@anthropic-ai/aws-sdk 0.2.0

package/.github/logo.svg

@@ -0,0 +1,3 @@
+<svg width="248" height="248" viewBox="0 0 248 248" fill="none" xmlns="http://www.w3.org/2000/svg">
+<path d="M52.4285 162.873L98.7844 136.879L99.5485 134.602L98.7844 133.334H96.4921L88.7237 132.862L62.2346 132.153L39.3113 131.207L17.0249 130.026L11.4214 128.844L6.2 121.873L6.7094 118.447L11.4214 115.257L18.171 115.847L33.0711 116.911L55.485 118.447L71.6586 119.392L95.728 121.873H99.5485L100.058 120.337L98.7844 119.392L97.7656 118.447L74.5877 102.732L49.4995 86.1905L36.3823 76.62L29.3779 71.7757L25.8121 67.2858L24.2839 57.3608L30.6515 50.2716L39.3113 50.8623L41.4763 51.4531L50.2636 58.1879L68.9842 72.7209L93.4357 90.6804L97.0015 93.6343L98.4374 92.6652L98.6571 91.9801L97.0015 89.2625L83.757 65.2772L69.621 40.8192L63.2534 30.6579L61.5978 24.632C60.9565 22.1032 60.579 20.0111 60.579 17.4246L67.8381 7.49965L71.9133 6.19995L81.7193 7.49965L85.7946 11.0443L91.9074 24.9865L101.714 46.8451L116.996 76.62L121.453 85.4816L123.873 93.6343L124.764 96.1155H126.292V94.6976L127.566 77.9197L129.858 57.3608L132.15 30.8942L132.915 23.4505L136.608 14.4708L143.994 9.62643L149.725 12.344L154.437 19.0788L153.8 23.4505L150.998 41.6463L145.522 70.1215L141.957 89.2625H143.994L146.414 86.7813L156.093 74.0206L172.266 53.698L179.398 45.6635L187.803 36.802L193.152 32.5484H203.34L210.726 43.6549L207.415 55.1159L196.972 68.3492L188.312 79.5739L175.896 96.2095L168.191 109.585L168.882 110.689L170.738 110.53L198.755 104.504L213.91 101.787L231.994 98.7149L240.144 102.496L241.036 106.395L237.852 114.311L218.495 119.037L195.826 123.645L162.07 131.592L161.696 131.893L162.137 132.547L177.36 133.925L183.855 134.279H199.774L229.447 136.524L237.215 141.605L241.8 147.867L241.036 152.711L229.065 158.737L213.019 154.956L175.45 145.977L162.587 142.787H160.805V143.85L171.502 154.366L191.242 172.089L215.82 195.011L217.094 200.682L213.91 205.172L210.599 204.699L188.949 188.394L180.544 181.069L161.696 165.118H160.422V166.772L164.752 173.152L187.803 207.771L188.949 218.405L187.294 221.832L181.308 223.959L174.813 222.777L161.187 203.754L147.305 182.486L136.098 163.345L134.745 164.2L128.075 235.42L125.019 239.082L117.887 241.8L111.902 237.31L108.718 229.984L111.902 215.452L115.722 196.547L118.779 181.541L121.58 162.873L123.291 156.636L123.14 156.219L121.773 156.449L107.699 175.752L86.304 204.699L69.3663 222.777L65.291 224.431L58.2867 220.768L58.9235 214.27L62.8713 208.48L86.304 178.705L100.44 160.155L109.551 149.507L109.462 147.967L108.959 147.924L46.6977 188.512L35.6182 189.93L30.7788 185.44L31.4156 178.115L33.7079 175.752L52.4285 162.873Z" fill="#D97757"/>
+</svg>

package/CHANