if workspaceBuild.TemplateVersionPresetID.Valid {
+					preset, err := s.Database.GetPresetByID(ctx, workspaceBuild.TemplateVersionPresetID.UUID)
+					if err != nil {
+						if !errors.Is(err, sql.ErrNoRows) {
+							s.Logger.Error(ctx, "get preset by ID for workspace timing metrics", slog.Error(err))
+						}
+					} else {
+						presetName = preset.Name
+					}
+				}
+
+				buildTime := updatedJob.CompletedAt.Time.Sub(updatedJob.StartedAt.Time).Seconds()
+				s.metrics.UpdateWorkspaceTimingsMetrics(
+					ctx,
+					WorkspaceTimingFlags{
+						// Is a prebuilt workspace creation build
+						IsPrebuild: input.PrebuiltWorkspaceBuildStage.IsPrebuild(),
+						// Is a prebuilt workspace claim build
+						IsClaim: input.PrebuiltWorkspaceBuildStage.IsPrebuiltWorkspaceClaim(),
+						// Is a regular workspace creation build
+						// Only consider the first build number for regular workspaces
+						IsFirstBuild: workspaceBuild.BuildNumber == 1,
+					},
+					workspace.OrganizationName,
+					workspace.TemplateName,
+					presetName,
+					buildTime,
+				)
+			}
+		}
+	}
+
 	msg, err := json.Marshal(wspubsub.WorkspaceEvent{
 		Kind:        wspubsub.WorkspaceEventKindStateChange,
 		WorkspaceID: workspace.ID,
diff --git a/coderd/provisionerdserver/provisionerdserver_test.go b/coderd/provisionerdserver/provisionerdserver_test.go
index 98af0bb86a73f..914f6dd024193 100644
--- a/coderd/provisionerdserver/provisionerdserver_test.go
+++ b/coderd/provisionerdserver/provisionerdserver_test.go
@@ -4144,6 +4144,7 @@ func setup(t *testing.T, ignoreLogErrors bool, ov *overrides) (proto.DRPCProvisi
 		},
 		notifEnq,
 		&op,
+		provisionerdserver.NewMetrics(logger),
 	)
 	require.NoError(t, err)
 	return srv, db, ps, daemon
diff --git a/coderd/taskname/taskname.go b/coderd/taskname/taskname.go
index dff57dfd0c7f5..734c23eb3dd76 100644
--- a/coderd/taskname/taskname.go
+++ b/coderd/taskname/taskname.go
@@ -24,7 +24,7 @@ const (
 Requirements:
 - Only lowercase letters, numbers, and hyphens
 - Start with "task-"
-- Maximum 28 characters total
+- Maximum 27 characters total
 - Descriptive of the main task
 
 Examples:
@@ -145,17 +145,23 @@ func Generate(ctx context.Context, prompt string, opts ...Option) (string, error
 		return "", ErrNoNameGenerated
 	}
 
-	generatedName := acc.Messages()[0].Content
-
-	if err := codersdk.NameValid(generatedName); err != nil {
-		return "", xerrors.Errorf("generated name %v not valid: %w", generatedName, err)
+	taskName := acc.Messages()[0].Content
+	if taskName == "task-unnamed" {
+		return "", ErrNoNameGenerated
 	}
 
-	if generatedName == "task-unnamed" {
-		return "", ErrNoNameGenerated
+	// We append a suffix to the end of the task name to reduce
+	// the chance of collisions. We truncate the task name to
+	// to a maximum of 27 bytes, so that when we append the
+	// 5 byte suffix (`-` and 4 byte hex slug), it should
+	// remain within the 32 byte workspace name limit.
+	taskName = taskName[:min(len(taskName), 27)]
+	taskName = fmt.Sprintf("%s-%s", taskName, generateSuffix())
+	if err := codersdk.NameValid(taskName); err != nil {
+		return "", xerrors.Errorf("generated name %v not valid: %w", taskName, err)
 	}
 
-	return fmt.Sprintf("%s-%s", generatedName, generateSuffix()), nil
+	return taskName, nil
 }
 
 func anthropicDataStream(ctx context.Context, client anthropic.Client, model anthropic.Model, input []aisdk.Message) (aisdk.DataStream, error) {
diff --git a/docs/admin/infrastructure/scale-utility.md b/docs/admin/infrastructure/scale-utility.md
index b66e7fca41394..6945b54bf559e 100644
--- a/docs/admin/infrastructure/scale-utility.md
+++ b/docs/admin/infrastructure/scale-utility.md
@@ -44,7 +44,7 @@ environments.
 > for your users.
 > To avoid potential outages and orphaned resources, we recommend that you run
 > scale tests on a secondary "staging" environment or a dedicated
-> [Kubernetes playground cluster](https://github.com/coder/coder/tree/main/scaletest/terraform).
+> Kubernetes playground cluster.
 >
 > Run it against a production environment at your own risk.
 
diff --git a/docs/admin/integrations/prometheus.md b/docs/admin/integrations/prometheus.md
index ac88c8c5beda7..47fbc575c7c2e 100644
--- a/docs/admin/integrations/prometheus.md
+++ b/docs/admin/integrations/prometheus.md
@@ -143,9 +143,12 @@ deployment. They will always be available from the agent.
 | `coderd_oauth2_external_requests_rate_limit_total`            | gauge     | DEPRECATED: use coderd_oauth2_external_requests_rate_limit instead                                                               | `name` `resource`                                                                    |
 | `coderd_oauth2_external_requests_rate_limit_used`             | gauge     | The number of requests made in this interval.                                                                                    | `name` `resource`                                                                    |
 | `coderd_oauth2_external_requests_total`                       | counter   | The total number of api calls made to external oauth2 providers. 'status_code' will be 0 if the request failed with no response. | `name` `source` `status_code`                                                        |
+| `coderd_prebuilt_workspace_claim_duration_seconds`            | histogram | Time to claim a prebuilt workspace by organization, template, and preset.                                                        | `organization_name` `preset_name` `template_name`                                    |
 | `coderd_provisionerd_job_timings_seconds`                     | histogram | The provisioner job time duration in seconds.                                                                                    | `provisioner` `status`                                                               |
 | `coderd_provisionerd_jobs_current`                            | gauge     | The number of currently running provisioner jobs.                                                                                | `provisioner`                                                                        |
 | `coderd_workspace_builds_total`                               | counter   | The number of workspaces started, updated, or deleted.                                                                           | `action` `owner_email` `status` `template_name` `template_version` `workspace_name`  |
+| `coderd_workspace_creation_duration_seconds`                  | histogram | Time to create a workspace by organization, template, preset, and type (regular or prebuild).                                    | `organization_name` `preset_name` `template_name` `type`                             |
+| `coderd_workspace_creation_total`                             | counter   | Total regular (non-prebuilt) workspace creations by organization, template, and preset.                                          | `organization_name` `preset_name` `template_name`                                    |
 | `coderd_workspace_latest_build_status`                        | gauge     | The current workspace statuses by template, transition, and owner.                                                               | `status` `template_name` `template_version` `workspace_owner` `workspace_transition` |
 | `go_gc_duration_seconds`                                      | summary   | A summary of the pause duration of garbage collection cycles.                                                                    |                                                                                      |
 | `go_goroutines`                                               | gauge     | Number of goroutines that currently exist.                                                                                       |                                                                                      |
@@ -185,3 +188,19 @@ deployment. They will always be available from the agent.
 | `promhttp_metric_handler_requests_total`                      | counter   | Total number of scrapes by HTTP status code.                                                                                     | `code`                                                                               |
 
 <!-- End generated by 'make docs/admin/integrations/prometheus.md'. -->
+
+### Note on Prometheus native histogram support
+
+The following metrics support native histograms:
+
+* `coderd_workspace_creation_duration_seconds`
+* `coderd_prebuilt_workspace_claim_duration_seconds`
+
+Native histograms are an **experimental** Prometheus feature that removes the need to predefine bucket boundaries and allows higher-resolution buckets that adapt to deployment characteristics.
+Whether a metric is exposed as classic or native depends entirely on the Prometheus server configuration (see [Prometheus docs](https://prometheus.io/docs/specs/native_histograms/) for details):
+
+* If native histograms are enabled, Prometheus ingests the high-resolution histogram.
+* If not, it falls back to the predefined buckets.
+
+⚠️ Important: classic and native histograms cannot be aggregated together. If Prometheus is switched from classic to native at a certain point in time, dashboards may need to account for that transition.
+For this reason, it’s recommended to follow [Prometheus’ migration guidelines](https://prometheus.io/docs/specs/native_histograms/#migration-considerations) when moving from classic to native histograms.
diff --git a/docs/admin/templates/extending-templates/prebuilt-workspaces.md b/docs/admin/templates/extending-templates/prebuilt-workspaces.md
index bf80ca479254a..61734679d4c7d 100644
--- a/docs/admin/templates/extending-templates/prebuilt-workspaces.md
+++ b/docs/admin/templates/extending-templates/prebuilt-workspaces.md
@@ -300,6 +300,7 @@ Coder provides several metrics to monitor your prebuilt workspaces:
 - `coderd_prebuilt_workspaces_desired` (gauge): Target number of prebuilt workspaces that should be available.
 - `coderd_prebuilt_workspaces_running` (gauge): Current number of prebuilt workspaces in a `running` state.
 - `coderd_prebuilt_workspaces_eligible` (gauge): Current number of prebuilt workspaces eligible to be claimed.
+- `coderd_prebuilt_workspace_claim_duration_seconds` ([_native histogram_](https://prometheus.io/docs/specs/native_histograms) support): Time to claim a prebuilt workspace from the prebuild pool.
 
 #### Logs
 
diff --git a/docs/ai-coder/tasks.md b/docs/ai-coder/tasks.md
index 43c4becdf8be1..ef47a6b3fb874 100644
--- a/docs/ai-coder/tasks.md
+++ b/docs/ai-coder/tasks.md
@@ -82,6 +82,10 @@ If a workspace app has the special `"preview"` slug, a navbar will appear above
 
 We plan to introduce more customization options in future releases.
 
+## Automatically name your tasks
+
+Coder can automatically generate a name your tasks if you set the `ANTHROPIC_API_KEY` environment variable on the Coder server. Otherwise, tasks will be given randomly generated names.
+
 ## Opting out of Tasks
 
 If you tried Tasks and decided you don't want to use it, you can hide the Tasks tab by starting `coder server` with the `CODER_HIDE_AI_TASKS=true` environment variable or the `--hide-ai-tasks` flag.
diff --git a/docs/manifest.json b/docs/manifest.json
index 4d2a62c994c88..d2cd11ace699b 100644
--- a/docs/manifest.json
+++ b/docs/manifest.json
@@ -542,7 +542,7 @@
 									"title": "External Workspaces",
 									"description": "Learn how to manage external workspaces",
 									"path": "./admin/templates/managing-templates/external-workspaces.md",
-									"state": ["early access"]
+									"state": ["premium", "early access"]
 								}
 							]
 						},
diff --git a/enterprise/coderd/provisionerdaemons.go b/enterprise/coderd/provisionerdaemons.go
index 65b03a7d6b864..be03af29293f9 100644
--- a/enterprise/coderd/provisionerdaemons.go
+++ b/enterprise/coderd/provisionerdaemons.go
@@ -361,6 +361,7 @@ func (api *API) provisionerDaemonServe(rw http.ResponseWriter, r *http.Request)
 		},
 		api.NotificationsEnqueuer,
 		&api.AGPL.PrebuildsReconciler,
+		api.ProvisionerdServerMetrics,
 	)
 	if err != nil {
 		if !xerrors.Is(err, context.Canceled) {
diff --git a/enterprise/coderd/workspaces_test.go b/enterprise/coderd/workspaces_test.go
index 12a45cba952e2..31821bb798de9 100644
--- a/enterprise/coderd/workspaces_test.go
+++ b/enterprise/coderd/workspaces_test.go
@@ -26,6 +26,7 @@ import (
 	"github.com/coder/coder/v2/coderd/audit"
 	"github.com/coder/coder/v2/coderd/autobuild"
 	"github.com/coder/coder/v2/coderd/coderdtest"
+	"github.com/coder/coder/v2/coderd/coderdtest/promhelp"
 	"github.com/coder/coder/v2/coderd/database"
 	"github.com/coder/coder/v2/coderd/database/dbauthz"
 	"github.com/coder/coder/v2/coderd/database/dbfake"
@@ -2873,6 +2874,133 @@ func TestPrebuildActivityBump(t *testing.T) {
 	require.Zero(t, workspace.LatestBuild.MaxDeadline)
 }
 
+func TestWorkspaceProvisionerdServerMetrics(t *testing.T) {
+	t.Parallel()
+
+	// Setup
+	log := testutil.Logger(t)
+	reg := prometheus.NewRegistry()
+	provisionerdserverMetrics := provisionerdserver.NewMetrics(log)
+	err := provisionerdserverMetrics.Register(reg)
+	require.NoError(t, err)
+	client, db, owner := coderdenttest.NewWithDatabase(t, &coderdenttest.Options{
+		Options: &coderdtest.Options{
+			IncludeProvisionerDaemon:  true,
+			ProvisionerdServerMetrics: provisionerdserverMetrics,
+		},
+		LicenseOptions: &coderdenttest.LicenseOptions{
+			Features: license.Features{
+				codersdk.FeatureWorkspacePrebuilds: 1,
+			},
+		},
+	})
+
+	// Given: a template and a template version with a preset without prebuild instances
+	presetNoPrebuildID := uuid.New()
+	versionNoPrebuild := coderdtest.CreateTemplateVersion(t, client, owner.OrganizationID, nil)
+	_ = coderdtest.AwaitTemplateVersionJobCompleted(t, client, versionNoPrebuild.ID)
+	templateNoPrebuild := coderdtest.CreateTemplate(t, client, owner.OrganizationID, versionNoPrebuild.ID)
+	presetNoPrebuild := dbgen.Preset(t, db, database.InsertPresetParams{
+		ID:                presetNoPrebuildID,
+		TemplateVersionID: versionNoPrebuild.ID,
+	})
+
+	// Given: a template and a template version with a preset with a prebuild instance
+	presetPrebuildID := uuid.New()
+	versionPrebuild := coderdtest.CreateTemplateVersion(t, client, owner.OrganizationID, nil)
+	_ = coderdtest.AwaitTemplateVersionJobCompleted(t, client, versionPrebuild.ID)
+	templatePrebuild := coderdtest.CreateTemplate(t, client, owner.OrganizationID, versionPrebuild.ID)
+	presetPrebuild := dbgen.Preset(t, db, database.InsertPresetParams{
+		ID:                presetPrebuildID,
+		TemplateVersionID: versionPrebuild.ID,
+		DesiredInstances:  sql.NullInt32{Int32: 1, Valid: true},
+	})
+	// Given: a prebuild workspace
+	wb := dbfake.WorkspaceBuild(t, db, database.WorkspaceTable{
+		OwnerID:    database.PrebuildsSystemUserID,
+		TemplateID: templatePrebuild.ID,
+	}).Seed(database.WorkspaceBuild{
+		TemplateVersionID: versionPrebuild.ID,
+		TemplateVersionPresetID: uuid.NullUUID{
+			UUID:  presetPrebuildID,
+			Valid: true,
+		},
+	}).WithAgent(func(agent []*proto.Agent) []*proto.Agent {
+		return agent
+	}).Do()
+
+	// Mark the prebuilt workspace's agent as ready so the prebuild can be claimed
+	// nolint:gocritic
+	ctx := dbauthz.AsSystemRestricted(testutil.Context(t, testutil.WaitLong))
+	agent, err := db.GetWorkspaceAgentAndLatestBuildByAuthToken(ctx, uuid.MustParse(wb.AgentToken))
+	require.NoError(t, err)
+	err = db.UpdateWorkspaceAgentLifecycleStateByID(ctx, database.UpdateWorkspaceAgentLifecycleStateByIDParams{
+		ID:             agent.WorkspaceAgent.ID,
+		LifecycleState: database.WorkspaceAgentLifecycleStateReady,
+	})
+	require.NoError(t, err)
+
+	organizationName, err := client.Organization(ctx, owner.OrganizationID)
+	require.NoError(t, err)
+	user, err := client.User(ctx, "testUser")
+	require.NoError(t, err)
+
+	// Given: no histogram value for prebuilt workspaces claim
+	prebuiltWorkspaceHistogramMetric := promhelp.MetricValue(t, reg, "coderd_prebuilt_workspace_claim_duration_seconds", prometheus.Labels{
+		"organization_name": organizationName.Name,
+		"template_name":     templatePrebuild.Name,
+		"preset_name":       presetPrebuild.Name,
+	})
+	require.Nil(t, prebuiltWorkspaceHistogramMetric)
+
+	// Given: the prebuilt workspace is claimed by a user
+	claimedWorkspace, err := client.CreateUserWorkspace(ctx, user.ID.String(), codersdk.CreateWorkspaceRequest{
+		TemplateVersionID:       versionPrebuild.ID,
+		TemplateVersionPresetID: presetPrebuildID,
+		Name:                    coderdtest.RandomUsername(t),
+	})
+	require.NoError(t, err)
+	coderdtest.AwaitWorkspaceBuildJobCompleted(t, client, claimedWorkspace.LatestBuild.ID)
+	require.Equal(t, wb.Workspace.ID, claimedWorkspace.ID)
+
+	// Then: the histogram value for prebuilt workspace claim should be updated
+	prebuiltWorkspaceHistogram := promhelp.HistogramValue(t, reg, "coderd_prebuilt_workspace_claim_duration_seconds", prometheus.Labels{
+		"organization_name": organizationName.Name,
+		"template_name":     templatePrebuild.Name,
+		"preset_name":       presetPrebuild.Name,
+	})
+	require.NotNil(t, prebuiltWorkspaceHistogram)
+	require.Equal(t, uint64(1), prebuiltWorkspaceHistogram.GetSampleCount())
+
+	// Given: no histogram value for regular workspaces creation
+	regularWorkspaceHistogramMetric := promhelp.MetricValue(t, reg, "coderd_workspace_creation_duration_seconds", prometheus.Labels{
+		"organization_name": organizationName.Name,
+		"template_name":     templateNoPrebuild.Name,
+		"preset_name":       presetNoPrebuild.Name,
+		"type":              "regular",
+	})
+	require.Nil(t, regularWorkspaceHistogramMetric)
+
+	// Given: a user creates a regular workspace (without prebuild pool)
+	regularWorkspace, err := client.CreateUserWorkspace(ctx, user.ID.String(), codersdk.CreateWorkspaceRequest{
+		TemplateVersionID:       versionNoPrebuild.ID,
+		TemplateVersionPresetID: presetNoPrebuildID,
+		Name:                    coderdtest.RandomUsername(t),
+	})
+	require.NoError(t, err)
+	coderdtest.AwaitWorkspaceBuildJobCompleted(t, client, regularWorkspace.LatestBuild.ID)
+
+	// Then: the histogram value for regular workspace creation should be updated
+	regularWorkspaceHistogram := promhelp.HistogramValue(t, reg, "coderd_workspace_creation_duration_seconds", prometheus.Labels{
+		"organization_name": organizationName.Name,
+		"template_name":     templateNoPrebuild.Name,
+		"preset_name":       presetNoPrebuild.Name,
+		"type":              "regular",
+	})
+	require.NotNil(t, regularWorkspaceHistogram)
+	require.Equal(t, uint64(1), regularWorkspaceHistogram.GetSampleCount())
+}
+
 // TestWorkspaceTemplateParamsChange tests a workspace with a parameter that
 // validation changes on apply. The params used in create workspace are invalid
 // according to the static params on import.
diff --git a/scaletest/README.md b/scaletest/README.md
deleted file mode 100644
index 9fa475ae29ab5..0000000000000
--- a/scaletest/README.md
+++ /dev/null
@@ -1,109 +0,0 @@
-# Scale Testing
-
-This folder contains CLI commands, Terraform code, and scripts to aid in performing load tests of Coder.
-At a high level, it performs the following steps:
-
-- Using the Terraform code in `./terraform`, stands up a preconfigured Google Cloud environment
-  consisting of a VPC, GKE Cluster, and CloudSQL instance.
-  > **Note: You must have an existing Google Cloud project available.**
-- Creates a dedicated namespace for Coder and installs Coder using the Helm chart in this namespace.
-- Configures the Coder deployment with random credentials and a predefined Kubernetes template.
-  > **Note:** These credentials are stored in `${PROJECT_ROOT}/scaletest/.coderv2/coder.env`.
-- Creates a number of workspaces and waits for them to all start successfully. These workspaces
-  are ephemeral and do not contain any persistent resources.
-- Waits for 10 minutes to allow things to settle and establish a baseline.
-- Generates web terminal traffic to all workspaces for 30 minutes.
-- Directly after traffic generation, captures goroutine and heap snapshots of the Coder deployment.
-- Tears down all resources (unless `--skip-cleanup` is specified).
-
-## Usage
-
-The main entrypoint is the `scaletest.sh` script.
-
-```console
-$ scaletest.sh --help
-Usage: scaletest.sh --name <name> --project <project> --num-workspaces <num-workspaces> --scenario <scenario> [--dry-run] [--skip-cleanup]
-```
-
-### Required arguments
-
-- `--name`: Name for the loadtest. This is added as a prefix to resources created by Terraform (e.g. `joe-big-loadtest`).
-- `--project`: Google Cloud project in which to create the resources (example: `my-loadtest-project`).
-- `--num-workspaces`: Number of workspaces to create (example: `10`).
-- `--scenario`: Deployment scenario to use (example: `small`). See `terraform/scenario-*.tfvars`.
-
-> **Note:** In order to capture Prometheus metrics, you must define the environment variables
-> `SCALETEST_PROMETHEUS_REMOTE_WRITE_USER` and `SCALETEST_PROMETHEUS_REMOTE_WRITE_PASSWORD`.
-
-### Optional arguments
-
-- `--dry-run`: Do not perform any action and instead print what would be executed.
-- `--skip-cleanup`: Do not perform any cleanup. You will be responsible for deleting any resources this creates.
-
-### Environment Variables
-
-All of the above arguments may be specified as environment variables. Consult the script for details.
-
-### Prometheus Metrics
-
-To capture Prometheus metrics from the loadtest, two environment variables are required:
-
-- `SCALETEST_PROMETHEUS_REMOTE_WRITE_USER`
-- `SCALETEST_PROMETHEUS_REMOTE_WRITE_PASSWORD`
-
-### Enterprise License
-
-To add an Enterprise license, set the `SCALETEST_CODER_LICENSE` environment variable to the JWT string
-
-## Scenarios
-
-A scenario defines a number of variables that override the default Terraform variables.
-A number of existing scenarios are provided in `scaletest/terraform/scenario-*.tfvars`.
-
-For example, `scenario-small.tfvars` includes the following variable definitions:
-
-```hcl
-nodepool_machine_type_coder      = "t2d-standard-2"
-nodepool_machine_type_workspaces = "t2d-standard-2"
-coder_cpu                        = "1000m" # Leaving 1 CPU for system workloads
-coder_mem                        = "4Gi"   # Leaving 4GB for system workloads
-```
-
-To create your own scenario, simply add a new file `terraform/scenario-$SCENARIO_NAME.tfvars`.
-In this file, override variables as required, consulting `vars.tf` as needed.
-You can then use this scenario by specifying `--scenario $SCENARIO_NAME`.
-For example, if your scenario file were named `scenario-big-whopper2x.tfvars`, you would specify
-`--scenario=big-whopper2x`.
-
-## Utility scripts
-
-A number of utility scripts are provided in `lib`, and are used by `scaletest.sh`:
-
-- `coder_shim.sh`: a convenience script to run the `coder` binary with a predefined config root.
-  This is intended to allow running Coder CLI commands against the loadtest cluster without
-  modifying a user's existing Coder CLI configuration.
-- `coder_init.sh`: Performs first-time user setup of an existing Coder instance, generating
-  a random password for the admin user. The admin user is named `admin@coder.com` by default.
-  Credentials are written to `scaletest/.coderv2/coder.env`.
-- `coder_workspacetraffic.sh`: Runs traffic generation against the loadtest cluster and creates
-  a monitoring manifest for the traffic generation pod. This pod will restart automatically
-  after the traffic generation has completed.
-
-## Grafana Dashboard
-
-A sample Grafana dashboard is provided in `scaletest_dashboard.json`. This dashboard is intended
-to be imported into an existing Grafana instance. It provides a number of useful metrics:
-
-- **Control Plane Resources**: CPU, memory, and network usage for the Coder deployment, as well as the number of pod restarts.
-- **Database**: Rows inserted/updated/deleted/returned, active connections, and transactions per second. Fine-grained `sqlQuerier` metrics are provided for Coder's database as well, broken down my query method.
-- **HTTP requests**: Number of HTTP requests per second, broken down by status code and path.
-- **Workspace Resources**: CPU, memory, and network usage for all workspaces.
-- **Workspace Agents**: Workspace agent network usage, connection latency, and number of active connections.
-- **Workspace Traffic**: Statistics related to workspace traffic generation.
-- **Internals**: Provisioner job timings, concurrency, workspace builds, and AuthZ duration.
-
-A subset of these metrics may be useful for a production deployment, but some are only useful
-for load testing.
-
-> **Note:** in particular, `sqlQuerier` metrics produce a large number of time series and may cause
-> increased charges in your metrics provider.
diff --git a/scaletest/scaletest.sh b/scaletest/scaletest.sh
deleted file mode 100755
index dd0a6cb4f450c..0000000000000
--- a/scaletest/scaletest.sh
+++ /dev/null
@@ -1,240 +0,0 @@
-#!/usr/bin/env bash
-
-[[ -n ${VERBOSE:-} ]] && set -x
-set -euo pipefail
-
-PROJECT_ROOT="$(git rev-parse --show-toplevel)"
-# shellcheck source=scripts/lib.sh
-source "${PROJECT_ROOT}/scripts/lib.sh"
-
-DRY_RUN="${DRY_RUN:-0}"
-SCALETEST_NAME="${SCALETEST_NAME:-}"
-SCALETEST_NUM_WORKSPACES="${SCALETEST_NUM_WORKSPACES:-}"
-SCALETEST_SCENARIO="${SCALETEST_SCENARIO:-}"
-SCALETEST_PROJECT="${SCALETEST_PROJECT:-}"
-SCALETEST_PROMETHEUS_REMOTE_WRITE_USER="${SCALETEST_PROMETHEUS_REMOTE_WRITE_USER:-}"
-SCALETEST_PROMETHEUS_REMOTE_WRITE_PASSWORD="${SCALETEST_PROMETHEUS_REMOTE_WRITE_PASSWORD:-}"
-SCALETEST_CODER_LICENSE="${SCALETEST_CODER_LICENSE:-}"
-SCALETEST_SKIP_CLEANUP="${SCALETEST_SKIP_CLEANUP:-0}"
-SCALETEST_CREATE_CONCURRENCY="${SCALETEST_CREATE_CONCURRENCY:-10}"
-SCALETEST_TRAFFIC_BYTES_PER_TICK="${SCALETEST_TRAFFIC_BYTES_PER_TICK:-1024}"
-SCALETEST_TRAFFIC_TICK_INTERVAL="${SCALETEST_TRAFFIC_TICK_INTERVAL:-10s}"
-SCALETEST_DESTROY="${SCALETEST_DESTROY:-0}"
-
-script_name=$(basename "$0")
-args="$(getopt -o "" -l create-concurrency:,destroy,dry-run,help,name:,num-workspaces:,project:,scenario:,skip-cleanup,traffic-bytes-per-tick:,traffic-tick-interval:, -- "$@")"
-eval set -- "$args"
-while true; do
-	case "$1" in
-	--create-concurrency)
-		SCALETEST_CREATE_CONCURRENCY="$2"
-		shift 2
-		;;
-	--destroy)
-		SCALETEST_DESTROY=1
-		shift
-		;;
-	--dry-run)
-		DRY_RUN=1
-		shift
-		;;
-	--help)
-		echo "Usage: $script_name --name <name> --project <project> --num-workspaces <num-workspaces> --scenario <scenario> [--create-concurrency <create-concurrency>] [--destroy] [--dry-run] [--skip-cleanup] [--traffic-bytes-per-tick <number>] [--traffic-tick-interval <duration>]"
-		exit 1
-		;;
-	--name)
-		SCALETEST_NAME="$2"
-		shift 2
-		;;
-	--num-workspaces)
-		SCALETEST_NUM_WORKSPACES="$2"
-		shift 2
-		;;
-	--project)
-		SCALETEST_PROJECT="$2"
-		shift 2
-		;;
-	--scenario)
-		SCALETEST_SCENARIO="$2"
-		shift 2
-		;;
-	--skip-cleanup)
-		SCALETEST_SKIP_CLEANUP=1
-		shift
-		;;
-	--traffic-bytes-per-tick)
-		SCALETEST_TRAFFIC_BYTES_PER_TICK="$2"
-		shift 2
-		;;
-	--traffic-tick-interval)
-		SCALETEST_TRAFFIC_TICK_INTERVAL="$2"
-		shift 2
-		;;
-	--)
-		shift
-		break
-		;;
-	*)
-		error "Unrecognized option: $1"
-		;;
-	esac
-done
-
-dependencies gcloud kubectl terraform
-
-if [[ -z "${SCALETEST_NAME}" ]]; then
-	echo "Must specify --name"
-	exit 1
-fi
-
-if [[ -z "${SCALETEST_PROJECT}" ]]; then
-	echo "Must specify --project"
-	exit 1
-fi
-
-if [[ -z "${SCALETEST_NUM_WORKSPACES}" ]]; then
-	echo "Must specify --num-workspaces"
-	exit 1
-fi
-
-if [[ -z "${SCALETEST_SCENARIO}" ]]; then
-	echo "Must specify --scenario"
-	exit 1
-fi
-
-if [[ -z "${SCALETEST_PROMETHEUS_REMOTE_WRITE_USER}" ]] || [[ -z "${SCALETEST_PROMETHEUS_REMOTE_WRITE_PASSWORD}" ]]; then
-	echo "SCALETEST_PROMETHEUS_REMOTE_WRITE_USER or SCALETEST_PROMETHEUS_REMOTE_WRITE_PASSWORD not specified."
-	echo "No prometheus metrics will be collected!"
-	read -p "Continue (y/N)? " -n1 -r
-	if [[ "${REPLY}" != [yY] ]]; then
-		exit 1
-	fi
-fi
-
-SCALETEST_SCENARIO_VARS="${PROJECT_ROOT}/scaletest/terraform/scenario-${SCALETEST_SCENARIO}.tfvars"
-if [[ ! -f "${SCALETEST_SCENARIO_VARS}" ]]; then
-	echo "Scenario ${SCALETEST_SCENARIO_VARS} not found."
-	echo "Please create it or choose another scenario:"
-	find "${PROJECT_ROOT}/scaletest/terraform" -type f -name 'scenario-*.tfvars'
-	exit 1
-fi
-
-if [[ "${SCALETEST_SKIP_CLEANUP}" == 1 ]]; then
-	log "WARNING: you told me to not clean up after myself, so this is now your job!"
-fi
-
-CONFIG_DIR="${PROJECT_ROOT}/scaletest/.coderv2"
-if [[ -d "${CONFIG_DIR}" ]] && files=$(ls -qAH -- "${CONFIG_DIR}") && [[ -z "$files" ]]; then
-	echo "Cleaning previous configuration"
-	maybedryrun "$DRY_RUN" rm -fv "${CONFIG_DIR}/*"
-fi
-maybedryrun "$DRY_RUN" mkdir -p "${CONFIG_DIR}"
-
-SCALETEST_SCENARIO_VARS="${PROJECT_ROOT}/scaletest/terraform/scenario-${SCALETEST_SCENARIO}.tfvars"
-SCALETEST_SECRETS="${PROJECT_ROOT}/scaletest/terraform/secrets.tfvars"
-SCALETEST_SECRETS_TEMPLATE="${PROJECT_ROOT}/scaletest/terraform/secrets.tfvars.tpl"
-
-log "Writing scaletest secrets to file."
-SCALETEST_NAME="${SCALETEST_NAME}" \
-	SCALETEST_PROJECT="${SCALETEST_PROJECT}" \
-	SCALETEST_PROMETHEUS_REMOTE_WRITE_USER="${SCALETEST_PROMETHEUS_REMOTE_WRITE_USER}" \
-	SCALETEST_PROMETHEUS_REMOTE_WRITE_PASSWORD="${SCALETEST_PROMETHEUS_REMOTE_WRITE_PASSWORD}" \
-	envsubst <"${SCALETEST_SECRETS_TEMPLATE}" >"${SCALETEST_SECRETS}"
-
-pushd "${PROJECT_ROOT}/scaletest/terraform"
-
-echo "Initializing terraform."
-maybedryrun "$DRY_RUN" terraform init
-
-echo "Setting up infrastructure."
-maybedryrun "$DRY_RUN" terraform apply --var-file="${SCALETEST_SCENARIO_VARS}" --var-file="${SCALETEST_SECRETS}" --var state=started --auto-approve
-
-if [[ "${DRY_RUN}" != 1 ]]; then
-	SCALETEST_CODER_URL=$(<"${CONFIG_DIR}/url")
-else
-	SCALETEST_CODER_URL="http://coder.dryrun.local:3000"
-fi
-KUBECONFIG="${PROJECT_ROOT}/scaletest/.coderv2/${SCALETEST_NAME}-cluster.kubeconfig"
-echo "Waiting for Coder deployment at ${SCALETEST_CODER_URL} to become ready"
-max_attempts=10
-for attempt in $(seq 1 $max_attempts); do
-	maybedryrun "$DRY_RUN" curl --silent --fail --output /dev/null "${SCALETEST_CODER_URL}/api/v2/buildinfo"
-	curl_status=$?
-	if [[ $curl_status -eq 0 ]]; then
-		break
-	fi
-	if attempt -eq $max_attempts; then
-		echo
-		echo "Coder deployment failed to become ready in time!"
-		exit 1
-	fi
-	echo "Coder deployment not ready yet (${attempt}/${max_attempts}), sleeping 3 seconds"
-	maybedryrun "$DRY_RUN" sleep 3
-done
-
-echo "Initializing Coder deployment."
-DRY_RUN="$DRY_RUN" "${PROJECT_ROOT}/scaletest/lib/coder_init.sh" "${SCALETEST_CODER_URL}"
-
-if [[ -n "${SCALETEST_CODER_LICENSE}" ]]; then
-	echo "Applying Coder Enterprise License"
-	DRY_RUN="$DRY_RUN" "${PROJECT_ROOT}/scaletest/lib/coder_shim.sh" license add -l "${SCALETEST_CODER_LICENSE}"
-fi
-
-echo "Creating ${SCALETEST_NUM_WORKSPACES} workspaces."
-DRY_RUN="$DRY_RUN" "${PROJECT_ROOT}/scaletest/lib/coder_shim.sh" exp scaletest create-workspaces \
-	--count "${SCALETEST_NUM_WORKSPACES}" \
-	--template=kubernetes \
-	--concurrency "${SCALETEST_CREATE_CONCURRENCY}" \
-	--no-cleanup
-
-echo "Sleeping 10 minutes to establish a baseline measurement."
-maybedryrun "$DRY_RUN" sleep 600
-
-echo "Sending traffic to workspaces"
-maybedryrun "$DRY_RUN" "${PROJECT_ROOT}/scaletest/lib/coder_workspacetraffic.sh" \
-	--name "${SCALETEST_NAME}" \
-	--traffic-bytes-per-tick "${SCALETEST_TRAFFIC_BYTES_PER_TICK}" \
-	--traffic-tick-interval "${SCALETEST_TRAFFIC_TICK_INTERVAL}"
-maybedryrun "$DRY_RUN" kubectl --kubeconfig="${KUBECONFIG}" -n "coder-${SCALETEST_NAME}" wait pods coder-scaletest-workspace-traffic --for condition=Ready
-
-echo "Sleeping 15 minutes for traffic generation"
-maybedryrun "$DRY_RUN" sleep 900
-
-echo "Starting pprof"
-maybedryrun "$DRY_RUN" kubectl -n "coder-${SCALETEST_NAME}" port-forward deployment/coder 6061:6060 &
-pfpid=$!
-maybedryrun "$DRY_RUN" trap "kill $pfpid" EXIT
-
-echo "Waiting for pprof endpoint to become available"
-pprof_attempt_counter=0
-while ! maybedryrun "$DRY_RUN" timeout 1 bash -c "echo > /dev/tcp/localhost/6061"; do
-	if [[ $pprof_attempt_counter -eq 10 ]]; then
-		echo
-		echo "pprof failed to become ready in time!"
-		exit 1
-	fi
-	((pprof_attempt_counter += 1))
-	maybedryrun "$DRY_RUN" sleep 3
-done
-
-echo "Taking pprof snapshots"
-maybedryrun "$DRY_RUN" curl --silent --fail --output "${SCALETEST_NAME}-heap.pprof.gz" http://localhost:6061/debug/pprof/heap
-maybedryrun "$DRY_RUN" curl --silent --fail --output "${SCALETEST_NAME}-goroutine.pprof.gz" http://localhost:6061/debug/pprof/goroutine
-# No longer need to port-forward
-maybedryrun "$DRY_RUN" kill "$pfpid"
-maybedryrun "$DRY_RUN" trap - EXIT
-
-if [[ "${SCALETEST_SKIP_CLEANUP}" == 1 ]]; then
-	echo "Leaving resources up for you to inspect."
-	echo "Please don't forget to clean up afterwards:"
-	echo "cd terraform && terraform destroy --var-file=${SCALETEST_SCENARIO_VARS} --var-file=${SCALETEST_SECRETS} --auto-approve"
-	exit 0
-fi
-
-if [[ "${SCALETEST_DESTROY}" == 1 ]]; then
-	echo "Destroying infrastructure"
-	maybedryrun "$DRY_RUN" terraform destroy --var-file="${SCALETEST_SCENARIO_VARS}" --var-file="${SCALETEST_SECRETS}" --auto-approve
-else
-	echo "Scaling down infrastructure"
-	maybedryrun "$DRY_RUN" terraform apply --var-file="${SCALETEST_SCENARIO_VARS}" --var-file="${SCALETEST_SECRETS}" --var state=stopped --auto-approve
-fi
diff --git a/scaletest/terraform/action/.gitignore b/scaletest/terraform/action/.gitignore
deleted file mode 100644
index c45cf41694258..0000000000000
--- a/scaletest/terraform/action/.gitignore
+++ /dev/null
@@ -1 +0,0 @@
-*.tfvars
diff --git a/scaletest/terraform/action/cf_dns.tf b/scaletest/terraform/action/cf_dns.tf
deleted file mode 100644
index 126c35c12cc76..0000000000000
--- a/scaletest/terraform/action/cf_dns.tf
+++ /dev/null
@@ -1,21 +0,0 @@
-data "cloudflare_zone" "domain" {
-  name = var.cloudflare_domain
-}
-
-resource "cloudflare_record" "coder" {
-  for_each = local.deployments
-  zone_id  = data.cloudflare_zone.domain.zone_id
-  name     = "${each.value.subdomain}.${var.cloudflare_domain}"
-  content  = google_compute_address.coder[each.key].address
-  type     = "A"
-  ttl      = 3600
-}
-
-resource "cloudflare_record" "coder_wildcard" {
-  for_each = local.deployments
-  zone_id  = data.cloudflare_zone.domain.id
-  name     = each.value.wildcard_subdomain
-  content  = cloudflare_record.coder[each.key].name
-  type     = "CNAME"
-  ttl      = 3600
-}
diff --git a/scaletest/terraform/action/coder_helm_values.tftpl b/scaletest/terraform/action/coder_helm_values.tftpl
deleted file mode 100644
index 3fc8d5dfd4226..0000000000000
--- a/scaletest/terraform/action/coder_helm_values.tftpl
+++ /dev/null
@@ -1,120 +0,0 @@
-coder:
-  workspaceProxy: ${workspace_proxy}
-  affinity:
-    nodeAffinity:
-      requiredDuringSchedulingIgnoredDuringExecution:
-        nodeSelectorTerms:
-        - matchExpressions:
-          - key: "cloud.google.com/gke-nodepool"
-            operator: "In"
-            values: ["${node_pool}"]
-    podAntiAffinity:
-      preferredDuringSchedulingIgnoredDuringExecution:
-      - weight: 1
-        podAffinityTerm:
-          topologyKey: "kubernetes.io/hostname"
-          labelSelector:
-            matchExpressions:
-            - key:      "app.kubernetes.io/instance"
-              operator: "In"
-              values:   ["${release_name}"]
-  env:
-    %{~ if workspace_proxy ~}
-    - name: "CODER_ACCESS_URL"
-      value: "${access_url}"
-    - name: "CODER_WILDCARD_ACCESS_URL"
-      value: "${wildcard_access_url}"
-    - name: CODER_PRIMARY_ACCESS_URL
-      value: "${primary_url}"
-    - name: CODER_PROXY_SESSION_TOKEN
-      valueFrom:
-        secretKeyRef:
-          key: token
-          name: "${proxy_token}"
-    %{~ endif ~}
-    %{~ if provisionerd ~}
-    - name: "CODER_URL"
-      value: "${access_url}"
-    - name: "CODER_PROVISIONERD_TAGS"
-      value: "scope=organization,deployment=${deployment}"
-    - name: "CODER_PROVISIONER_DAEMON_NAME"
-      valueFrom:
-        fieldRef:
-          fieldPath: metadata.name
-    - name: "CODER_CONFIG_DIR"
-      value: "/tmp/config"
-    %{~ endif ~}
-    %{~ if !workspace_proxy && !provisionerd ~}
-    - name: "CODER_ACCESS_URL"
-      value: "${access_url}"
-    - name: "CODER_WILDCARD_ACCESS_URL"
-      value: "${wildcard_access_url}"
-    - name: "CODER_PG_CONNECTION_URL"
-      valueFrom:
-        secretKeyRef:
-          name: "${db_secret}"
-          key: url
-    - name: "CODER_PROVISIONER_DAEMONS"
-      value: "0"
-    - name: CODER_PROVISIONER_DAEMON_PSK
-      valueFrom:
-        secretKeyRef:
-          key: psk
-          name: "${provisionerd_psk}"
-    - name: "CODER_PROMETHEUS_COLLECT_AGENT_STATS"
-      value: "true"
-    - name: "CODER_PROMETHEUS_COLLECT_DB_METRICS"
-      value: "true"
-    - name: "CODER_PPROF_ENABLE"
-      value: "true"
-    %{~ endif ~}
-    - name: "CODER_CACHE_DIRECTORY"
-      value: "/tmp/coder"
-    - name: "CODER_TELEMETRY_ENABLE"
-      value: "false"
-    - name: "CODER_LOGGING_HUMAN"
-      value: "/dev/null"
-    - name: "CODER_LOGGING_STACKDRIVER"
-      value: "/dev/stderr"
-    - name: "CODER_PROMETHEUS_ENABLE"
-      value: "true"
-    - name: "CODER_VERBOSE"
-      value: "true"
-    - name: "CODER_EXPERIMENTS"
-      value: "${experiments}"
-    - name: "CODER_DANGEROUS_DISABLE_RATE_LIMITS"
-      value: "true"
-    - name: "CODER_DANGEROUS_ALLOW_PATH_APP_SITE_OWNER_ACCESS"
-      value: "true"
-  image:
-    repo: ${image_repo}
-    tag: ${image_tag}
-  replicaCount: "${replicas}"
-  resources:
-    requests:
-      cpu: "${cpu_request}"
-      memory: "${mem_request}"
-    limits:
-      cpu: "${cpu_limit}"
-      memory: "${mem_limit}"
-  securityContext:
-    readOnlyRootFilesystem: true
-  %{~ if !provisionerd ~}
-  service:
-    enable: true
-    sessionAffinity: None
-    loadBalancerIP: "${ip_address}"
-  %{~ endif ~}
-  volumeMounts:
-  - mountPath: "/tmp"
-    name: cache
-    readOnly: false
-  volumes:
-  - emptyDir:
-      sizeLimit: 1024Mi
-    name: cache
-  %{~ if !provisionerd ~}
-  tls:
-    secretNames:
-      - "${tls_secret_name}"
-  %{~ endif ~}
diff --git a/scaletest/terraform/action/coder_proxies.tf b/scaletest/terraform/action/coder_proxies.tf
deleted file mode 100644
index 6af3ef82bb392..0000000000000
--- a/scaletest/terraform/action/coder_proxies.tf
+++ /dev/null
@@ -1,102 +0,0 @@
-data "http" "coder_healthy" {
-  url = local.deployments.primary.url
-  // Wait up to 5 minutes for DNS to propagate
-  retry {
-    attempts     = 30
-    min_delay_ms = 10000
-  }
-
-  lifecycle {
-    postcondition {
-      condition     = self.status_code == 200
-      error_message = "${self.url} returned an unhealthy status code"
-    }
-  }
-
-  depends_on = [helm_release.coder_primary, cloudflare_record.coder["primary"]]
-}
-
-resource "null_resource" "api_key" {
-  provisioner "local-exec" {
-    interpreter = ["/bin/bash", "-c"]
-    command     = <<EOF
-set -e
-
-curl '${local.deployments.primary.url}/api/v2/users/first' \
-  --data-raw $'{"email":"${local.coder_admin_email}","password":"${local.coder_admin_password}","username":"${local.coder_admin_user}","name":"${local.coder_admin_full_name}","trial":false}' \
-  --insecure --silent --output /dev/null
-
-session_token=$(curl '${local.deployments.primary.url}/api/v2/users/login' \
-  --data-raw $'{"email":"${local.coder_admin_email}","password":"${local.coder_admin_password}"}' \
-  --insecure --silent | jq -r .session_token)
-
-echo -n $${session_token} > ${path.module}/.coderv2/session_token
-
-api_key=$(curl '${local.deployments.primary.url}/api/v2/users/me/keys/tokens' \
-  -H "Coder-Session-Token: $${session_token}" \
-  --data-raw '{"token_name":"terraform","scope":"all"}' \
-  --insecure --silent | jq -r .key)
-
-echo -n $${api_key} > ${path.module}/.coderv2/api_key
-EOF
-  }
-
-  depends_on = [data.http.coder_healthy]
-}
-
-data "local_file" "api_key" {
-  filename   = "${path.module}/.coderv2/api_key"
-  depends_on = [null_resource.api_key]
-}
-
-resource "null_resource" "license" {
-  provisioner "local-exec" {
-    interpreter = ["/bin/bash", "-c"]
-    command     = <<EOF
-curl '${local.deployments.primary.url}/api/v2/licenses' \
-  -H "Coder-Session-Token: ${trimspace(data.local_file.api_key.content)}" \
-  --data-raw '{"license":"${var.coder_license}"}' \
-  --insecure --silent --output /dev/null
-EOF
-  }
-}
-
-resource "null_resource" "europe_proxy_token" {
-  provisioner "local-exec" {
-    interpreter = ["/bin/bash", "-c"]
-    command     = <<EOF
-curl '${local.deployments.primary.url}/api/v2/workspaceproxies' \
-  -H "Coder-Session-Token: ${trimspace(data.local_file.api_key.content)}" \
-  --data-raw '{"name":"europe","display_name":"Europe","icon":"/emojis/1f950.png"}' \
-  --insecure --silent \
-  | jq -r .proxy_token > ${path.module}/.coderv2/europe_proxy_token
-EOF
-  }
-
-  depends_on = [null_resource.license]
-}
-
-data "local_file" "europe_proxy_token" {
-  filename   = "${path.module}/.coderv2/europe_proxy_token"
-  depends_on = [null_resource.europe_proxy_token]
-}
-
-resource "null_resource" "asia_proxy_token" {
-  provisioner "local-exec" {
-    interpreter = ["/bin/bash", "-c"]
-    command     = <<EOF
-curl '${local.deployments.primary.url}/api/v2/workspaceproxies' \
-  -H "Coder-Session-Token: ${trimspace(data.local_file.api_key.content)}" \
-  --data-raw '{"name":"asia","display_name":"Asia","icon":"/emojis/1f35b.png"}' \
-  --insecure --silent \
-  | jq -r .proxy_token > ${path.module}/.coderv2/asia_proxy_token
-EOF
-  }
-
-  depends_on = [null_resource.license]
-}
-
-data "local_file" "asia_proxy_token" {
-  filename   = "${path.module}/.coderv2/asia_proxy_token"
-  depends_on = [null_resource.asia_proxy_token]
-}
diff --git a/scaletest/terraform/action/coder_templates.tf b/scaletest/terraform/action/coder_templates.tf
deleted file mode 100644
index d27c25844b91e..0000000000000
--- a/scaletest/terraform/action/coder_templates.tf
+++ /dev/null
@@ -1,340 +0,0 @@
-resource "local_file" "kubernetes_template" {
-  filename = "${path.module}/.coderv2/templates/kubernetes/main.tf"
-  content  = <<EOF
-terraform {
-  required_providers {
-    coder = {
-      source  = "coder/coder"
-      version = "~> 2.1.0"
-    }
-    kubernetes = {
-      source  = "hashicorp/kubernetes"
-      version = "~> 2.30"
-    }
-  }
-}
-
-provider "coder" {}
-
-provider "kubernetes" {
-  config_path = null # always use host
-}
-
-data "coder_workspace" "me" {}
-data "coder_workspace_owner" "me" {}
-
-resource "coder_agent" "main" {
-  os                     = "linux"
-  arch                   = "amd64"
-}
-
-resource "coder_script" "websocat" {
-  agent_id     = coder_agent.main.id
-  display_name = "websocat"
-  script       = <<EOF2
-curl -sSL -o /tmp/websocat https://github.com/vi/websocat/releases/download/v1.12.0/websocat.x86_64-unknown-linux-musl
-chmod +x /tmp/websocat
-
-/tmp/websocat --exit-on-eof --binary ws-l:127.0.0.1:1234 mirror:
-EOF2
-  run_on_start = true
-}
-
-resource "coder_app" "wsecho" {
-  agent_id     = coder_agent.main.id
-  slug         = "wsec"
-  display_name = "WebSocket Echo"
-  url          = "http://localhost:1234"
-  share        = "authenticated"
-}
-
-resource "kubernetes_pod" "main" {
-  count = data.coder_workspace.me.start_count
-  metadata {
-    name      = "coder-$${lower(data.coder_workspace_owner.me.name)}-$${lower(data.coder_workspace.me.name)}"
-    namespace = "${local.coder_namespace}"
-    labels = {
-      "app.kubernetes.io/name"     = "coder-workspace"
-      "app.kubernetes.io/instance" = "coder-workspace-$${lower(data.coder_workspace_owner.me.name)}-$${lower(data.coder_workspace.me.name)}"
-    }
-  }
-  spec {
-    security_context {
-      run_as_user = "1000"
-      fs_group    = "1000"
-    }
-    container {
-      name              = "dev"
-      image             = "${var.workspace_image}"
-      image_pull_policy = "Always"
-      command           = ["sh", "-c", coder_agent.main.init_script]
-      security_context {
-        run_as_user = "1000"
-      }
-      env {
-        name  = "CODER_AGENT_TOKEN"
-        value = coder_agent.main.token
-      }
-      resources {
-        requests = {
-          "cpu"    = "${local.scenarios[var.scenario].workspaces.cpu_request}"
-          "memory" = "${local.scenarios[var.scenario].workspaces.mem_request}"
-        }
-        limits = {
-          "cpu"    = "${local.scenarios[var.scenario].workspaces.cpu_limit}"
-          "memory" = "${local.scenarios[var.scenario].workspaces.mem_limit}"
-        }
-      }
-    }
-
-    affinity {
-      node_affinity {
-        required_during_scheduling_ignored_during_execution {
-          node_selector_term {
-            match_expressions {
-              key = "cloud.google.com/gke-nodepool"
-              operator = "In"
-              values = ["${google_container_node_pool.node_pool["primary_workspaces"].name}","${google_container_node_pool.node_pool["europe_workspaces"].name}","${google_container_node_pool.node_pool["asia_workspaces"].name}"]
-            }
-          }
-        }
-      }
-    }
-  }
-}
-EOF
-}
-
-resource "kubernetes_config_map" "template_primary" {
-  provider = kubernetes.primary
-
-  metadata {
-    name      = "coder-template"
-    namespace = kubernetes_namespace.coder_primary.metadata.0.name
-  }
-
-  data = {
-    "main.tf" = local_file.kubernetes_template.content
-  }
-}
-
-resource "kubernetes_job" "push_template_primary" {
-  provider = kubernetes.primary
-
-  metadata {
-    name      = "${var.name}-push-template"
-    namespace = kubernetes_namespace.coder_primary.metadata.0.name
-    labels = {
-      "app.kubernetes.io/name" = "${var.name}-push-template"
-    }
-  }
-  spec {
-    completions = 1
-    template {
-      metadata {}
-      spec {
-        affinity {
-          node_affinity {
-            required_during_scheduling_ignored_during_execution {
-              node_selector_term {
-                match_expressions {
-                  key      = "cloud.google.com/gke-nodepool"
-                  operator = "In"
-                  values   = ["${google_container_node_pool.node_pool["primary_misc"].name}"]
-                }
-              }
-            }
-          }
-        }
-        container {
-          name  = "cli"
-          image = "${var.coder_image_repo}:${var.coder_image_tag}"
-          command = [
-            "/opt/coder",
-            "--verbose",
-            "--url=${local.deployments.primary.url}",
-            "--token=${trimspace(data.local_file.api_key.content)}",
-            "templates",
-            "push",
-            "--directory=/home/coder/template",
-            "--provisioner-tag=scope=organization",
-            "--provisioner-tag=deployment=primary",
-            "--yes",
-            "kubernetes-primary"
-          ]
-          volume_mount {
-            name       = "coder-template"
-            mount_path = "/home/coder/template/main.tf"
-            sub_path   = "main.tf"
-          }
-        }
-        volume {
-          name = "coder-template"
-          config_map {
-            name = kubernetes_config_map.template_primary.metadata.0.name
-          }
-        }
-        restart_policy = "Never"
-      }
-    }
-  }
-  wait_for_completion = true
-
-  depends_on = [helm_release.provisionerd_primary]
-}
-
-resource "kubernetes_config_map" "template_europe" {
-  provider = kubernetes.europe
-
-  metadata {
-    name      = "coder-template"
-    namespace = kubernetes_namespace.coder_europe.metadata.0.name
-  }
-
-  data = {
-    "main.tf" = local_file.kubernetes_template.content
-  }
-}
-
-resource "kubernetes_job" "push_template_europe" {
-  provider = kubernetes.europe
-
-  metadata {
-    name      = "${var.name}-push-template"
-    namespace = kubernetes_namespace.coder_europe.metadata.0.name
-    labels = {
-      "app.kubernetes.io/name" = "${var.name}-push-template"
-    }
-  }
-  spec {
-    completions = 1
-    template {
-      metadata {}
-      spec {
-        affinity {
-          node_affinity {
-            required_during_scheduling_ignored_during_execution {
-              node_selector_term {
-                match_expressions {
-                  key      = "cloud.google.com/gke-nodepool"
-                  operator = "In"
-                  values   = ["${google_container_node_pool.node_pool["europe_misc"].name}"]
-                }
-              }
-            }
-          }
-        }
-        container {
-          name  = "cli"
-          image = "${var.coder_image_repo}:${var.coder_image_tag}"
-          command = [
-            "/opt/coder",
-            "--verbose",
-            "--url=${local.deployments.primary.url}",
-            "--token=${trimspace(data.local_file.api_key.content)}",
-            "templates",
-            "push",
-            "--directory=/home/coder/template",
-            "--provisioner-tag=scope=organization",
-            "--provisioner-tag=deployment=europe",
-            "--yes",
-            "kubernetes-europe"
-          ]
-          volume_mount {
-            name       = "coder-template"
-            mount_path = "/home/coder/template/main.tf"
-            sub_path   = "main.tf"
-          }
-        }
-        volume {
-          name = "coder-template"
-          config_map {
-            name = kubernetes_config_map.template_europe.metadata.0.name
-          }
-        }
-        restart_policy = "Never"
-      }
-    }
-  }
-  wait_for_completion = true
-
-  depends_on = [helm_release.provisionerd_europe]
-}
-
-resource "kubernetes_config_map" "template_asia" {
-  provider = kubernetes.asia
-
-  metadata {
-    name      = "coder-template"
-    namespace = kubernetes_namespace.coder_asia.metadata.0.name
-  }
-
-  data = {
-    "main.tf" = local_file.kubernetes_template.content
-  }
-}
-
-resource "kubernetes_job" "push_template_asia" {
-  provider = kubernetes.asia
-
-  metadata {
-    name      = "${var.name}-push-template"
-    namespace = kubernetes_namespace.coder_asia.metadata.0.name
-    labels = {
-      "app.kubernetes.io/name" = "${var.name}-push-template"
-    }
-  }
-  spec {
-    completions = 1
-    template {
-      metadata {}
-      spec {
-        affinity {
-          node_affinity {
-            required_during_scheduling_ignored_during_execution {
-              node_selector_term {
-                match_expressions {
-                  key      = "cloud.google.com/gke-nodepool"
-                  operator = "In"
-                  values   = ["${google_container_node_pool.node_pool["asia_misc"].name}"]
-                }
-              }
-            }
-          }
-        }
-        container {
-          name  = "cli"
-          image = "${var.coder_image_repo}:${var.coder_image_tag}"
-          command = [
-            "/opt/coder",
-            "--verbose",
-            "--url=${local.deployments.primary.url}",
-            "--token=${trimspace(data.local_file.api_key.content)}",
-            "templates",
-            "push",
-            "--directory=/home/coder/template",
-            "--provisioner-tag=scope=organization",
-            "--provisioner-tag=deployment=asia",
-            "--yes",
-            "kubernetes-asia"
-          ]
-          volume_mount {
-            name       = "coder-template"
-            mount_path = "/home/coder/template/main.tf"
-            sub_path   = "main.tf"
-          }
-        }
-        volume {
-          name = "coder-template"
-          config_map {
-            name = kubernetes_config_map.template_asia.metadata.0.name
-          }
-        }
-        restart_policy = "Never"
-      }
-    }
-  }
-  wait_for_completion = true
-
-  depends_on = [helm_release.provisionerd_asia]
-}
diff --git a/scaletest/terraform/action/coder_traffic.tf b/scaletest/terraform/action/coder_traffic.tf
deleted file mode 100644
index b477f3847a6d6..0000000000000
--- a/scaletest/terraform/action/coder_traffic.tf
+++ /dev/null
@@ -1,228 +0,0 @@
-locals {
-  wait_baseline_duration = "5m"
-  bytes_per_tick         = 1024
-  tick_interval          = "100ms"
-
-  traffic_types = {
-    ssh = {
-      duration    = "30m"
-      job_timeout = "35m"
-      flags = [
-        "--ssh",
-      ]
-    }
-    webterminal = {
-      duration    = "25m"
-      job_timeout = "30m"
-      flags       = []
-    }
-    app = {
-      duration    = "20m"
-      job_timeout = "25m"
-      flags = [
-        "--app=wsec",
-      ]
-    }
-  }
-}
-
-resource "time_sleep" "wait_baseline" {
-  depends_on = [
-    kubernetes_job.create_workspaces_primary,
-    kubernetes_job.create_workspaces_europe,
-    kubernetes_job.create_workspaces_asia,
-    helm_release.prometheus_chart_primary,
-    helm_release.prometheus_chart_europe,
-    helm_release.prometheus_chart_asia,
-  ]
-
-  create_duration = local.wait_baseline_duration
-}
-
-resource "kubernetes_job" "workspace_traffic_primary" {
-  provider = kubernetes.primary
-
-  for_each = local.traffic_types
-  metadata {
-    name      = "${var.name}-workspace-traffic-${each.key}"
-    namespace = kubernetes_namespace.coder_primary.metadata.0.name
-    labels = {
-      "app.kubernetes.io/name" = "${var.name}-workspace-traffic-${each.key}"
-    }
-  }
-  spec {
-    completions   = 1
-    backoff_limit = 0
-    template {
-      metadata {}
-      spec {
-        affinity {
-          node_affinity {
-            required_during_scheduling_ignored_during_execution {
-              node_selector_term {
-                match_expressions {
-                  key      = "cloud.google.com/gke-nodepool"
-                  operator = "In"
-                  values   = ["${google_container_node_pool.node_pool["primary_misc"].name}"]
-                }
-              }
-            }
-          }
-        }
-        container {
-          name  = "cli"
-          image = "${var.coder_image_repo}:${var.coder_image_tag}"
-          command = concat([
-            "/opt/coder",
-            "--verbose",
-            "--url=${local.deployments.primary.url}",
-            "--token=${trimspace(data.local_file.api_key.content)}",
-            "exp",
-            "scaletest",
-            "workspace-traffic",
-            "--template=kubernetes-primary",
-            "--concurrency=0",
-            "--bytes-per-tick=${local.bytes_per_tick}",
-            "--tick-interval=${local.tick_interval}",
-            "--scaletest-prometheus-wait=30s",
-            "--job-timeout=${local.traffic_types[each.key].duration}",
-          ], local.traffic_types[each.key].flags)
-        }
-        restart_policy = "Never"
-      }
-    }
-  }
-  wait_for_completion = true
-
-  timeouts {
-    create = local.traffic_types[each.key].job_timeout
-  }
-
-  depends_on = [time_sleep.wait_baseline]
-}
-
-resource "kubernetes_job" "workspace_traffic_europe" {
-  provider = kubernetes.europe
-
-  for_each = local.traffic_types
-  metadata {
-    name      = "${var.name}-workspace-traffic-${each.key}"
-    namespace = kubernetes_namespace.coder_europe.metadata.0.name
-    labels = {
-      "app.kubernetes.io/name" = "${var.name}-workspace-traffic-${each.key}"
-    }
-  }
-  spec {
-    completions   = 1
-    backoff_limit = 0
-    template {
-      metadata {}
-      spec {
-        affinity {
-          node_affinity {
-            required_during_scheduling_ignored_during_execution {
-              node_selector_term {
-                match_expressions {
-                  key      = "cloud.google.com/gke-nodepool"
-                  operator = "In"
-                  values   = ["${google_container_node_pool.node_pool["europe_misc"].name}"]
-                }
-              }
-            }
-          }
-        }
-        container {
-          name  = "cli"
-          image = "${var.coder_image_repo}:${var.coder_image_tag}"
-          command = concat([
-            "/opt/coder",
-            "--verbose",
-            "--url=${local.deployments.primary.url}",
-            "--token=${trimspace(data.local_file.api_key.content)}",
-            "exp",
-            "scaletest",
-            "workspace-traffic",
-            "--template=kubernetes-europe",
-            "--concurrency=0",
-            "--bytes-per-tick=${local.bytes_per_tick}",
-            "--tick-interval=${local.tick_interval}",
-            "--scaletest-prometheus-wait=30s",
-            "--job-timeout=${local.traffic_types[each.key].duration}",
-            "--workspace-proxy-url=${local.deployments.europe.url}",
-          ], local.traffic_types[each.key].flags)
-        }
-        restart_policy = "Never"
-      }
-    }
-  }
-  wait_for_completion = true
-
-  timeouts {
-    create = local.traffic_types[each.key].job_timeout
-  }
-
-  depends_on = [time_sleep.wait_baseline]
-}
-
-resource "kubernetes_job" "workspace_traffic_asia" {
-  provider = kubernetes.asia
-
-  for_each = local.traffic_types
-  metadata {
-    name      = "${var.name}-workspace-traffic-${each.key}"
-    namespace = kubernetes_namespace.coder_asia.metadata.0.name
-    labels = {
-      "app.kubernetes.io/name" = "${var.name}-workspace-traffic-${each.key}"
-    }
-  }
-  spec {
-    completions   = 1
-    backoff_limit = 0
-    template {
-      metadata {}
-      spec {
-        affinity {
-          node_affinity {
-            required_during_scheduling_ignored_during_execution {
-              node_selector_term {
-                match_expressions {
-                  key      = "cloud.google.com/gke-nodepool"
-                  operator = "In"
-                  values   = ["${google_container_node_pool.node_pool["asia_misc"].name}"]
-                }
-              }
-            }
-          }
-        }
-        container {
-          name  = "cli"
-          image = "${var.coder_image_repo}:${var.coder_image_tag}"
-          command = concat([
-            "/opt/coder",
-            "--verbose",
-            "--url=${local.deployments.primary.url}",
-            "--token=${trimspace(data.local_file.api_key.content)}",
-            "exp",
-            "scaletest",
-            "workspace-traffic",
-            "--template=kubernetes-asia",
-            "--concurrency=0",
-            "--bytes-per-tick=${local.bytes_per_tick}",
-            "--tick-interval=${local.tick_interval}",
-            "--scaletest-prometheus-wait=30s",
-            "--job-timeout=${local.traffic_types[each.key].duration}",
-            "--workspace-proxy-url=${local.deployments.asia.url}",
-          ], local.traffic_types[each.key].flags)
-        }
-        restart_policy = "Never"
-      }
-    }
-  }
-  wait_for_completion = true
-
-  timeouts {
-    create = local.traffic_types[each.key].job_timeout
-  }
-
-  depends_on = [time_sleep.wait_baseline]
-}
diff --git a/scaletest/terraform/action/coder_workspaces.tf b/scaletest/terraform/action/coder_workspaces.tf
deleted file mode 100644
index f49c1c996864f..0000000000000
--- a/scaletest/terraform/action/coder_workspaces.tf
+++ /dev/null
@@ -1,180 +0,0 @@
-locals {
-  create_workspace_timeout = "30m"
-}
-
-resource "kubernetes_job" "create_workspaces_primary" {
-  provider = kubernetes.primary
-
-  metadata {
-    name      = "${var.name}-create-workspaces"
-    namespace = kubernetes_namespace.coder_primary.metadata.0.name
-    labels = {
-      "app.kubernetes.io/name" = "${var.name}-create-workspaces"
-    }
-  }
-  spec {
-    completions   = 1
-    backoff_limit = 0
-    template {
-      metadata {}
-      spec {
-        affinity {
-          node_affinity {
-            required_during_scheduling_ignored_during_execution {
-              node_selector_term {
-                match_expressions {
-                  key      = "cloud.google.com/gke-nodepool"
-                  operator = "In"
-                  values   = ["${google_container_node_pool.node_pool["primary_misc"].name}"]
-                }
-              }
-            }
-          }
-        }
-        container {
-          name  = "cli"
-          image = "${var.coder_image_repo}:${var.coder_image_tag}"
-          command = [
-            "/opt/coder",
-            "--verbose",
-            "--url=${local.deployments.primary.url}",
-            "--token=${trimspace(data.local_file.api_key.content)}",
-            "exp",
-            "scaletest",
-            "create-workspaces",
-            "--count=${local.scenarios[var.scenario].workspaces.count_per_deployment}",
-            "--template=kubernetes-primary",
-            "--concurrency=${local.scenarios[var.scenario].provisionerd.replicas}",
-            "--no-cleanup"
-          ]
-        }
-        restart_policy = "Never"
-      }
-    }
-  }
-  wait_for_completion = true
-
-  timeouts {
-    create = local.create_workspace_timeout
-  }
-
-  depends_on = [kubernetes_job.push_template_primary]
-}
-
-resource "kubernetes_job" "create_workspaces_europe" {
-  provider = kubernetes.europe
-
-  metadata {
-    name      = "${var.name}-create-workspaces"
-    namespace = kubernetes_namespace.coder_europe.metadata.0.name
-    labels = {
-      "app.kubernetes.io/name" = "${var.name}-create-workspaces"
-    }
-  }
-  spec {
-    completions   = 1
-    backoff_limit = 0
-    template {
-      metadata {}
-      spec {
-        affinity {
-          node_affinity {
-            required_during_scheduling_ignored_during_execution {
-              node_selector_term {
-                match_expressions {
-                  key      = "cloud.google.com/gke-nodepool"
-                  operator = "In"
-                  values   = ["${google_container_node_pool.node_pool["europe_misc"].name}"]
-                }
-              }
-            }
-          }
-        }
-        container {
-          name  = "cli"
-          image = "${var.coder_image_repo}:${var.coder_image_tag}"
-          command = [
-            "/opt/coder",
-            "--verbose",
-            "--url=${local.deployments.primary.url}",
-            "--token=${trimspace(data.local_file.api_key.content)}",
-            "exp",
-            "scaletest",
-            "create-workspaces",
-            "--count=${local.scenarios[var.scenario].workspaces.count_per_deployment}",
-            "--template=kubernetes-europe",
-            "--concurrency=${local.scenarios[var.scenario].provisionerd.replicas}",
-            "--no-cleanup"
-          ]
-        }
-        restart_policy = "Never"
-      }
-    }
-  }
-  wait_for_completion = true
-
-  timeouts {
-    create = local.create_workspace_timeout
-  }
-
-  depends_on = [kubernetes_job.push_template_europe]
-}
-
-resource "kubernetes_job" "create_workspaces_asia" {
-  provider = kubernetes.asia
-
-  metadata {
-    name      = "${var.name}-create-workspaces"
-    namespace = kubernetes_namespace.coder_asia.metadata.0.name
-    labels = {
-      "app.kubernetes.io/name" = "${var.name}-create-workspaces"
-    }
-  }
-  spec {
-    completions   = 1
-    backoff_limit = 0
-    template {
-      metadata {}
-      spec {
-        affinity {
-          node_affinity {
-            required_during_scheduling_ignored_during_execution {
-              node_selector_term {
-                match_expressions {
-                  key      = "cloud.google.com/gke-nodepool"
-                  operator = "In"
-                  values   = ["${google_container_node_pool.node_pool["asia_misc"].name}"]
-                }
-              }
-            }
-          }
-        }
-        container {
-          name  = "cli"
-          image = "${var.coder_image_repo}:${var.coder_image_tag}"
-          command = [
-            "/opt/coder",
-            "--verbose",
-            "--url=${local.deployments.primary.url}",
-            "--token=${trimspace(data.local_file.api_key.content)}",
-            "exp",
-            "scaletest",
-            "create-workspaces",
-            "--count=${local.scenarios[var.scenario].workspaces.count_per_deployment}",
-            "--template=kubernetes-asia",
-            "--concurrency=${local.scenarios[var.scenario].provisionerd.replicas}",
-            "--no-cleanup"
-          ]
-        }
-        restart_policy = "Never"
-      }
-    }
-  }
-  wait_for_completion = true
-
-  timeouts {
-    create = local.create_workspace_timeout
-  }
-
-  depends_on = [kubernetes_job.push_template_asia]
-}
diff --git a/scaletest/terraform/action/gcp_clusters.tf b/scaletest/terraform/action/gcp_clusters.tf
deleted file mode 100644
index 0a3acfd06ccae..0000000000000
--- a/scaletest/terraform/action/gcp_clusters.tf
+++ /dev/null
@@ -1,162 +0,0 @@
-data "google_compute_default_service_account" "default" {
-  project    = var.project_id
-  depends_on = [google_project_service.api["compute.googleapis.com"]]
-}
-
-locals {
-  deployments = {
-    primary = {
-      subdomain           = "primary.${var.name}"
-      wildcard_subdomain  = "*.primary.${var.name}"
-      url                 = "https://primary.${var.name}.${var.cloudflare_domain}"
-      wildcard_access_url = "*.primary.${var.name}.${var.cloudflare_domain}"
-      region              = "us-east1"
-      zone                = "us-east1-c"
-      subnet              = "scaletest"
-    }
-    europe = {
-      subdomain           = "europe.${var.name}"
-      wildcard_subdomain  = "*.europe.${var.name}"
-      url                 = "https://europe.${var.name}.${var.cloudflare_domain}"
-      wildcard_access_url = "*.europe.${var.name}.${var.cloudflare_domain}"
-      region              = "europe-west1"
-      zone                = "europe-west1-b"
-      subnet              = "scaletest"
-    }
-    asia = {
-      subdomain           = "asia.${var.name}"
-      wildcard_subdomain  = "*.asia.${var.name}"
-      url                 = "https://asia.${var.name}.${var.cloudflare_domain}"
-      wildcard_access_url = "*.asia.${var.name}.${var.cloudflare_domain}"
-      region              = "asia-southeast1"
-      zone                = "asia-southeast1-a"
-      subnet              = "scaletest"
-    }
-  }
-  node_pools = {
-    primary_coder = {
-      name    = "coder"
-      cluster = "primary"
-    }
-    primary_workspaces = {
-      name    = "workspaces"
-      cluster = "primary"
-    }
-    primary_misc = {
-      name    = "misc"
-      cluster = "primary"
-    }
-    europe_coder = {
-      name    = "coder"
-      cluster = "europe"
-    }
-    europe_workspaces = {
-      name    = "workspaces"
-      cluster = "europe"
-    }
-    europe_misc = {
-      name    = "misc"
-      cluster = "europe"
-    }
-    asia_coder = {
-      name    = "coder"
-      cluster = "asia"
-    }
-    asia_workspaces = {
-      name    = "workspaces"
-      cluster = "asia"
-    }
-    asia_misc = {
-      name    = "misc"
-      cluster = "asia"
-    }
-  }
-}
-
-resource "google_container_cluster" "cluster" {
-  for_each                  = local.deployments
-  name                      = "${var.name}-${each.key}"
-  location                  = each.value.zone
-  project                   = var.project_id
-  network                   = google_compute_network.network.name
-  subnetwork                = google_compute_subnetwork.subnetwork[each.key].name
-  networking_mode           = "VPC_NATIVE"
-  default_max_pods_per_node = 256
-  ip_allocation_policy { # Required with networking_mode=VPC_NATIVE
-    cluster_secondary_range_name  = local.secondary_ip_range_k8s_pods
-    services_secondary_range_name = local.secondary_ip_range_k8s_services
-  }
-  release_channel {
-    # Setting release channel as STABLE can cause unexpected cluster upgrades.
-    channel = "UNSPECIFIED"
-  }
-  initial_node_count       = 1
-  remove_default_node_pool = true
-
-  network_policy {
-    enabled = true
-  }
-  depends_on = [
-    google_project_service.api["container.googleapis.com"]
-  ]
-  monitoring_config {
-    enable_components = ["SYSTEM_COMPONENTS"]
-    managed_prometheus {
-      enabled = false
-    }
-  }
-  workload_identity_config {
-    workload_pool = "${data.google_project.project.project_id}.svc.id.goog"
-  }
-
-  lifecycle {
-    ignore_changes = [
-      maintenance_policy,
-      release_channel,
-      remove_default_node_pool
-    ]
-  }
-}
-
-resource "google_container_node_pool" "node_pool" {
-  for_each   = local.node_pools
-  name       = each.value.name
-  location   = local.deployments[each.value.cluster].zone
-  project    = var.project_id
-  cluster    = google_container_cluster.cluster[each.value.cluster].name
-  node_count = local.scenarios[var.scenario][each.value.name].nodepool_size
-  node_config {
-    oauth_scopes = [
-      "https://www.googleapis.com/auth/logging.write",
-      "https://www.googleapis.com/auth/monitoring",
-      "https://www.googleapis.com/auth/trace.append",
-      "https://www.googleapis.com/auth/devstorage.read_only",
-      "https://www.googleapis.com/auth/service.management.readonly",
-      "https://www.googleapis.com/auth/servicecontrol",
-    ]
-    disk_size_gb    = 100
-    machine_type    = local.scenarios[var.scenario][each.value.name].machine_type
-    image_type      = "cos_containerd"
-    service_account = data.google_compute_default_service_account.default.email
-    tags            = ["gke-node", "${var.project_id}-gke"]
-    labels = {
-      env = var.project_id
-    }
-    metadata = {
-      disable-legacy-endpoints = "true"
-    }
-    kubelet_config {
-      cpu_manager_policy = ""
-      cpu_cfs_quota      = false
-      pod_pids_limit     = 0
-    }
-  }
-  lifecycle {
-    ignore_changes = [
-      management[0].auto_repair,
-      management[0].auto_upgrade,
-      timeouts,
-      node_config[0].resource_labels
-    ]
-  }
-}
diff --git a/scaletest/terraform/action/gcp_db.tf b/scaletest/terraform/action/gcp_db.tf
deleted file mode 100644
index e7e64005f4b8f..0000000000000
--- a/scaletest/terraform/action/gcp_db.tf
+++ /dev/null
@@ -1,89 +0,0 @@
-resource "google_sql_database_instance" "db" {
-  name                = "${var.name}-coder"
-  project             = var.project_id
-  region              = local.deployments.primary.region
-  database_version    = "POSTGRES_14"
-  deletion_protection = false
-
-  depends_on = [google_service_networking_connection.private_vpc_connection]
-
-  settings {
-    tier              = local.scenarios[var.scenario].cloudsql.tier
-    activation_policy = "ALWAYS"
-    availability_type = "ZONAL"
-
-    location_preference {
-      zone = local.deployments.primary.zone
-    }
-
-    database_flags {
-      name  = "max_connections"
-      value = local.scenarios[var.scenario].cloudsql.max_connections
-    }
-
-    ip_configuration {
-      ipv4_enabled    = false
-      private_network = google_compute_network.network.id
-    }
-
-    insights_config {
-      query_insights_enabled  = true
-      query_string_length     = 1024
-      record_application_tags = false
-      record_client_address   = false
-    }
-  }
-
-  lifecycle {
-    ignore_changes = [deletion_protection, timeouts]
-  }
-}
-
-resource "google_sql_database" "coder" {
-  project  = var.project_id
-  instance = google_sql_database_instance.db.id
-  name     = "${var.name}-coder"
-  # required for postgres, otherwise db fails to delete
-  deletion_policy = "ABANDON"
-  lifecycle {
-    ignore_changes = [deletion_policy]
-  }
-}
-
-resource "random_password" "coder_postgres_password" {
-  length = 12
-}
-
-resource "random_password" "prometheus_postgres_password" {
-  length = 12
-}
-
-resource "google_sql_user" "coder" {
-  project  = var.project_id
-  instance = google_sql_database_instance.db.id
-  name     = "${var.name}-coder"
-  type     = "BUILT_IN"
-  password = random_password.coder_postgres_password.result
-  # required for postgres, otherwise user fails to delete
-  deletion_policy = "ABANDON"
-  lifecycle {
-    ignore_changes = [deletion_policy, password]
-  }
-}
-
-resource "google_sql_user" "prometheus" {
-  project  = var.project_id
-  instance = google_sql_database_instance.db.id
-  name     = "${var.name}-prometheus"
-  type     = "BUILT_IN"
-  password = random_password.prometheus_postgres_password.result
-  # required for postgres, otherwise user fails to delete
-  deletion_policy = "ABANDON"
-  lifecycle {
-    ignore_changes = [deletion_policy, password]
-  }
-}
-
-locals {
-  coder_db_url = "postgres://${google_sql_user.coder.name}:${urlencode(random_password.coder_postgres_password.result)}@${google_sql_database_instance.db.private_ip_address}/${google_sql_database.coder.name}?sslmode=disable"
-}
diff --git a/scaletest/terraform/action/gcp_project.tf b/scaletest/terraform/action/gcp_project.tf
deleted file mode 100644
index 1073a621c33e0..0000000000000
--- a/scaletest/terraform/action/gcp_project.tf
+++ /dev/null
@@ -1,27 +0,0 @@
-locals {
-  project_apis = [
-    "cloudtrace",
-    "compute",
-    "container",
-    "logging",
-    "monitoring",
-    "servicemanagement",
-    "servicenetworking",
-    "sqladmin",
-    "stackdriver",
-    "storage-api",
-  ]
-}
-
-data "google_project" "project" {
-  project_id = var.project_id
-}
-
-resource "google_project_service" "api" {
-  for_each = toset(local.project_apis)
-  project  = data.google_project.project.project_id
-  service  = "${each.value}.googleapis.com"
-
-  disable_dependent_services = false
-  disable_on_destroy         = false
-}
diff --git a/scaletest/terraform/action/gcp_vpc.tf b/scaletest/terraform/action/gcp_vpc.tf
deleted file mode 100644
index 4bca3b3f510ba..0000000000000
--- a/scaletest/terraform/action/gcp_vpc.tf
+++ /dev/null
@@ -1,154 +0,0 @@
-locals {
-  # Generate a /14 for each deployment.
-  cidr_networks = cidrsubnets(
-    "172.16.0.0/12",
-    2,
-    2,
-    2,
-  )
-
-  networks = {
-    alpha   = local.cidr_networks[0]
-    bravo   = local.cidr_networks[1]
-    charlie = local.cidr_networks[2]
-  }
-
-  # Generate a bunch of /18s within the subnet we're using from the above map.
-  cidr_subnetworks = cidrsubnets(
-    local.networks[var.name],
-    4, # PSA
-    4, # primary subnetwork
-    4, # primary k8s pod network
-    4, # primary k8s services network
-    4, # europe subnetwork
-    4, # europe k8s pod network
-    4, # europe k8s services network
-    4, # asia subnetwork
-    4, # asia k8s pod network
-    4, # asia k8s services network
-  )
-
-  psa_range_address       = split("/", local.cidr_subnetworks[0])[0]
-  psa_range_prefix_length = tonumber(split("/", local.cidr_subnetworks[0])[1])
-
-  subnetworks = {
-    primary = local.cidr_subnetworks[1]
-    europe  = local.cidr_subnetworks[4]
-    asia    = local.cidr_subnetworks[7]
-  }
-  cluster_ranges = {
-    primary = {
-      pods     = local.cidr_subnetworks[2]
-      services = local.cidr_subnetworks[3]
-    }
-    europe = {
-      pods     = local.cidr_subnetworks[5]
-      services = local.cidr_subnetworks[6]
-    }
-    asia = {
-      pods     = local.cidr_subnetworks[8]
-      services = local.cidr_subnetworks[9]
-    }
-  }
-
-  secondary_ip_range_k8s_pods     = "k8s-pods"
-  secondary_ip_range_k8s_services = "k8s-services"
-}
-
-# Create a VPC for the deployment
-resource "google_compute_network" "network" {
-  project                 = var.project_id
-  name                    = "${var.name}-scaletest"
-  description             = "scaletest network for ${var.name}"
-  auto_create_subnetworks = false
-}
-
-# Create a subnetwork with a unique range for each region
-resource "google_compute_subnetwork" "subnetwork" {
-  for_each = local.subnetworks
-  name     = "${var.name}-${each.key}"
-  # Use the deployment region
-  region                   = local.deployments[each.key].region
-  network                  = google_compute_network.network.id
-  project                  = var.project_id
-  ip_cidr_range            = each.value
-  private_ip_google_access = true
-
-  secondary_ip_range {
-    range_name    = local.secondary_ip_range_k8s_pods
-    ip_cidr_range = local.cluster_ranges[each.key].pods
-  }
-
-  secondary_ip_range {
-    range_name    = local.secondary_ip_range_k8s_services
-    ip_cidr_range = local.cluster_ranges[each.key].services
-  }
-}
-
-# Create a public IP for each region
-resource "google_compute_address" "coder" {
-  for_each     = local.deployments
-  project      = var.project_id
-  region       = each.value.region
-  name         = "${var.name}-${each.key}-coder"
-  address_type = "EXTERNAL"
-  network_tier = "PREMIUM"
-}
-
-# Reserve an internal range for Google-managed services (PSA), used for Cloud
-# SQL
-resource "google_compute_global_address" "psa_peering" {
-  project       = var.project_id
-  name          = "${var.name}-sql-peering"
-  purpose       = "VPC_PEERING"
-  address_type  = "INTERNAL"
-  address       = local.psa_range_address
-  prefix_length = local.psa_range_prefix_length
-  network       = google_compute_network.network.self_link
-}
-
-resource "google_service_networking_connection" "private_vpc_connection" {
-  network                 = google_compute_network.network.id
-  service                 = "servicenetworking.googleapis.com"
-  reserved_peering_ranges = [google_compute_global_address.psa_peering.name]
-}
-
-# Join the new network to the observability network so we can talk to the
-# Prometheus instance
-data "google_compute_network" "observability" {
-  project = var.project_id
-  name    = var.observability_cluster_vpc
-}
-
-resource "google_compute_network_peering" "scaletest_to_observability" {
-  name                 = "peer-${google_compute_network.network.name}-to-${data.google_compute_network.observability.name}"
-  network              = google_compute_network.network.self_link
-  peer_network         = data.google_compute_network.observability.self_link
-  import_custom_routes = true
-  export_custom_routes = true
-}
-
-resource "google_compute_network_peering" "observability_to_scaletest" {
-  name                 = "peer-${data.google_compute_network.observability.name}-to-${google_compute_network.network.name}"
-  network              = data.google_compute_network.observability.self_link
-  peer_network         = google_compute_network.network.self_link
-  import_custom_routes = true
-  export_custom_routes = true
-}
-
-# Allow traffic from the scaletest network into the observability network so we
-# can connect to Prometheus
-resource "google_compute_firewall" "observability_allow_from_scaletest" {
-  project       = var.project_id
-  name          = "allow-from-scaletest-${var.name}"
-  network       = data.google_compute_network.observability.self_link
-  direction     = "INGRESS"
-  source_ranges = [local.networks[var.name]]
-  allow {
-    protocol = "icmp"
-  }
-  allow {
-    protocol = "tcp"
-    ports    = ["0-65535"]
-  }
-}
diff --git a/scaletest/terraform/action/k8s_coder_asia.tf b/scaletest/terraform/action/k8s_coder_asia.tf
deleted file mode 100644
index 33df0e08dcfcf..0000000000000
--- a/scaletest/terraform/action/k8s_coder_asia.tf
+++ /dev/null
@@ -1,131 +0,0 @@
-resource "kubernetes_namespace" "coder_asia" {
-  provider = kubernetes.asia
-
-  metadata {
-    name = local.coder_namespace
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_default_service_account]
-  }
-
-  depends_on = [google_container_node_pool.node_pool["asia_misc"]]
-}
-
-resource "kubernetes_secret" "provisionerd_psk_asia" {
-  provider = kubernetes.asia
-
-  type = "Opaque"
-  metadata {
-    name      = "coder-provisioner-psk"
-    namespace = kubernetes_namespace.coder_asia.metadata.0.name
-  }
-  data = {
-    psk = random_password.provisionerd_psk.result
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_service_account_token]
-  }
-}
-
-resource "kubernetes_secret" "proxy_token_asia" {
-  provider = kubernetes.asia
-
-  type = "Opaque"
-  metadata {
-    name      = "coder-proxy-token"
-    namespace = kubernetes_namespace.coder_asia.metadata.0.name
-  }
-  data = {
-    token = trimspace(data.local_file.asia_proxy_token.content)
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_service_account_token]
-  }
-}
-
-resource "kubernetes_secret" "coder_tls_asia" {
-  provider = kubernetes.asia
-
-  type = "kubernetes.io/tls"
-  metadata {
-    name      = "coder-tls"
-    namespace = kubernetes_namespace.coder_asia.metadata.0.name
-  }
-  data = {
-    "tls.crt" = data.kubernetes_secret.coder_tls["asia"].data["tls.crt"]
-    "tls.key" = data.kubernetes_secret.coder_tls["asia"].data["tls.key"]
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_service_account_token]
-  }
-}
-
-resource "helm_release" "coder_asia" {
-  provider = helm.asia
-
-  repository = local.coder_helm_repo
-  chart      = local.coder_helm_chart
-  name       = local.coder_release_name
-  version    = var.coder_chart_version
-  namespace  = kubernetes_namespace.coder_asia.metadata.0.name
-  values = [templatefile("${path.module}/coder_helm_values.tftpl", {
-    workspace_proxy     = true,
-    provisionerd        = false,
-    primary_url         = local.deployments.primary.url,
-    proxy_token         = kubernetes_secret.proxy_token_asia.metadata.0.name,
-    db_secret           = null,
-    ip_address          = google_compute_address.coder["asia"].address,
-    provisionerd_psk    = null,
-    access_url          = local.deployments.asia.url,
-    wildcard_access_url = local.deployments.asia.wildcard_access_url,
-    node_pool           = google_container_node_pool.node_pool["asia_coder"].name,
-    release_name        = local.coder_release_name,
-    experiments         = var.coder_experiments,
-    image_repo          = var.coder_image_repo,
-    image_tag           = var.coder_image_tag,
-    replicas            = local.scenarios[var.scenario].coder.replicas,
-    cpu_request         = local.scenarios[var.scenario].coder.cpu_request,
-    mem_request         = local.scenarios[var.scenario].coder.mem_request,
-    cpu_limit           = local.scenarios[var.scenario].coder.cpu_limit,
-    mem_limit           = local.scenarios[var.scenario].coder.mem_limit,
-    deployment          = "asia",
-    tls_secret_name     = kubernetes_secret.coder_tls_asia.metadata.0.name,
-  })]
-
-  depends_on = [null_resource.license]
-}
-
-resource "helm_release" "provisionerd_asia" {
-  provider = helm.asia
-
-  repository = local.coder_helm_repo
-  chart      = local.provisionerd_helm_chart
-  name       = local.provisionerd_release_name
-  version    = var.provisionerd_chart_version
-  namespace  = kubernetes_namespace.coder_asia.metadata.0.name
-  values = [templatefile("${path.module}/coder_helm_values.tftpl", {
-    workspace_proxy     = false,
-    provisionerd        = true,
-    primary_url         = null,
-    proxy_token         = null,
-    db_secret           = null,
-    ip_address          = null,
-    provisionerd_psk    = kubernetes_secret.provisionerd_psk_asia.metadata.0.name,
-    access_url          = local.deployments.primary.url,
-    wildcard_access_url = null,
-    node_pool           = google_container_node_pool.node_pool["asia_coder"].name,
-    release_name        = local.coder_release_name,
-    experiments         = var.coder_experiments,
-    image_repo          = var.coder_image_repo,
-    image_tag           = var.coder_image_tag,
-    replicas            = local.scenarios[var.scenario].provisionerd.replicas,
-    cpu_request         = local.scenarios[var.scenario].provisionerd.cpu_request,
-    mem_request         = local.scenarios[var.scenario].provisionerd.mem_request,
-    cpu_limit           = local.scenarios[var.scenario].provisionerd.cpu_limit,
-    mem_limit           = local.scenarios[var.scenario].provisionerd.mem_limit,
-    deployment          = "asia",
-    tls_secret_name     = null,
-  })]
-
-  depends_on = [null_resource.license]
-}
diff --git a/scaletest/terraform/action/k8s_coder_europe.tf b/scaletest/terraform/action/k8s_coder_europe.tf
deleted file mode 100644
index efb80498c2ad4..0000000000000
--- a/scaletest/terraform/action/k8s_coder_europe.tf
+++ /dev/null
@@ -1,131 +0,0 @@
-resource "kubernetes_namespace" "coder_europe" {
-  provider = kubernetes.europe
-
-  metadata {
-    name = local.coder_namespace
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_default_service_account]
-  }
-
-  depends_on = [google_container_node_pool.node_pool["europe_misc"]]
-}
-
-resource "kubernetes_secret" "provisionerd_psk_europe" {
-  provider = kubernetes.europe
-
-  type = "Opaque"
-  metadata {
-    name      = "coder-provisioner-psk"
-    namespace = kubernetes_namespace.coder_europe.metadata.0.name
-  }
-  data = {
-    psk = random_password.provisionerd_psk.result
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_service_account_token]
-  }
-}
-
-resource "kubernetes_secret" "proxy_token_europe" {
-  provider = kubernetes.europe
-
-  type = "Opaque"
-  metadata {
-    name      = "coder-proxy-token"
-    namespace = kubernetes_namespace.coder_europe.metadata.0.name
-  }
-  data = {
-    token = trimspace(data.local_file.europe_proxy_token.content)
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_service_account_token]
-  }
-}
-
-resource "kubernetes_secret" "coder_tls_europe" {
-  provider = kubernetes.europe
-
-  type = "kubernetes.io/tls"
-  metadata {
-    name      = "coder-tls"
-    namespace = kubernetes_namespace.coder_europe.metadata.0.name
-  }
-  data = {
-    "tls.crt" = data.kubernetes_secret.coder_tls["europe"].data["tls.crt"]
-    "tls.key" = data.kubernetes_secret.coder_tls["europe"].data["tls.key"]
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_service_account_token]
-  }
-}
-
-resource "helm_release" "coder_europe" {
-  provider = helm.europe
-
-  repository = local.coder_helm_repo
-  chart      = local.coder_helm_chart
-  name       = local.coder_release_name
-  version    = var.coder_chart_version
-  namespace  = kubernetes_namespace.coder_europe.metadata.0.name
-  values = [templatefile("${path.module}/coder_helm_values.tftpl", {
-    workspace_proxy     = true,
-    provisionerd        = false,
-    primary_url         = local.deployments.primary.url,
-    proxy_token         = kubernetes_secret.proxy_token_europe.metadata.0.name,
-    db_secret           = null,
-    ip_address          = google_compute_address.coder["europe"].address,
-    provisionerd_psk    = null,
-    access_url          = local.deployments.europe.url,
-    wildcard_access_url = local.deployments.europe.wildcard_access_url,
-    node_pool           = google_container_node_pool.node_pool["europe_coder"].name,
-    release_name        = local.coder_release_name,
-    experiments         = var.coder_experiments,
-    image_repo          = var.coder_image_repo,
-    image_tag           = var.coder_image_tag,
-    replicas            = local.scenarios[var.scenario].coder.replicas,
-    cpu_request         = local.scenarios[var.scenario].coder.cpu_request,
-    mem_request         = local.scenarios[var.scenario].coder.mem_request,
-    cpu_limit           = local.scenarios[var.scenario].coder.cpu_limit,
-    mem_limit           = local.scenarios[var.scenario].coder.mem_limit,
-    deployment          = "europe",
-    tls_secret_name     = kubernetes_secret.coder_tls_europe.metadata.0.name,
-  })]
-
-  depends_on = [null_resource.license]
-}
-
-resource "helm_release" "provisionerd_europe" {
-  provider = helm.europe
-
-  repository = local.coder_helm_repo
-  chart      = local.provisionerd_helm_chart
-  name       = local.provisionerd_release_name
-  version    = var.provisionerd_chart_version
-  namespace  = kubernetes_namespace.coder_europe.metadata.0.name
-  values = [templatefile("${path.module}/coder_helm_values.tftpl", {
-    workspace_proxy     = false,
-    provisionerd        = true,
-    primary_url         = null,
-    proxy_token         = null,
-    db_secret           = null,
-    ip_address          = null,
-    provisionerd_psk    = kubernetes_secret.provisionerd_psk_europe.metadata.0.name,
-    access_url          = local.deployments.primary.url,
-    wildcard_access_url = null,
-    node_pool           = google_container_node_pool.node_pool["europe_coder"].name,
-    release_name        = local.coder_release_name,
-    experiments         = var.coder_experiments,
-    image_repo          = var.coder_image_repo,
-    image_tag           = var.coder_image_tag,
-    replicas            = local.scenarios[var.scenario].provisionerd.replicas,
-    cpu_request         = local.scenarios[var.scenario].provisionerd.cpu_request,
-    mem_request         = local.scenarios[var.scenario].provisionerd.mem_request,
-    cpu_limit           = local.scenarios[var.scenario].provisionerd.cpu_limit,
-    mem_limit           = local.scenarios[var.scenario].provisionerd.mem_limit,
-    deployment          = "europe",
-    tls_secret_name     = null,
-  })]
-
-  depends_on = [null_resource.license]
-}
diff --git a/scaletest/terraform/action/k8s_coder_primary.tf b/scaletest/terraform/action/k8s_coder_primary.tf
deleted file mode 100644
index b622d385ab9ee..0000000000000
--- a/scaletest/terraform/action/k8s_coder_primary.tf
+++ /dev/null
@@ -1,160 +0,0 @@
-data "google_client_config" "default" {}
-
-locals {
-  coder_admin_email         = "admin@coder.com"
-  coder_admin_full_name     = "Coder Admin"
-  coder_admin_user          = "coder"
-  coder_admin_password      = random_password.coder_admin_password.result
-  coder_helm_repo           = "https://helm.coder.com/v2"
-  coder_helm_chart          = "coder"
-  coder_namespace           = "coder"
-  coder_release_name        = "${var.name}-coder"
-  provisionerd_helm_chart   = "coder-provisioner"
-  provisionerd_release_name = "${var.name}-provisionerd"
-
-}
-
-resource "random_password" "provisionerd_psk" {
-  length = 26
-}
-
-resource "random_password" "coder_admin_password" {
-  length  = 16
-  special = true
-}
-
-resource "kubernetes_namespace" "coder_primary" {
-  provider = kubernetes.primary
-
-  metadata {
-    name = local.coder_namespace
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_default_service_account]
-  }
-
-  depends_on = [google_container_node_pool.node_pool["primary_misc"]]
-}
-
-resource "kubernetes_secret" "coder_db" {
-  provider = kubernetes.primary
-
-  type = "Opaque"
-  metadata {
-    name      = "coder-db-url"
-    namespace = kubernetes_namespace.coder_primary.metadata.0.name
-  }
-  data = {
-    url = local.coder_db_url
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_service_account_token]
-  }
-}
-
-resource "kubernetes_secret" "provisionerd_psk_primary" {
-  provider = kubernetes.primary
-
-  type = "Opaque"
-  metadata {
-    name      = "coder-provisioner-psk"
-    namespace = kubernetes_namespace.coder_primary.metadata.0.name
-  }
-  data = {
-    psk = random_password.provisionerd_psk.result
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_service_account_token]
-  }
-}
-
-resource "kubernetes_secret" "coder_tls_primary" {
-  provider = kubernetes.primary
-
-  type = "kubernetes.io/tls"
-  metadata {
-    name      = "coder-tls"
-    namespace = kubernetes_namespace.coder_primary.metadata.0.name
-  }
-  data = {
-    "tls.crt" = data.kubernetes_secret.coder_tls["primary"].data["tls.crt"]
-    "tls.key" = data.kubernetes_secret.coder_tls["primary"].data["tls.key"]
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_service_account_token]
-  }
-}
-
-resource "helm_release" "coder_primary" {
-  provider = helm.primary
-
-  repository = local.coder_helm_repo
-  chart      = local.coder_helm_chart
-  name       = local.coder_release_name
-  version    = var.coder_chart_version
-  namespace  = kubernetes_namespace.coder_primary.metadata.0.name
-  values = [templatefile("${path.module}/coder_helm_values.tftpl", {
-    workspace_proxy     = false,
-    provisionerd        = false,
-    primary_url         = null,
-    proxy_token         = null,
-    db_secret           = kubernetes_secret.coder_db.metadata.0.name,
-    ip_address          = google_compute_address.coder["primary"].address,
-    provisionerd_psk    = kubernetes_secret.provisionerd_psk_primary.metadata.0.name,
-    access_url          = local.deployments.primary.url,
-    wildcard_access_url = local.deployments.primary.wildcard_access_url,
-    node_pool           = google_container_node_pool.node_pool["primary_coder"].name,
-    release_name        = local.coder_release_name,
-    experiments         = var.coder_experiments,
-    image_repo          = var.coder_image_repo,
-    image_tag           = var.coder_image_tag,
-    replicas            = local.scenarios[var.scenario].coder.replicas,
-    cpu_request         = local.scenarios[var.scenario].coder.cpu_request,
-    mem_request         = local.scenarios[var.scenario].coder.mem_request,
-    cpu_limit           = local.scenarios[var.scenario].coder.cpu_limit,
-    mem_limit           = local.scenarios[var.scenario].coder.mem_limit,
-    deployment          = "primary",
-    tls_secret_name     = kubernetes_secret.coder_tls_primary.metadata.0.name,
-  })]
-}
-
-resource "helm_release" "provisionerd_primary" {
-  provider = helm.primary
-
-  repository = local.coder_helm_repo
-  chart      = local.provisionerd_helm_chart
-  name       = local.provisionerd_release_name
-  version    = var.provisionerd_chart_version
-  namespace  = kubernetes_namespace.coder_primary.metadata.0.name
-  values = [templatefile("${path.module}/coder_helm_values.tftpl", {
-    workspace_proxy     = false,
-    provisionerd        = true,
-    primary_url         = null,
-    proxy_token         = null,
-    db_secret           = null,
-    ip_address          = null,
-    provisionerd_psk    = kubernetes_secret.provisionerd_psk_primary.metadata.0.name,
-    access_url          = local.deployments.primary.url,
-    wildcard_access_url = null,
-    node_pool           = google_container_node_pool.node_pool["primary_coder"].name,
-    release_name        = local.coder_release_name,
-    experiments         = var.coder_experiments,
-    image_repo          = var.coder_image_repo,
-    image_tag           = var.coder_image_tag,
-    replicas            = local.scenarios[var.scenario].provisionerd.replicas,
-    cpu_request         = local.scenarios[var.scenario].provisionerd.cpu_request,
-    mem_request         = local.scenarios[var.scenario].provisionerd.mem_request,
-    cpu_limit           = local.scenarios[var.scenario].provisionerd.cpu_limit,
-    mem_limit           = local.scenarios[var.scenario].provisionerd.mem_limit,
-    deployment          = "primary",
-    tls_secret_name     = null,
-  })]
-
-  depends_on = [null_resource.license]
-}
-
-output "coder_admin_password" {
-  description = "Randomly generated Coder admin password"
-  value       = random_password.coder_admin_password.result
-  # Deliberately not sensitive, so it appears in terraform apply logs
-}
diff --git a/scaletest/terraform/action/kubeconfig.tftpl b/scaletest/terraform/action/kubeconfig.tftpl
deleted file mode 100644
index d997edf45699a..0000000000000
--- a/scaletest/terraform/action/kubeconfig.tftpl
+++ /dev/null
@@ -1,17 +0,0 @@
-apiVersion: v1
-kind: Config
-current-context: ${name}
-clusters:
-- name: ${name}
-  cluster:
-    certificate-authority-data: ${cluster_ca_certificate}
-    server: ${endpoint}
-contexts:
-- context:
-    cluster: ${name}
-    user: ${name}
-  name: ${name}
-users:
-- name: ${name}
-  user:
-    token: ${access_token}
diff --git a/scaletest/terraform/action/main.tf b/scaletest/terraform/action/main.tf
deleted file mode 100644
index 41c97b1aeab4b..0000000000000
--- a/scaletest/terraform/action/main.tf
+++ /dev/null
@@ -1,141 +0,0 @@
-terraform {
-  required_providers {
-    google = {
-      source  = "hashicorp/google"
-      version = "~> 4.36"
-    }
-
-    random = {
-      source  = "hashicorp/random"
-      version = "~> 3.5"
-    }
-
-    kubernetes = {
-      source  = "hashicorp/kubernetes"
-      version = "~> 2.20"
-    }
-
-    // We use the kubectl provider to apply Custom Resources.
-    // The kubernetes provider requires the CRD is already present
-    // and would require a separate apply step beforehand.
-    // https://github.com/hashicorp/terraform-provider-kubernetes/issues/1367
-    kubectl = {
-      source  = "alekc/kubectl"
-      version = ">= 2.0.0"
-    }
-
-    helm = {
-      source  = "hashicorp/helm"
-      version = "~> 2.9"
-    }
-
-    tls = {
-      source  = "hashicorp/tls"
-      version = "~> 4.0"
-    }
-
-    cloudflare = {
-      source  = "cloudflare/cloudflare"
-      version = "~> 4.0"
-    }
-  }
-
-  required_version = ">= 1.9.0"
-}
-
-provider "google" {
-}
-
-data "google_secret_manager_secret_version_access" "cloudflare_api_token_dns" {
-  secret  = "cloudflare-api-token-dns"
-  project = var.project_id
-}
-
-provider "cloudflare" {
-  api_token = coalesce(var.cloudflare_api_token, data.google_secret_manager_secret_version_access.cloudflare_api_token_dns.secret_data)
-}
-
-data "google_container_cluster" "observability" {
-  name     = var.observability_cluster_name
-  location = var.observability_cluster_location
-  project  = var.project_id
-}
-
-provider "kubernetes" {
-  alias                  = "primary"
-  host                   = "https://${google_container_cluster.cluster["primary"].endpoint}"
-  cluster_ca_certificate = base64decode(google_container_cluster.cluster["primary"].master_auth.0.cluster_ca_certificate)
-  token                  = data.google_client_config.default.access_token
-}
-
-provider "kubernetes" {
-  alias                  = "europe"
-  host                   = "https://${google_container_cluster.cluster["europe"].endpoint}"
-  cluster_ca_certificate = base64decode(google_container_cluster.cluster["europe"].master_auth.0.cluster_ca_certificate)
-  token                  = data.google_client_config.default.access_token
-}
-
-provider "kubernetes" {
-  alias                  = "asia"
-  host                   = "https://${google_container_cluster.cluster["asia"].endpoint}"
-  cluster_ca_certificate = base64decode(google_container_cluster.cluster["asia"].master_auth.0.cluster_ca_certificate)
-  token                  = data.google_client_config.default.access_token
-}
-
-provider "kubernetes" {
-  alias                  = "observability"
-  host                   = "https://${data.google_container_cluster.observability.endpoint}"
-  cluster_ca_certificate = base64decode(data.google_container_cluster.observability.master_auth.0.cluster_ca_certificate)
-  token                  = data.google_client_config.default.access_token
-}
-
-provider "kubectl" {
-  alias                  = "primary"
-  host                   = "https://${google_container_cluster.cluster["primary"].endpoint}"
-  cluster_ca_certificate = base64decode(google_container_cluster.cluster["primary"].master_auth.0.cluster_ca_certificate)
-  token                  = data.google_client_config.default.access_token
-  load_config_file       = false
-}
-
-provider "kubectl" {
-  alias                  = "europe"
-  host                   = "https://${google_container_cluster.cluster["europe"].endpoint}"
-  cluster_ca_certificate = base64decode(google_container_cluster.cluster["europe"].master_auth.0.cluster_ca_certificate)
-  token                  = data.google_client_config.default.access_token
-  load_config_file       = false
-}
-
-provider "kubectl" {
-  alias                  = "asia"
-  host                   = "https://${google_container_cluster.cluster["asia"].endpoint}"
-  cluster_ca_certificate = base64decode(google_container_cluster.cluster["asia"].master_auth.0.cluster_ca_certificate)
-  token                  = data.google_client_config.default.access_token
-  load_config_file       = false
-}
-
-provider "helm" {
-  alias = "primary"
-  kubernetes {
-    host                   = "https://${google_container_cluster.cluster["primary"].endpoint}"
-    cluster_ca_certificate = base64decode(google_container_cluster.cluster["primary"].master_auth.0.cluster_ca_certificate)
-    token                  = data.google_client_config.default.access_token
-  }
-}
-
-provider "helm" {
-  alias = "europe"
-  kubernetes {
-    host                   = "https://${google_container_cluster.cluster["europe"].endpoint}"
-    cluster_ca_certificate = base64decode(google_container_cluster.cluster["europe"].master_auth.0.cluster_ca_certificate)
-    token                  = data.google_client_config.default.access_token
-  }
-}
-
-provider "helm" {
-  alias = "asia"
-  kubernetes {
-    host                   = "https://${google_container_cluster.cluster["asia"].endpoint}"
-    cluster_ca_certificate = base64decode(google_container_cluster.cluster["asia"].master_auth.0.cluster_ca_certificate)
-    token                  = data.google_client_config.default.access_token
-  }
-}
diff --git a/scaletest/terraform/action/prometheus.tf b/scaletest/terraform/action/prometheus.tf
deleted file mode 100644
index 6898e0cfbd128..0000000000000
--- a/scaletest/terraform/action/prometheus.tf
+++ /dev/null
@@ -1,174 +0,0 @@
-locals {
-  prometheus_helm_repo                      = "https://prometheus-community.github.io/helm-charts"
-  prometheus_helm_chart                     = "kube-prometheus-stack"
-  prometheus_release_name                   = "prometheus"
-  prometheus_remote_write_send_interval     = "15s"
-  prometheus_remote_write_metrics_regex     = ".*"
-  prometheus_postgres_exporter_helm_repo    = "https://prometheus-community.github.io/helm-charts"
-  prometheus_postgres_exporter_helm_chart   = "prometheus-postgres-exporter"
-  prometheus_postgres_exporter_release_name = "prometheus-postgres-exporter"
-}
-
-resource "helm_release" "prometheus_chart_primary" {
-  provider = helm.primary
-
-  repository = local.prometheus_helm_repo
-  chart      = local.prometheus_helm_chart
-  name       = local.prometheus_release_name
-  namespace  = kubernetes_namespace.coder_primary.metadata.0.name
-  values = [templatefile("${path.module}/prometheus_helm_values.tftpl", {
-    deployment_name                       = var.name,
-    nodepool                              = google_container_node_pool.node_pool["primary_misc"].name,
-    cluster                               = "primary",
-    prometheus_remote_write_url           = var.prometheus_remote_write_url,
-    prometheus_remote_write_metrics_regex = local.prometheus_remote_write_metrics_regex,
-    prometheus_remote_write_send_interval = local.prometheus_remote_write_send_interval,
-  })]
-}
-
-resource "kubectl_manifest" "pod_monitor_primary" {
-  provider = kubectl.primary
-
-  yaml_body = <<YAML
-apiVersion: monitoring.coreos.com/v1
-kind: PodMonitor
-metadata:
-  namespace: ${kubernetes_namespace.coder_primary.metadata.0.name}
-  name: coder-monitoring
-spec:
-  selector:
-    matchLabels:
-      "app.kubernetes.io/name": coder
-  podMetricsEndpoints:
-    - port: prometheus-http
-      interval: 30s
-YAML
-
-  depends_on = [helm_release.prometheus_chart_primary]
-}
-
-resource "kubernetes_secret" "prometheus_postgres_password" {
-  provider = kubernetes.primary
-
-  type = "kubernetes.io/basic-auth"
-  metadata {
-    name      = "prometheus-postgres"
-    namespace = kubernetes_namespace.coder_primary.metadata.0.name
-  }
-  data = {
-    username = "${var.name}-prometheus"
-    password = random_password.prometheus_postgres_password.result
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_service_account_token]
-  }
-}
-
-resource "helm_release" "prometheus_postgres_exporter" {
-  provider = helm.primary
-
-  repository = local.prometheus_postgres_exporter_helm_repo
-  chart      = local.prometheus_postgres_exporter_helm_chart
-  name       = local.prometheus_postgres_exporter_release_name
-  namespace  = kubernetes_namespace.coder_primary.metadata.0.name
-  values = [<<EOF
-affinity:
-  nodeAffinity:
-  requiredDuringSchedulingIgnoredDuringExecution:
-    nodeSelectorTerms:
-    - matchExpressions:
-      - key: "cloud.google.com/gke-nodepool"
-        operator: "In"
-        values: ["${google_container_node_pool.node_pool["primary_misc"].name}"]
-config:
-  datasource:
-    host: "${google_sql_database_instance.db.private_ip_address}"
-    user: "${var.name}-prometheus"
-    database: "${var.name}-coder"
-    passwordSecret:
-      name: "${kubernetes_secret.prometheus_postgres_password.metadata.0.name}"
-      key: password
-    autoDiscoverDatabases: true
-serviceMonitor:
-  enabled: true
-EOF
-  ]
-
-  depends_on = [helm_release.prometheus_chart_primary]
-}
-
-resource "helm_release" "prometheus_chart_europe" {
-  provider = helm.europe
-
-  repository = local.prometheus_helm_repo
-  chart      = local.prometheus_helm_chart
-  name       = local.prometheus_release_name
-  namespace  = kubernetes_namespace.coder_europe.metadata.0.name
-  values = [templatefile("${path.module}/prometheus_helm_values.tftpl", {
-    deployment_name                       = var.name,
-    nodepool                              = google_container_node_pool.node_pool["europe_misc"].name,
-    cluster                               = "europe",
-    prometheus_remote_write_url           = var.prometheus_remote_write_url,
-    prometheus_remote_write_metrics_regex = local.prometheus_remote_write_metrics_regex,
-    prometheus_remote_write_send_interval = local.prometheus_remote_write_send_interval,
-  })]
-}
-
-resource "kubectl_manifest" "pod_monitor_europe" {
-  provider = kubectl.europe
-
-  yaml_body = <<YAML
-apiVersion: monitoring.coreos.com/v1
-kind: PodMonitor
-metadata:
-  namespace: ${kubernetes_namespace.coder_europe.metadata.0.name}
-  name: coder-monitoring
-spec:
-  selector:
-    matchLabels:
-      "app.kubernetes.io/name": coder
-  podMetricsEndpoints:
-    - port: prometheus-http
-      interval: 30s
-YAML
-
-  depends_on = [helm_release.prometheus_chart_europe]
-}
-
-resource "helm_release" "prometheus_chart_asia" {
-  provider = helm.asia
-
-  repository = local.prometheus_helm_repo
-  chart      = local.prometheus_helm_chart
-  name       = local.prometheus_release_name
-  namespace  = kubernetes_namespace.coder_asia.metadata.0.name
-  values = [templatefile("${path.module}/prometheus_helm_values.tftpl", {
-    deployment_name                       = var.name,
-    nodepool                              = google_container_node_pool.node_pool["asia_misc"].name,
-    cluster                               = "asia",
-    prometheus_remote_write_url           = var.prometheus_remote_write_url,
-    prometheus_remote_write_metrics_regex = local.prometheus_remote_write_metrics_regex,
-    prometheus_remote_write_send_interval = local.prometheus_remote_write_send_interval,
-  })]
-}
-
-resource "kubectl_manifest" "pod_monitor_asia" {
-  provider = kubectl.asia
-
-  yaml_body = <<YAML
-apiVersion: monitoring.coreos.com/v1
-kind: PodMonitor
-metadata:
-  namespace: ${kubernetes_namespace.coder_asia.metadata.0.name}
-  name: coder-monitoring
-spec:
-  selector:
-    matchLabels:
-      "app.kubernetes.io/name": coder
-  podMetricsEndpoints:
-    - port: prometheus-http
-      interval: 30s
-YAML
-
-  depends_on = [helm_release.prometheus_chart_asia]
-}
diff --git a/scaletest/terraform/action/prometheus_helm_values.tftpl b/scaletest/terraform/action/prometheus_helm_values.tftpl
deleted file mode 100644
index eefe5a88babfd..0000000000000
--- a/scaletest/terraform/action/prometheus_helm_values.tftpl
+++ /dev/null
@@ -1,38 +0,0 @@
-alertmanager:
-  enabled: false
-grafana:
-  enabled: false
-prometheusOperator:
-  affinity:
-    nodeAffinity:
-      requiredDuringSchedulingIgnoredDuringExecution:
-        nodeSelectorTerms:
-        - matchExpressions:
-          - key: "cloud.google.com/gke-nodepool"
-            operator: "In"
-            values: ["${nodepool}"]
-prometheus:
-  affinity:
-    nodeAffinity:
-      requiredDuringSchedulingIgnoredDuringExecution:
-        nodeSelectorTerms:
-        - matchExpressions:
-          - key: "cloud.google.com/gke-nodepool"
-            operator: "In"
-            values: ["${nodepool}"]
-  prometheusSpec:
-    externalLabels:
-      deployment_name: "${deployment_name}"
-      cluster: "${cluster}"
-    podMonitorSelectorNilUsesHelmValues: false
-    serviceMonitorSelectorNilUsesHelmValues: false
-    remoteWrite:
-      - url: "${prometheus_remote_write_url}"
-        tlsConfig:
-          insecureSkipVerify: true
-        writeRelabelConfigs:
-          - sourceLabels: [__name__]
-            regex: "${prometheus_remote_write_metrics_regex}"
-            action: keep
-        metadataConfig:
-          sendInterval: "${prometheus_remote_write_send_interval}"
diff --git a/scaletest/terraform/action/scenarios.tf b/scaletest/terraform/action/scenarios.tf
deleted file mode 100644
index b135b977047de..0000000000000
--- a/scaletest/terraform/action/scenarios.tf
+++ /dev/null
@@ -1,74 +0,0 @@
-locals {
-  scenarios = {
-    large = {
-      coder = {
-        nodepool_size = 3
-        machine_type  = "c2d-standard-8"
-        replicas      = 3
-        cpu_request   = "4000m"
-        mem_request   = "12Gi"
-        cpu_limit     = "4000m"
-        mem_limit     = "12Gi"
-      }
-      provisionerd = {
-        replicas    = 30
-        cpu_request = "100m"
-        mem_request = "256Mi"
-        cpu_limit   = "1000m"
-        mem_limit   = "1Gi"
-      }
-      workspaces = {
-        count_per_deployment = 100
-        nodepool_size        = 3
-        machine_type         = "c2d-standard-32"
-        cpu_request          = "100m"
-        mem_request          = "128Mi"
-        cpu_limit            = "100m"
-        mem_limit            = "128Mi"
-      }
-      misc = {
-        nodepool_size = 1
-        machine_type  = "c2d-standard-32"
-      }
-      cloudsql = {
-        tier            = "db-custom-2-7680"
-        max_connections = 500
-      }
-    }
-    small = {
-      coder = {
-        nodepool_size = 3
-        machine_type  = "c2d-standard-8"
-        replicas      = 3
-        cpu_request   = "4000m"
-        mem_request   = "12Gi"
-        cpu_limit     = "4000m"
-        mem_limit     = "12Gi"
-      }
-      provisionerd = {
-        replicas    = 5
-        cpu_request = "100m"
-        mem_request = "256Mi"
-        cpu_limit   = "1000m"
-        mem_limit   = "1Gi"
-      }
-      workspaces = {
-        count_per_deployment = 10
-        nodepool_size        = 3
-        machine_type         = "c2d-standard-8"
-        cpu_request          = "100m"
-        mem_request          = "128Mi"
-        cpu_limit            = "100m"
-        mem_limit            = "128Mi"
-      }
-      misc = {
-        nodepool_size = 1
-        machine_type  = "c2d-standard-8"
-      }
-      cloudsql = {
-        tier            = "db-custom-2-7680"
-        max_connections = 100
-      }
-    }
-  }
-}
diff --git a/scaletest/terraform/action/tls.tf b/scaletest/terraform/action/tls.tf
deleted file mode 100644
index 224ff7618d327..0000000000000
--- a/scaletest/terraform/action/tls.tf
+++ /dev/null
@@ -1,13 +0,0 @@
-locals {
-  coder_certs_namespace = "coder-certs"
-}
-
-# These certificates are managed by flux and cert-manager.
-data "kubernetes_secret" "coder_tls" {
-  for_each = local.deployments
-  provider = kubernetes.observability
-  metadata {
-    name      = "coder-${var.name}-${each.key}-tls"
-    namespace = local.coder_certs_namespace
-  }
-}
diff --git a/scaletest/terraform/action/vars.tf b/scaletest/terraform/action/vars.tf
deleted file mode 100644
index 0df162f92527b..0000000000000
--- a/scaletest/terraform/action/vars.tf
+++ /dev/null
@@ -1,112 +0,0 @@
-variable "name" {
-  description = "The name all resources will be prefixed with. Must be one of alpha, bravo, or charlie."
-  validation {
-    condition     = contains(["alpha", "bravo", "charlie"], var.name)
-    error_message = "Name must be one of alpha, bravo, or charlie."
-  }
-}
-
-variable "scenario" {
-  description = "The scenario to deploy"
-  validation {
-    condition     = contains(["small", "medium", "large"], var.scenario)
-    error_message = "Scenario must be one of small, medium, or large"
-  }
-}
-
-// GCP
-variable "project_id" {
-  description = "The project in which to provision resources"
-  default     = "coder-scaletest"
-}
-
-variable "k8s_version" {
-  description = "Kubernetes version to provision."
-  default     = "1.24"
-}
-
-// Cloudflare
-variable "cloudflare_api_token" {
-  description = "Cloudflare API token."
-  sensitive   = true
-  # only override if you want to change the cloudflare_domain; pulls the token for scaletest.dev from Google Secrets
-  # Manager if null.
-  default = null
-}
-
-variable "cloudflare_domain" {
-  description = "Cloudflare coder domain."
-  default     = "scaletest.dev"
-}
-
-// Coder
-variable "coder_license" {
-  description = "Coder license key."
-  sensitive   = true
-}
-
-variable "coder_chart_version" {
-  description = "Version of the Coder Helm chart to install. Defaults to latest."
-  default     = null
-}
-
-variable "coder_image_tag" {
-  description = "Tag to use for Coder image."
-  default     = "latest"
-}
-
-variable "coder_image_repo" {
-  description = "Repository to use for Coder image."
-  default     = "ghcr.io/coder/coder"
-}
-
-variable "coder_experiments" {
-  description = "Coder Experiments to enable."
-  default     = ""
-}
-
-// Workspaces
-variable "workspace_image" {
-  description = "Image and tag to use for workspaces."
-  default     = "docker.io/codercom/enterprise-minimal:ubuntu"
-}
-
-variable "provisionerd_chart_version" {
-  description = "Version of the Provisionerd Helm chart to install. Defaults to latest."
-  default     = null
-}
-
-variable "provisionerd_image_repo" {
-  description = "Repository to use for Provisionerd image."
-  default     = "ghcr.io/coder/coder"
-}
-
-variable "provisionerd_image_tag" {
-  description = "Tag to use for Provisionerd image."
-  default     = "latest"
-}
-
-variable "observability_cluster_name" {
-  description = "Name of the observability GKE cluster."
-  default     = "observability"
-}
-
-variable "observability_cluster_location" {
-  description = "Location of the observability GKE cluster."
-  default     = "us-east1-b"
-}
-
-variable "observability_cluster_vpc" {
-  description = "Name of the observability cluster VPC network to peer with."
-  default     = "default"
-}
-
-variable "cloudflare_api_token_secret" {
-  description = "Name of the Google Secret Manager secret containing the Cloudflare API token."
-  default     = "cloudflare-api-token-dns"
-}
-
-// Prometheus
-variable "prometheus_remote_write_url" {
-  description = "URL to push prometheus metrics to."
-}
diff --git a/scaletest/terraform/infra/gcp_cluster.tf b/scaletest/terraform/infra/gcp_cluster.tf
deleted file mode 100644
index c37132c38071b..0000000000000
--- a/scaletest/terraform/infra/gcp_cluster.tf
+++ /dev/null
@@ -1,186 +0,0 @@
-data "google_compute_default_service_account" "default" {
-  project = var.project_id
-}
-
-locals {
-  abs_module_path         = abspath(path.module)
-  rel_kubeconfig_path     = "../../.coderv2/${var.name}-cluster.kubeconfig"
-  cluster_kubeconfig_path = abspath("${local.abs_module_path}/${local.rel_kubeconfig_path}")
-}
-
-resource "google_container_cluster" "primary" {
-  name                      = var.name
-  location                  = var.zone
-  project                   = var.project_id
-  network                   = google_compute_network.vpc.name
-  subnetwork                = google_compute_subnetwork.subnet.name
-  networking_mode           = "VPC_NATIVE"
-  default_max_pods_per_node = 256
-  ip_allocation_policy { # Required with networking_mode=VPC_NATIVE
-
-  }
-  release_channel {
-    # Setting release channel as STABLE can cause unexpected cluster upgrades.
-    channel = "UNSPECIFIED"
-  }
-  initial_node_count       = 1
-  remove_default_node_pool = true
-
-  network_policy {
-    enabled = true
-  }
-  depends_on = [
-    google_project_service.api["container.googleapis.com"]
-  ]
-  monitoring_config {
-    enable_components = ["SYSTEM_COMPONENTS"]
-    managed_prometheus {
-      enabled = false
-    }
-  }
-  workload_identity_config {
-    workload_pool = "${data.google_project.project.project_id}.svc.id.goog"
-  }
-
-
-  lifecycle {
-    ignore_changes = [
-      maintenance_policy,
-      release_channel,
-      remove_default_node_pool
-    ]
-  }
-}
-
-resource "google_container_node_pool" "coder" {
-  name     = "${var.name}-coder"
-  location = var.zone
-  project  = var.project_id
-  cluster  = google_container_cluster.primary.name
-  autoscaling {
-    min_node_count = 1
-    max_node_count = var.nodepool_size_coder
-  }
-  node_config {
-    oauth_scopes = [
-      "https://www.googleapis.com/auth/logging.write",
-      "https://www.googleapis.com/auth/monitoring",
-      "https://www.googleapis.com/auth/trace.append",
-      "https://www.googleapis.com/auth/devstorage.read_only",
-      "https://www.googleapis.com/auth/service.management.readonly",
-      "https://www.googleapis.com/auth/servicecontrol",
-    ]
-    disk_size_gb    = var.node_disk_size_gb
-    machine_type    = var.nodepool_machine_type_coder
-    image_type      = var.node_image_type
-    preemptible     = var.node_preemptible
-    service_account = data.google_compute_default_service_account.default.email
-    tags            = ["gke-node", "${var.project_id}-gke"]
-    labels = {
-      env = var.project_id
-    }
-    metadata = {
-      disable-legacy-endpoints = "true"
-    }
-  }
-  lifecycle {
-    ignore_changes = [management[0].auto_repair, management[0].auto_upgrade, timeouts]
-  }
-}
-
-resource "google_container_node_pool" "workspaces" {
-  name     = "${var.name}-workspaces"
-  location = var.zone
-  project  = var.project_id
-  cluster  = google_container_cluster.primary.name
-  autoscaling {
-    min_node_count       = 0
-    total_max_node_count = var.nodepool_size_workspaces
-  }
-  management {
-    auto_upgrade = false
-  }
-  node_config {
-    oauth_scopes = [
-      "https://www.googleapis.com/auth/logging.write",
-      "https://www.googleapis.com/auth/monitoring",
-      "https://www.googleapis.com/auth/trace.append",
-      "https://www.googleapis.com/auth/devstorage.read_only",
-      "https://www.googleapis.com/auth/service.management.readonly",
-      "https://www.googleapis.com/auth/servicecontrol",
-    ]
-    disk_size_gb    = var.node_disk_size_gb
-    machine_type    = var.nodepool_machine_type_workspaces
-    image_type      = var.node_image_type
-    preemptible     = var.node_preemptible
-    service_account = data.google_compute_default_service_account.default.email
-    tags            = ["gke-node", "${var.project_id}-gke"]
-    labels = {
-      env = var.project_id
-    }
-    metadata = {
-      disable-legacy-endpoints = "true"
-    }
-  }
-  lifecycle {
-    ignore_changes = [management[0].auto_repair, management[0].auto_upgrade, timeouts]
-  }
-}
-
-resource "google_container_node_pool" "misc" {
-  name       = "${var.name}-misc"
-  location   = var.zone
-  project    = var.project_id
-  cluster    = google_container_cluster.primary.name
-  node_count = var.state == "stopped" ? 0 : var.nodepool_size_misc
-  management {
-    auto_upgrade = false
-  }
-  node_config {
-    oauth_scopes = [
-      "https://www.googleapis.com/auth/logging.write",
-      "https://www.googleapis.com/auth/monitoring",
-      "https://www.googleapis.com/auth/trace.append",
-      "https://www.googleapis.com/auth/devstorage.read_only",
-      "https://www.googleapis.com/auth/service.management.readonly",
-      "https://www.googleapis.com/auth/servicecontrol",
-    ]
-    disk_size_gb    = var.node_disk_size_gb
-    machine_type    = var.nodepool_machine_type_misc
-    image_type      = var.node_image_type
-    preemptible     = var.node_preemptible
-    service_account = data.google_compute_default_service_account.default.email
-    tags            = ["gke-node", "${var.project_id}-gke"]
-    labels = {
-      env = var.project_id
-    }
-    metadata = {
-      disable-legacy-endpoints = "true"
-    }
-  }
-  lifecycle {
-    ignore_changes = [management[0].auto_repair, management[0].auto_upgrade, timeouts]
-  }
-}
-
-resource "null_resource" "cluster_kubeconfig" {
-  depends_on = [google_container_cluster.primary]
-  triggers = {
-    path       = local.cluster_kubeconfig_path
-    name       = google_container_cluster.primary.name
-    project_id = var.project_id
-    zone       = var.zone
-  }
-  provisioner "local-exec" {
-    command = <<EOF
-      KUBECONFIG=${self.triggers.path} gcloud container clusters get-credentials ${self.triggers.name} --project=${self.triggers.project_id} --zone=${self.triggers.zone}
-    EOF
-  }
-
-  provisioner "local-exec" {
-    when    = destroy
-    command = <<EOF
-      rm -f ${self.triggers.path}
-    EOF
-  }
-}
diff --git a/scaletest/terraform/infra/gcp_db.tf b/scaletest/terraform/infra/gcp_db.tf
deleted file mode 100644
index 4d13b262c615f..0000000000000
--- a/scaletest/terraform/infra/gcp_db.tf
+++ /dev/null
@@ -1,88 +0,0 @@
-resource "google_sql_database_instance" "db" {
-  name                = var.name
-  region              = var.region
-  database_version    = var.cloudsql_version
-  deletion_protection = false
-
-  depends_on = [google_service_networking_connection.private_vpc_connection]
-
-  settings {
-    tier              = var.cloudsql_tier
-    activation_policy = "ALWAYS"
-    availability_type = "ZONAL"
-
-    location_preference {
-      zone = var.zone
-    }
-
-    database_flags {
-      name  = "max_connections"
-      value = var.cloudsql_max_connections
-    }
-
-    ip_configuration {
-      ipv4_enabled    = false
-      private_network = google_compute_network.vpc.id
-    }
-
-    insights_config {
-      query_insights_enabled  = true
-      query_string_length     = 1024
-      record_application_tags = false
-      record_client_address   = false
-    }
-  }
-
-  lifecycle {
-    ignore_changes = [deletion_protection, timeouts]
-  }
-}
-
-resource "google_sql_database" "coder" {
-  project  = var.project_id
-  instance = google_sql_database_instance.db.id
-  name     = "${var.name}-coder"
-  # required for postgres, otherwise db fails to delete
-  deletion_policy = "ABANDON"
-  lifecycle {
-    ignore_changes = [deletion_policy]
-  }
-}
-
-resource "random_password" "coder-postgres-password" {
-  length = 12
-}
-
-resource "random_password" "prometheus-postgres-password" {
-  length = 12
-}
-
-resource "google_sql_user" "coder" {
-  project  = var.project_id
-  instance = google_sql_database_instance.db.id
-  name     = "${var.name}-coder"
-  type     = "BUILT_IN"
-  password = random_password.coder-postgres-password.result
-  # required for postgres, otherwise user fails to delete
-  deletion_policy = "ABANDON"
-  lifecycle {
-    ignore_changes = [deletion_policy, password]
-  }
-}
-
-resource "google_sql_user" "prometheus" {
-  project  = var.project_id
-  instance = google_sql_database_instance.db.id
-  name     = "${var.name}-prometheus"
-  type     = "BUILT_IN"
-  password = random_password.prometheus-postgres-password.result
-  # required for postgres, otherwise user fails to delete
-  deletion_policy = "ABANDON"
-  lifecycle {
-    ignore_changes = [deletion_policy, password]
-  }
-}
-
-locals {
-  coder_db_url = "postgres://${google_sql_user.coder.name}:${urlencode(random_password.coder-postgres-password.result)}@${google_sql_database_instance.db.private_ip_address}/${google_sql_database.coder.name}?sslmode=disable"
-}
diff --git a/scaletest/terraform/infra/gcp_project.tf b/scaletest/terraform/infra/gcp_project.tf
deleted file mode 100644
index 1073a621c33e0..0000000000000
--- a/scaletest/terraform/infra/gcp_project.tf
+++ /dev/null
@@ -1,27 +0,0 @@
-locals {
-  project_apis = [
-    "cloudtrace",
-    "compute",
-    "container",
-    "logging",
-    "monitoring",
-    "servicemanagement",
-    "servicenetworking",
-    "sqladmin",
-    "stackdriver",
-    "storage-api",
-  ]
-}
-
-data "google_project" "project" {
-  project_id = var.project_id
-}
-
-resource "google_project_service" "api" {
-  for_each = toset(local.project_apis)
-  project  = data.google_project.project.project_id
-  service  = "${each.value}.googleapis.com"
-
-  disable_dependent_services = false
-  disable_on_destroy         = false
-}
diff --git a/scaletest/terraform/infra/gcp_vpc.tf b/scaletest/terraform/infra/gcp_vpc.tf
deleted file mode 100644
index b125c60cfd25a..0000000000000
--- a/scaletest/terraform/infra/gcp_vpc.tf
+++ /dev/null
@@ -1,39 +0,0 @@
-resource "google_compute_network" "vpc" {
-  project                 = var.project_id
-  name                    = var.name
-  auto_create_subnetworks = "false"
-  depends_on = [
-    google_project_service.api["compute.googleapis.com"]
-  ]
-}
-
-resource "google_compute_subnetwork" "subnet" {
-  name          = var.name
-  project       = var.project_id
-  region        = var.region
-  network       = google_compute_network.vpc.name
-  ip_cidr_range = var.subnet_cidr
-}
-
-resource "google_compute_global_address" "sql_peering" {
-  project       = var.project_id
-  name          = "${var.name}-sql-peering"
-  purpose       = "VPC_PEERING"
-  address_type  = "INTERNAL"
-  prefix_length = 16
-  network       = google_compute_network.vpc.id
-}
-
-resource "google_compute_address" "coder" {
-  project      = var.project_id
-  region       = var.region
-  name         = "${var.name}-coder"
-  address_type = "EXTERNAL"
-  network_tier = "PREMIUM"
-}
-
-resource "google_service_networking_connection" "private_vpc_connection" {
-  network                 = google_compute_network.vpc.id
-  service                 = "servicenetworking.googleapis.com"
-  reserved_peering_ranges = [google_compute_global_address.sql_peering.name]
-}
diff --git a/scaletest/terraform/infra/main.tf b/scaletest/terraform/infra/main.tf
deleted file mode 100644
index 1724692b19f3a..0000000000000
--- a/scaletest/terraform/infra/main.tf
+++ /dev/null
@@ -1,20 +0,0 @@
-terraform {
-  required_providers {
-    google = {
-      source  = "hashicorp/google"
-      version = "~> 4.36"
-    }
-
-    random = {
-      source  = "hashicorp/random"
-      version = "~> 3.5"
-    }
-  }
-
-  required_version = "~> 1.5.0"
-}
-
-provider "google" {
-  region  = var.region
-  project = var.project_id
-}
diff --git a/scaletest/terraform/infra/outputs.tf b/scaletest/terraform/infra/outputs.tf
deleted file mode 100644
index f5e619eca384d..0000000000000
--- a/scaletest/terraform/infra/outputs.tf
+++ /dev/null
@@ -1,73 +0,0 @@
-output "coder_db_url" {
-  description = "URL of the database for Coder."
-  value       = local.coder_db_url
-  sensitive   = true
-}
-
-output "coder_address" {
-  description = "IP address to use for the Coder service."
-  value       = google_compute_address.coder.address
-}
-
-output "kubernetes_kubeconfig_path" {
-  description = "Kubeconfig path."
-  value       = local.cluster_kubeconfig_path
-}
-
-output "kubernetes_nodepool_coder" {
-  description = "Name of the nodepool on which to run Coder."
-  value       = google_container_node_pool.coder.name
-}
-
-output "kubernetes_nodepool_misc" {
-  description = "Name of the nodepool on which to run everything else."
-  value       = google_container_node_pool.misc.name
-}
-
-output "kubernetes_nodepool_workspaces" {
-  description = "Name of the nodepool on which to run workspaces."
-  value       = google_container_node_pool.workspaces.name
-}
-
-output "prometheus_external_label_cluster" {
-  description = "Value for the Prometheus external label named cluster."
-  value       = google_container_cluster.primary.name
-}
-
-output "prometheus_postgres_dbname" {
-  description = "Name of the database for Prometheus to monitor."
-  value       = google_sql_database.coder.name
-}
-
-output "prometheus_postgres_host" {
-  description = "Hostname of the database for Prometheus to connect to."
-  value       = google_sql_database_instance.db.private_ip_address
-}
-
-output "prometheus_postgres_password" {
-  description = "Postgres password for Prometheus."
-  value       = random_password.prometheus-postgres-password.result
-  sensitive   = true
-}
-
-output "prometheus_postgres_user" {
-  description = "Postgres username for Prometheus."
-  value       = google_sql_user.prometheus.name
-}
-
-resource "local_file" "outputs" {
-  filename = "${path.module}/../../.coderv2/infra_outputs.tfvars"
-  content  = <<EOF
-  coder_db_url = "${local.coder_db_url}"
-  coder_address = "${google_compute_address.coder.address}"
-  kubernetes_kubeconfig_path = "${local.cluster_kubeconfig_path}"
-  kubernetes_nodepool_coder = "${google_container_node_pool.coder.name}"
-  kubernetes_nodepool_misc = "${google_container_node_pool.misc.name}"
-  kubernetes_nodepool_workspaces = "${google_container_node_pool.workspaces.name}"
-  prometheus_external_label_cluster = "${google_container_cluster.primary.name}"
-  prometheus_postgres_dbname = "${google_sql_database.coder.name}"
-  prometheus_postgres_host = "${google_sql_database_instance.db.private_ip_address}"
-  prometheus_postgres_password = "${random_password.prometheus-postgres-password.result}"
-  prometheus_postgres_user = "${google_sql_user.prometheus.name}"
-EOF
-}
diff --git a/scaletest/terraform/infra/vars.tf b/scaletest/terraform/infra/vars.tf
deleted file mode 100644
index d9f5040918ba5..0000000000000
--- a/scaletest/terraform/infra/vars.tf
+++ /dev/null
@@ -1,107 +0,0 @@
-variable "state" {
-  description = "The state of the cluster. Valid values are 'started', and 'stopped'."
-  validation {
-    condition     = contains(["started", "stopped"], var.state)
-    error_message = "value must be one of 'started' or 'stopped'"
-  }
-  default = "started"
-}
-
-variable "project_id" {
-  description = "The project in which to provision resources"
-}
-
-variable "name" {
-  description = "Adds a prefix to resources."
-}
-
-variable "region" {
-  description = "GCP region in which to provision resources."
-  default     = "us-east1"
-}
-
-variable "zone" {
-  description = "GCP zone in which to provision resources."
-  default     = "us-east1-c"
-}
-
-variable "subnet_cidr" {
-  description = "CIDR range for the subnet."
-  default     = "10.200.0.0/24"
-}
-
-variable "k8s_version" {
-  description = "Kubernetes version to provision."
-  default     = "1.24"
-}
-
-variable "node_disk_size_gb" {
-  description = "Size of the root disk for cluster nodes."
-  default     = 100
-}
-
-variable "node_image_type" {
-  description = "Image type to use for cluster nodes."
-  default     = "cos_containerd"
-}
-
-// Preemptible nodes are way cheaper, but can be pulled out
-// from under you at any time. Caveat emptor.
-variable "node_preemptible" {
-  description = "Use preemptible nodes."
-  default     = false
-}
-
-// We create three nodepools:
-// - One for the Coder control plane
-// - One for workspaces
-// - One for everything else (for example, load generation)
-
-// These variables control the node pool dedicated to Coder.
-variable "nodepool_machine_type_coder" {
-  description = "Machine type to use for Coder control plane nodepool."
-  default     = "t2d-standard-4"
-}
-
-variable "nodepool_size_coder" {
-  description = "Number of cluster nodes for the Coder control plane nodepool."
-  default     = 1
-}
-
-// These variables control the node pool dedicated to workspaces.
-variable "nodepool_machine_type_workspaces" {
-  description = "Machine type to use for the workspaces nodepool."
-  default     = "t2d-standard-4"
-}
-
-variable "nodepool_size_workspaces" {
-  description = "Number of cluster nodes for the workspaces nodepool."
-  default     = 1
-}
-
-// These variables control the node pool for everything else.
-variable "nodepool_machine_type_misc" {
-  description = "Machine type to use for the misc nodepool."
-  default     = "t2d-standard-4"
-}
-
-variable "nodepool_size_misc" {
-  description = "Number of cluster nodes for the misc nodepool."
-  default     = 1
-}
-
-// These variables control the size of the database to be used by Coder.
-variable "cloudsql_version" {
-  description = "CloudSQL version to provision"
-  default     = "POSTGRES_14"
-}
-
-variable "cloudsql_tier" {
-  description = "CloudSQL database tier."
-  default     = "db-f1-micro"
-}
-
-variable "cloudsql_max_connections" {
-  description = "CloudSQL database max_connections"
-  default     = 500
-}
diff --git a/scaletest/terraform/k8s/cert-manager.tf b/scaletest/terraform/k8s/cert-manager.tf
deleted file mode 100644
index cfcb324b3ea0b..0000000000000
--- a/scaletest/terraform/k8s/cert-manager.tf
+++ /dev/null
@@ -1,67 +0,0 @@
-# Terraform configuration for cert-manaer
-
-locals {
-  cert_manager_namespace                    = "cert-manager"
-  cert_manager_helm_repo                    = "https://charts.jetstack.io"
-  cert_manager_helm_chart                   = "cert-manager"
-  cert_manager_release_name                 = "cert-manager"
-  cert_manager_chart_version                = "1.12.2"
-  cloudflare_issuer_private_key_secret_name = "cloudflare-issuer-private-key"
-}
-
-resource "kubernetes_secret" "cloudflare-api-key" {
-  metadata {
-    name      = "cloudflare-api-key-secret"
-    namespace = local.cert_manager_namespace
-  }
-  data = {
-    api-token = var.cloudflare_api_token
-  }
-}
-
-resource "kubernetes_namespace" "cert-manager-namespace" {
-  metadata {
-    name = local.cert_manager_namespace
-  }
-}
-
-resource "helm_release" "cert-manager" {
-  repository = local.cert_manager_helm_repo
-  chart      = local.cert_manager_helm_chart
-  name       = local.cert_manager_release_name
-  namespace  = kubernetes_namespace.cert-manager-namespace.metadata.0.name
-  values = [<<EOF
-installCRDs: true
-EOF
-  ]
-}
-
-resource "kubernetes_manifest" "cloudflare-cluster-issuer" {
-  manifest = {
-    apiVersion = "cert-manager.io/v1"
-    kind       = "ClusterIssuer"
-    metadata = {
-      name = "cloudflare-issuer"
-    }
-    spec = {
-      acme = {
-        email = var.cloudflare_email
-        privateKeySecretRef = {
-          name = local.cloudflare_issuer_private_key_secret_name
-        }
-        solvers = [
-          {
-            dns01 = {
-              cloudflare = {
-                apiTokenSecretRef = {
-                  name = kubernetes_secret.cloudflare-api-key.metadata.0.name
-                  key  = "api-token"
-                }
-              }
-            }
-          }
-        ]
-      }
-    }
-  }
-}
diff --git a/scaletest/terraform/k8s/coder.tf b/scaletest/terraform/k8s/coder.tf
deleted file mode 100644
index ea83317127fd8..0000000000000
--- a/scaletest/terraform/k8s/coder.tf
+++ /dev/null
@@ -1,375 +0,0 @@
-data "google_client_config" "default" {}
-
-locals {
-  coder_url                 = var.coder_access_url
-  coder_admin_email         = "admin@coder.com"
-  coder_admin_user          = "coder"
-  coder_helm_repo           = "https://helm.coder.com/v2"
-  coder_helm_chart          = "coder"
-  coder_namespace           = "coder-${var.name}"
-  coder_release_name        = var.name
-  provisionerd_helm_chart   = "coder-provisioner"
-  provisionerd_release_name = "${var.name}-provisionerd"
-}
-
-resource "kubernetes_namespace" "coder_namespace" {
-  metadata {
-    name = local.coder_namespace
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_default_service_account]
-  }
-}
-
-resource "random_password" "provisionerd_psk" {
-  length = 26
-}
-
-resource "kubernetes_secret" "coder-db" {
-  type = "Opaque"
-  metadata {
-    name      = "coder-db-url"
-    namespace = kubernetes_namespace.coder_namespace.metadata.0.name
-  }
-  data = {
-    url = var.coder_db_url
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_service_account_token]
-  }
-}
-
-resource "kubernetes_secret" "provisionerd_psk" {
-  type = "Opaque"
-  metadata {
-    name      = "coder-provisioner-psk"
-    namespace = kubernetes_namespace.coder_namespace.metadata.0.name
-  }
-  data = {
-    psk = random_password.provisionerd_psk.result
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_service_account_token]
-  }
-}
-
-# OIDC secret needs to be manually provisioned for now.
-data "kubernetes_secret" "coder_oidc" {
-  metadata {
-    namespace = kubernetes_namespace.coder_namespace.metadata.0.name
-    name      = "coder-oidc"
-  }
-}
-
-resource "kubernetes_manifest" "coder_certificate" {
-  manifest = {
-    apiVersion = "cert-manager.io/v1"
-    kind       = "Certificate"
-    metadata = {
-      name      = "${var.name}"
-      namespace = kubernetes_namespace.coder_namespace.metadata.0.name
-    }
-    spec = {
-      secretName = "${var.name}-tls"
-      dnsNames   = regex("https?://([^/]+)", local.coder_url)
-      issuerRef = {
-        name = kubernetes_manifest.cloudflare-cluster-issuer.manifest.metadata.name
-        kind = "ClusterIssuer"
-      }
-    }
-  }
-}
-
-data "kubernetes_secret" "coder_tls" {
-  metadata {
-    namespace = kubernetes_namespace.coder_namespace.metadata.0.name
-    name      = "${var.name}-tls"
-  }
-  depends_on = [kubernetes_manifest.coder_certificate]
-}
-
-resource "helm_release" "coder-chart" {
-  repository = local.coder_helm_repo
-  chart      = local.coder_helm_chart
-  name       = local.coder_release_name
-  version    = var.coder_chart_version
-  namespace  = kubernetes_namespace.coder_namespace.metadata.0.name
-  values = [<<EOF
-coder:
-  affinity:
-    nodeAffinity:
-      requiredDuringSchedulingIgnoredDuringExecution:
-        nodeSelectorTerms:
-        - matchExpressions:
-          - key: "cloud.google.com/gke-nodepool"
-            operator: "In"
-            values: ["${var.kubernetes_nodepool_coder}"]
-    podAntiAffinity:
-      preferredDuringSchedulingIgnoredDuringExecution:
-      - weight: 1
-        podAffinityTerm:
-          topologyKey: "kubernetes.io/hostname"
-          labelSelector:
-            matchExpressions:
-            - key:      "app.kubernetes.io/instance"
-              operator: "In"
-              values:   ["${local.coder_release_name}"]
-  env:
-    - name: "CODER_ACCESS_URL"
-      value: "${local.coder_url}"
-    - name: "CODER_CACHE_DIRECTORY"
-      value: "/tmp/coder"
-    - name: "CODER_TELEMETRY_ENABLE"
-      value: "false"
-    - name: "CODER_LOGGING_HUMAN"
-      value: "/dev/null"
-    - name: "CODER_LOGGING_STACKDRIVER"
-      value: "/dev/stderr"
-    - name: "CODER_PG_CONNECTION_URL"
-      valueFrom:
-        secretKeyRef:
-          name: "${kubernetes_secret.coder-db.metadata.0.name}"
-          key: url
-    - name: "CODER_PPROF_ENABLE"
-      value: "true"
-    - name: "CODER_PROMETHEUS_ENABLE"
-      value: "true"
-    - name: "CODER_PROMETHEUS_COLLECT_AGENT_STATS"
-      value: "true"
-    - name: "CODER_PROMETHEUS_COLLECT_DB_METRICS"
-      value: "true"
-    - name: "CODER_VERBOSE"
-      value: "true"
-    - name: "CODER_EXPERIMENTS"
-      value: "${var.coder_experiments}"
-    - name: "CODER_DANGEROUS_DISABLE_RATE_LIMITS"
-      value: "true"
-    # Disabling built-in provisioner daemons
-    - name: "CODER_PROVISIONER_DAEMONS"
-      value: "0"
-    - name: CODER_PROVISIONER_DAEMON_PSK
-      valueFrom:
-        secretKeyRef:
-          key: psk
-          name: "${kubernetes_secret.provisionerd_psk.metadata.0.name}"
-    # Enable OIDC
-    - name: "CODER_OIDC_ISSUER_URL"
-      valueFrom:
-        secretKeyRef:
-          key: issuer-url
-          name: "${data.kubernetes_secret.coder_oidc.metadata.0.name}"
-    - name: "CODER_OIDC_EMAIL_DOMAIN"
-      valueFrom:
-        secretKeyRef:
-          key: email-domain
-          name: "${data.kubernetes_secret.coder_oidc.metadata.0.name}"
-    - name: "CODER_OIDC_CLIENT_ID"
-      valueFrom:
-        secretKeyRef:
-          key: client-id
-          name: "${data.kubernetes_secret.coder_oidc.metadata.0.name}"
-    - name: "CODER_OIDC_CLIENT_SECRET"
-      valueFrom:
-        secretKeyRef:
-          key: client-secret
-          name: "${data.kubernetes_secret.coder_oidc.metadata.0.name}"
-    # Send OTEL traces to the cluster-local collector to sample 10%
-    - name: "OTEL_EXPORTER_OTLP_ENDPOINT"
-      value: "http://${kubernetes_manifest.otel-collector.manifest.metadata.name}-collector.${kubernetes_namespace.coder_namespace.metadata.0.name}.svc.cluster.local:4317"
-    - name: "OTEL_TRACES_SAMPLER"
-      value: parentbased_traceidratio
-    - name: "OTEL_TRACES_SAMPLER_ARG"
-      value: "0.1"
-  image:
-    repo: ${var.coder_image_repo}
-    tag: ${var.coder_image_tag}
-  replicaCount: "${var.coder_replicas}"
-  resources:
-    requests:
-      cpu: "${var.coder_cpu_request}"
-      memory: "${var.coder_mem_request}"
-    limits:
-      cpu: "${var.coder_cpu_limit}"
-      memory: "${var.coder_mem_limit}"
-  securityContext:
-    readOnlyRootFilesystem: true
-  service:
-    enable: true
-    sessionAffinity: None
-    loadBalancerIP: "${var.coder_address}"
-  volumeMounts:
-  - mountPath: "/tmp"
-    name: cache
-    readOnly: false
-  volumes:
-  - emptyDir:
-      sizeLimit: 1024Mi
-    name: cache
-EOF
-  ]
-}
-
-resource "helm_release" "provisionerd-chart" {
-  repository = local.coder_helm_repo
-  chart      = local.provisionerd_helm_chart
-  name       = local.provisionerd_release_name
-  version    = var.provisionerd_chart_version
-  namespace  = kubernetes_namespace.coder_namespace.metadata.0.name
-  values = [<<EOF
-coder:
-  affinity:
-    nodeAffinity:
-      requiredDuringSchedulingIgnoredDuringExecution:
-        nodeSelectorTerms:
-        - matchExpressions:
-          - key: "cloud.google.com/gke-nodepool"
-            operator: "In"
-            values: ["${var.kubernetes_nodepool_coder}"]
-    podAntiAffinity:
-      preferredDuringSchedulingIgnoredDuringExecution:
-      - weight: 1
-        podAffinityTerm:
-          topologyKey: "kubernetes.io/hostname"
-          labelSelector:
-            matchExpressions:
-            - key:      "app.kubernetes.io/instance"
-              operator: "In"
-              values:   ["${local.coder_release_name}"]
-  env:
-    - name: "CODER_URL"
-      value: "${local.coder_url}"
-    - name: "CODER_VERBOSE"
-      value: "true"
-    - name: "CODER_CACHE_DIRECTORY"
-      value: "/tmp/coder"
-    - name: "CODER_TELEMETRY_ENABLE"
-      value: "false"
-    - name: "CODER_LOGGING_HUMAN"
-      value: "/dev/null"
-    - name: "CODER_LOGGING_STACKDRIVER"
-      value: "/dev/stderr"
-    - name: "CODER_PROMETHEUS_ENABLE"
-      value: "true"
-    - name: "CODER_PROVISIONERD_TAGS"
-      value = "socpe=organization"
-  image:
-    repo: ${var.provisionerd_image_repo}
-    tag: ${var.provisionerd_image_tag}
-  replicaCount: "${var.provisionerd_replicas}"
-  resources:
-    requests:
-      cpu: "${var.provisionerd_cpu_request}"
-      memory: "${var.provisionerd_mem_request}"
-    limits:
-      cpu: "${var.provisionerd_cpu_limit}"
-      memory: "${var.provisionerd_mem_limit}"
-  securityContext:
-    readOnlyRootFilesystem: true
-  volumeMounts:
-  - mountPath: "/tmp"
-    name: cache
-    readOnly: false
-  volumes:
-  - emptyDir:
-      sizeLimit: 1024Mi
-    name: cache
-EOF
-  ]
-}
-
-resource "local_file" "kubernetes_template" {
-  filename = "${path.module}/../.coderv2/templates/kubernetes/main.tf"
-  content  = <<EOF
-    terraform {
-      required_providers {
-        coder = {
-          source  = "coder/coder"
-          version = "~> 0.23.0"
-        }
-        kubernetes = {
-          source  = "hashicorp/kubernetes"
-          version = "~> 2.30"
-        }
-      }
-    }
-
-    provider "coder" {}
-
-    provider "kubernetes" {
-      config_path = null # always use host
-    }
-
-    data "coder_workspace" "me" {}
-    data "coder_workspace_owner" "me" {}
-
-    resource "coder_agent" "main" {
-      os                     = "linux"
-      arch                   = "amd64"
-    }
-
-    resource "kubernetes_pod" "main" {
-      count = data.coder_workspace.me.start_count
-      metadata {
-        name      = "coder-$${lower(data.coder_workspace_owner.me.name)}-$${lower(data.coder_workspace.me.name)}"
-        namespace = "${local.coder_namespace}"
-        labels = {
-          "app.kubernetes.io/name"     = "coder-workspace"
-          "app.kubernetes.io/instance" = "coder-workspace-$${lower(data.coder_workspace_owner.me.name)}-$${lower(data.coder_workspace.me.name)}"
-        }
-      }
-      spec {
-        security_context {
-          run_as_user = "1000"
-          fs_group    = "1000"
-        }
-        container {
-          name              = "dev"
-          image             = "${var.workspace_image}"
-          image_pull_policy = "Always"
-          command           = ["sh", "-c", coder_agent.main.init_script]
-          security_context {
-            run_as_user = "1000"
-          }
-          env {
-            name  = "CODER_AGENT_TOKEN"
-            value = coder_agent.main.token
-          }
-          resources {
-            requests = {
-              "cpu"    = "${var.workspace_cpu_request}"
-              "memory" = "${var.workspace_mem_request}"
-            }
-            limits = {
-              "cpu"    = "${var.workspace_cpu_limit}"
-              "memory" = "${var.workspace_mem_limit}"
-            }
-          }
-        }
-
-        affinity {
-          node_affinity {
-            required_during_scheduling_ignored_during_execution {
-              node_selector_term {
-                match_expressions {
-                  key = "cloud.google.com/gke-nodepool"
-                  operator = "In"
-                  values = ["${var.kubernetes_nodepool_workspaces}"]
-                }
-              }
-            }
-          }
-        }
-      }
-    }
-  EOF
-}
-
-resource "local_file" "output_vars" {
-  filename = "${path.module}/../../.coderv2/url"
-  content  = local.coder_url
-}
-
-output "coder_url" {
-  description = "URL of the Coder deployment"
-  value       = local.coder_url
-}
diff --git a/scaletest/terraform/k8s/main.tf b/scaletest/terraform/k8s/main.tf
deleted file mode 100644
index a5c8c1085a5ce..0000000000000
--- a/scaletest/terraform/k8s/main.tf
+++ /dev/null
@@ -1,35 +0,0 @@
-terraform {
-  required_providers {
-    kubernetes = {
-      source  = "hashicorp/kubernetes"
-      version = "~> 2.20"
-    }
-
-    helm = {
-      source  = "hashicorp/helm"
-      version = "~> 2.9"
-    }
-
-    random = {
-      source  = "hashicorp/random"
-      version = "~> 3.5"
-    }
-
-    tls = {
-      source  = "hashicorp/tls"
-      version = "~> 4.0"
-    }
-  }
-
-  required_version = "~> 1.5.0"
-}
-
-provider "kubernetes" {
-  config_path = var.kubernetes_kubeconfig_path
-}
-
-provider "helm" {
-  kubernetes {
-    config_path = var.kubernetes_kubeconfig_path
-  }
-}
diff --git a/scaletest/terraform/k8s/otel.tf b/scaletest/terraform/k8s/otel.tf
deleted file mode 100644
index 3b1657ee48cbc..0000000000000
--- a/scaletest/terraform/k8s/otel.tf
+++ /dev/null
@@ -1,69 +0,0 @@
-# Terraform configuration for OpenTelemetry Operator
-
-locals {
-  otel_namespace              = "opentelemetry-operator-system"
-  otel_operator_helm_repo     = "https://open-telemetry.github.io/opentelemetry-helm-charts"
-  otel_operator_helm_chart    = "opentelemtry-operator"
-  otel_operator_release_name  = "opentelemetry-operator"
-  otel_operator_chart_version = "0.34.1"
-}
-
-resource "kubernetes_namespace" "otel-namespace" {
-  metadata {
-    name = local.otel_namespace
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_default_service_account]
-  }
-}
-
-resource "helm_release" "otel-operator" {
-  repository = local.otel_operator_helm_repo
-  chart      = local.otel_operator_helm_chart
-  name       = local.otel_operator_release_name
-  namespace  = kubernetes_namespace.otel-namespace.metadata.0.name
-  # Default values
-  values = []
-}
-
-resource "kubernetes_manifest" "otel-collector" {
-  manifest = {
-    apiVersion = "opentelemetry.io/v1alpha1"
-    kind       = "OpenTelemetryCollector"
-    metadata = {
-      namespace = kubernetes_namespace.coder_namespace.metadata.0.name
-      name      = "otel"
-    }
-    spec = {
-      config = jsonencode({
-        receivers = {
-          otlp = {
-            protocols : {
-              grpc : {}
-              http : {}
-            }
-          }
-        }
-        exporters = {
-          googlecloud = {
-            logging = {
-              loglevel = "debug"
-            }
-          }
-        }
-        service = {
-          pipelines = {
-            traces = {
-              receivers  = ["otlp"]
-              processors = []
-              exporters  = ["logging", "googlecloud"]
-            }
-          }
-        }
-        image    = "otel/open-telemetry-collector-contrib:latest"
-        mode     = "deployment"
-        replicas = 1
-      })
-    }
-  }
-}
diff --git a/scaletest/terraform/k8s/prometheus.tf b/scaletest/terraform/k8s/prometheus.tf
deleted file mode 100644
index accf926727575..0000000000000
--- a/scaletest/terraform/k8s/prometheus.tf
+++ /dev/null
@@ -1,173 +0,0 @@
-locals {
-  prometheus_helm_repo             = "https://charts.bitnami.com/bitnami"
-  prometheus_helm_chart            = "kube-prometheus"
-  prometheus_exporter_helm_repo    = "https://prometheus-community.github.io/helm-charts"
-  prometheus_exporter_helm_chart   = "prometheus-postgres-exporter"
-  prometheus_release_name          = "prometheus"
-  prometheus_exporter_release_name = "prometheus-postgres-exporter"
-  prometheus_namespace             = "prometheus"
-  prometheus_remote_write_enabled  = var.prometheus_remote_write_password != ""
-}
-
-# Create a namespace to hold our Prometheus deployment.
-resource "kubernetes_namespace" "prometheus_namespace" {
-  metadata {
-    name = local.prometheus_namespace
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_default_service_account]
-  }
-}
-
-# Create a secret to store the remote write key
-resource "kubernetes_secret" "prometheus-credentials" {
-  count = local.prometheus_remote_write_enabled ? 1 : 0
-  type  = "kubernetes.io/basic-auth"
-  metadata {
-    name      = "prometheus-credentials"
-    namespace = kubernetes_namespace.prometheus_namespace.metadata.0.name
-  }
-
-  data = {
-    username = var.prometheus_remote_write_user
-    password = var.prometheus_remote_write_password
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_service_account_token]
-  }
-}
-
-# Install Prometheus using the Bitnami Prometheus helm chart.
-resource "helm_release" "prometheus-chart" {
-  repository = local.prometheus_helm_repo
-  chart      = local.prometheus_helm_chart
-  name       = local.prometheus_release_name
-  namespace  = kubernetes_namespace.prometheus_namespace.metadata.0.name
-  values = [<<EOF
-alertmanager:
-  enabled: false
-blackboxExporter:
-  affinity:
-    nodeAffinity:
-      requiredDuringSchedulingIgnoredDuringExecution:
-        nodeSelectorTerms:
-        - matchExpressions:
-          - key: "cloud.google.com/gke-nodepool"
-            operator: "In"
-            values: ["${var.kubernetes_nodepool_misc}"]
-operator:
-  affinity:
-    nodeAffinity:
-      requiredDuringSchedulingIgnoredDuringExecution:
-        nodeSelectorTerms:
-        - matchExpressions:
-          - key: "cloud.google.com/gke-nodepool"
-            operator: "In"
-            values: ["${var.kubernetes_nodepool_misc}"]
-prometheus:
-  affinity:
-    nodeAffinity:
-      requiredDuringSchedulingIgnoredDuringExecution:
-        nodeSelectorTerms:
-        - matchExpressions:
-          - key: "cloud.google.com/gke-nodepool"
-            operator: "In"
-            values: ["${var.kubernetes_nodepool_misc}"]
-  externalLabels:
-    cluster: "${var.prometheus_external_label_cluster}"
-  persistence:
-    enabled: true
-    storageClass: standard
-%{if local.prometheus_remote_write_enabled~}
-  remoteWrite:
-    - url: "${var.prometheus_remote_write_url}"
-      basicAuth:
-        username:
-          name: "${kubernetes_secret.prometheus-credentials[0].metadata[0].name}"
-          key: username
-        password:
-          name: "${kubernetes_secret.prometheus-credentials[0].metadata[0].name}"
-          key: password
-      tlsConfig:
-        insecureSkipVerify: ${var.prometheus_remote_write_insecure_skip_verify}
-      writeRelabelConfigs:
-        - sourceLabels: [__name__]
-          regex: "${var.prometheus_remote_write_metrics_regex}"
-          action: keep
-      metadataConfig:
-        sendInterval: "${var.prometheus_remote_write_send_interval}"
-%{endif~}
-  EOF
-  ]
-}
-
-resource "kubernetes_secret" "prometheus-postgres-password" {
-  type = "kubernetes.io/basic-auth"
-  metadata {
-    name      = "prometheus-postgres"
-    namespace = kubernetes_namespace.prometheus_namespace.metadata.0.name
-  }
-  data = {
-    username = var.prometheus_postgres_user
-    password = var.prometheus_postgres_password
-  }
-  lifecycle {
-    ignore_changes = [timeouts, wait_for_service_account_token]
-  }
-}
-
-# Install Prometheus Postgres exporter helm chart
-resource "helm_release" "prometheus-exporter-chart" {
-  depends_on = [helm_release.prometheus-chart]
-  repository = local.prometheus_exporter_helm_repo
-  chart      = local.prometheus_exporter_helm_chart
-  name       = local.prometheus_exporter_release_name
-  namespace  = local.prometheus_namespace
-  values = [<<EOF
-affinity:
-  nodeAffinity:
-  requiredDuringSchedulingIgnoredDuringExecution:
-    nodeSelectorTerms:
-    - matchExpressions:
-      - key: "cloud.google.com/gke-nodepool"
-        operator: "In"
-        values: ["${var.kubernetes_nodepool_misc}"]
-config:
-  datasource:
-    host: "${var.prometheus_postgres_host}"
-    user: "${var.prometheus_postgres_user}"
-    database: "${var.prometheus_postgres_dbname}"
-    passwordSecret:
-      name: "${kubernetes_secret.prometheus-postgres-password.metadata.0.name}"
-      key: password
-    autoDiscoverDatabases: true
-serviceMonitor:
-  enabled: true
-  EOF
-  ]
-}
-
-resource "kubernetes_manifest" "coder_monitoring" {
-  depends_on = [helm_release.prometheus-chart]
-  manifest = {
-    apiVersion = "monitoring.coreos.com/v1"
-    kind       = "PodMonitor"
-    metadata = {
-      namespace = kubernetes_namespace.coder_namespace.metadata.0.name
-      name      = "coder-monitoring"
-    }
-    spec = {
-      selector = {
-        matchLabels = {
-          "app.kubernetes.io/name" : "coder"
-        }
-      }
-      podMetricsEndpoints = [
-        {
-          port     = "prometheus-http"
-          interval = "30s"
-        }
-      ]
-    }
-  }
-}
diff --git a/scaletest/terraform/k8s/vars.tf b/scaletest/terraform/k8s/vars.tf
deleted file mode 100644
index 4ccd42bb4807c..0000000000000
--- a/scaletest/terraform/k8s/vars.tf
+++ /dev/null
@@ -1,219 +0,0 @@
-variable "state" {
-  description = "The state of the cluster. Valid values are 'started', and 'stopped'."
-  validation {
-    condition     = contains(["started", "stopped"], var.state)
-    error_message = "value must be one of 'started' or 'stopped'"
-  }
-  default = "started"
-}
-
-variable "name" {
-  description = "Adds a prefix to resources."
-}
-
-variable "kubernetes_kubeconfig_path" {
-  description = "Path to kubeconfig to use to provision resources."
-}
-
-variable "kubernetes_nodepool_coder" {
-  description = "Name of the nodepool on which to run Coder."
-}
-
-variable "kubernetes_nodepool_workspaces" {
-  description = "Name of the nodepool on which to run workspaces."
-}
-
-variable "kubernetes_nodepool_misc" {
-  description = "Name of the nodepool on which to run everything else."
-}
-
-// These variables control the Coder deployment.
-variable "coder_access_url" {
-  description = "Access URL for the Coder deployment."
-}
-variable "coder_replicas" {
-  description = "Number of Coder replicas to provision."
-  default     = 1
-}
-
-variable "coder_address" {
-  description = "IP address to use for Coder service."
-}
-
-variable "coder_db_url" {
-  description = "URL of the database for Coder to use."
-  sensitive   = true
-}
-
-// Ensure that requests allow for at least two replicas to be scheduled
-// on a single node temporarily, otherwise deployments may fail due to
-// lack of resources.
-variable "coder_cpu_request" {
-  description = "CPU request to allocate to Coder."
-  default     = "500m"
-}
-
-variable "coder_mem_request" {
-  description = "Memory request to allocate to Coder."
-  default     = "512Mi"
-}
-
-variable "coder_cpu_limit" {
-  description = "CPU limit to allocate to Coder."
-  default     = "1000m"
-}
-
-variable "coder_mem_limit" {
-  description = "Memory limit to allocate to Coder."
-  default     = "1024Mi"
-}
-
-// Allow independently scaling provisionerd resources
-variable "provisionerd_cpu_request" {
-  description = "CPU request to allocate to provisionerd."
-  default     = "100m"
-}
-
-variable "provisionerd_mem_request" {
-  description = "Memory request to allocate to provisionerd."
-  default     = "1Gi"
-}
-
-variable "provisionerd_cpu_limit" {
-  description = "CPU limit to allocate to provisionerd."
-  default     = "1000m"
-}
-
-variable "provisionerd_mem_limit" {
-  description = "Memory limit to allocate to provisionerd."
-  default     = "1Gi"
-}
-
-variable "provisionerd_replicas" {
-  description = "Number of Provisionerd replicas."
-  default     = 1
-}
-
-variable "provisionerd_chart_version" {
-  description = "Version of the Provisionerd Helm chart to install. Defaults to latest."
-  default     = null
-}
-
-variable "provisionerd_image_repo" {
-  description = "Repository to use for Provisionerd image."
-  default     = "ghcr.io/coder/coder"
-}
-
-variable "provisionerd_image_tag" {
-  description = "Tag to use for Provisionerd image."
-  default     = "latest"
-}
-
-variable "coder_chart_version" {
-  description = "Version of the Coder Helm chart to install. Defaults to latest."
-  default     = null
-}
-
-variable "coder_image_repo" {
-  description = "Repository to use for Coder image."
-  default     = "ghcr.io/coder/coder"
-}
-
-variable "coder_image_tag" {
-  description = "Tag to use for Coder image."
-  default     = "latest"
-}
-
-variable "coder_experiments" {
-  description = "Coder Experiments to enable."
-  default     = ""
-}
-
-// These variables control the default workspace template.
-variable "workspace_image" {
-  description = "Image and tag to use for workspaces."
-  default     = "docker.io/codercom/enterprise-minimal:ubuntu"
-}
-
-variable "workspace_cpu_request" {
-  description = "CPU request to allocate to workspaces."
-  default     = "100m"
-}
-
-variable "workspace_cpu_limit" {
-  description = "CPU limit to allocate to workspaces."
-  default     = "100m"
-}
-
-variable "workspace_mem_request" {
-  description = "Memory request to allocate to workspaces."
-  default     = "128Mi"
-}
-
-variable "workspace_mem_limit" {
-  description = "Memory limit to allocate to workspaces."
-  default     = "128Mi"
-}
-
-// These variables control the Prometheus deployment.
-variable "prometheus_external_label_cluster" {
-  description = "Value for the Prometheus external label named cluster."
-}
-
-variable "prometheus_postgres_dbname" {
-  description = "Database for Postgres to monitor."
-}
-
-variable "prometheus_postgres_host" {
-  description = "Database hostname for Prometheus."
-}
-
-variable "prometheus_postgres_password" {
-  description = "Postgres password for Prometheus."
-  sensitive   = true
-}
-
-variable "prometheus_postgres_user" {
-  description = "Postgres username for Prometheus."
-}
-
-variable "prometheus_remote_write_user" {
-  description = "Username for Prometheus remote write."
-  default     = ""
-}
-
-variable "prometheus_remote_write_password" {
-  description = "Password for Prometheus remote write."
-  default     = ""
-  sensitive   = true
-}
-
-variable "prometheus_remote_write_url" {
-  description = "URL for Prometheus remote write. Defaults to stats.dev.c8s.io."
-  default     = "https://stats.dev.c8s.io:9443/api/v1/write"
-}
-
-variable "prometheus_remote_write_insecure_skip_verify" {
-  description = "Skip TLS verification for Prometheus remote write."
-  default     = true
-}
-
-variable "prometheus_remote_write_metrics_regex" {
-  description = "Allowlist regex of metrics for Prometheus remote write."
-  default     = ".*"
-}
-
-variable "prometheus_remote_write_send_interval" {
-  description = "Prometheus remote write interval."
-  default     = "15s"
-}
-
-variable "cloudflare_api_token" {
-  description = "Cloudflare API token."
-  sensitive   = true
-}
-
-variable "cloudflare_email" {
-  description = "Cloudflare email address."
-  sensitive   = true
-}
diff --git a/scaletest/terraform/scenario-large.tfvars b/scaletest/terraform/scenario-large.tfvars
deleted file mode 100644
index 9bd4aa1e454fb..0000000000000
--- a/scaletest/terraform/scenario-large.tfvars
+++ /dev/null
@@ -1,9 +0,0 @@
-nodepool_machine_type_coder      = "t2d-standard-8"
-nodepool_size_coder              = 3
-nodepool_machine_type_workspaces = "t2d-standard-8"
-cloudsql_tier                    = "db-custom-2-7680"
-coder_cpu_request                = "3000m"
-coder_mem_request                = "12Gi"
-coder_cpu_limit                  = "6000m" # Leaving 2 CPUs for system workloads
-coder_mem_limit                  = "24Gi"  # Leaving 8 GB for system workloads
-coder_replicas                   = 3
diff --git a/scaletest/terraform/scenario-medium.tfvars b/scaletest/terraform/scenario-medium.tfvars
deleted file mode 100644
index 2c5f9c99407fa..0000000000000
--- a/scaletest/terraform/scenario-medium.tfvars
+++ /dev/null
@@ -1,7 +0,0 @@
-nodepool_machine_type_coder      = "t2d-standard-8"
-nodepool_machine_type_workspaces = "t2d-standard-8"
-cloudsql_tier                    = "db-custom-1-3840"
-coder_cpu_request                = "3000m"
-coder_mem_request                = "12Gi"
-coder_cpu_limit                  = "6000m" # Leaving 2 CPUs for system workloads
-coder_mem_limit                  = "24Gi"  # Leaving 8 GB for system workloads
diff --git a/scaletest/terraform/scenario-small.tfvars b/scaletest/terraform/scenario-small.tfvars
deleted file mode 100644
index 0387701c3b94e..0000000000000
--- a/scaletest/terraform/scenario-small.tfvars
+++ /dev/null
@@ -1,6 +0,0 @@
-nodepool_machine_type_coder      = "t2d-standard-4"
-nodepool_machine_type_workspaces = "t2d-standard-4"
-coder_cpu_request                = "1000m"
-coder_mem_request                = "6Gi"
-coder_cpu_limit                  = "2000m" # Leaving 2 CPUs for system workloads
-coder_mem_limit                  = "12Gi"  # Leaving 4GB for system workloads
diff --git a/scaletest/terraform/secrets.tfvars.tpl b/scaletest/terraform/secrets.tfvars.tpl
deleted file mode 100644
index 7298db304d8b6..0000000000000
--- a/scaletest/terraform/secrets.tfvars.tpl
+++ /dev/null
@@ -1,4 +0,0 @@
-name = "${SCALETEST_NAME}"
-project_id = "${SCALETEST_PROJECT}"
-prometheus_remote_write_user = "${SCALETEST_PROMETHEUS_REMOTE_WRITE_USER}"
-prometheus_remote_write_password = "${SCALETEST_PROMETHEUS_REMOTE_WRITE_PASSWORD}"
diff --git a/scripts/metricsdocgen/metrics b/scripts/metricsdocgen/metrics
index 35110a9834efb..20e24d9caa136 100644
--- a/scripts/metricsdocgen/metrics
+++ b/scripts/metricsdocgen/metrics
@@ -715,6 +715,37 @@ coderd_workspace_latest_build_status{status="failed",template_name="docker",temp
 coderd_workspace_builds_total{action="START",owner_email="admin@coder.com",status="failed",template_name="docker",template_version="gallant_wright0",workspace_name="test1"} 1
 coderd_workspace_builds_total{action="START",owner_email="admin@coder.com",status="success",template_name="docker",template_version="gallant_wright0",workspace_name="test1"} 1
 coderd_workspace_builds_total{action="STOP",owner_email="admin@coder.com",status="success",template_name="docker",template_version="gallant_wright0",workspace_name="test1"} 1
+# HELP coderd_workspace_creation_total Total regular (non-prebuilt) workspace creations by organization, template, and preset.
+# TYPE coderd_workspace_creation_total counter
+coderd_workspace_creation_total{organization_name="{organization}",preset_name="",template_name="docker"} 1
+# HELP coderd_workspace_creation_duration_seconds Time to create a workspace by organization, template, preset, and type (regular or prebuild).
+# TYPE coderd_workspace_creation_duration_seconds histogram
+coderd_workspace_creation_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",type="prebuild",le="1"} 0
+coderd_workspace_creation_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",type="prebuild",le="10"} 1
+coderd_workspace_creation_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",type="prebuild",le="30"} 1
+coderd_workspace_creation_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",type="prebuild",le="60"} 1
+coderd_workspace_creation_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",type="prebuild",le="300"} 1
+coderd_workspace_creation_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",type="prebuild",le="600"} 1
+coderd_workspace_creation_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",type="prebuild",le="1800"} 1
+coderd_workspace_creation_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",type="prebuild",le="3600"} 1
+coderd_workspace_creation_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",type="prebuild",le="+Inf"} 1
+coderd_workspace_creation_duration_seconds_sum{organization_name="{organization}",preset_name="Falkenstein",template_name="template-example",type="prebuild"} 4.406214
+coderd_workspace_creation_duration_seconds_count{organization_name="{organization}",preset_name="Falkenstein",template_name="template-example",type="prebuild"} 1
+# HELP coderd_prebuilt_workspace_claim_duration_seconds Time to claim a prebuilt workspace by organization, template, and preset.
+# TYPE coderd_prebuilt_workspace_claim_duration_seconds histogram
+coderd_prebuilt_workspace_claim_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",le="1"} 0
+coderd_prebuilt_workspace_claim_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",le="5"} 1
+coderd_prebuilt_workspace_claim_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",le="10"} 1
+coderd_prebuilt_workspace_claim_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",le="20"} 1
+coderd_prebuilt_workspace_claim_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",le="30"} 1
+coderd_prebuilt_workspace_claim_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",le="60"} 1
+coderd_prebuilt_workspace_claim_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",le="120"} 1
+coderd_prebuilt_workspace_claim_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",le="180"} 1
+coderd_prebuilt_workspace_claim_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",le="240"} 1
+coderd_prebuilt_workspace_claim_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",le="300"} 1
+coderd_prebuilt_workspace_claim_duration_seconds_bucket{organization_name="{organization}",preset_name="Falkenstein",template_name="docker",le="+Inf"} 1
+coderd_prebuilt_workspace_claim_duration_seconds_sum{organization_name="{organization}",preset_name="Falkenstein",template_name="docker"} 4.860075
+coderd_prebuilt_workspace_claim_duration_seconds_count{organization_name="{organization}",preset_name="Falkenstein",template_name="docker"} 1
 # HELP go_gc_duration_seconds A summary of the pause duration of garbage collection cycles.
 # TYPE go_gc_duration_seconds summary
 go_gc_duration_seconds{quantile="0"} 2.4056e-05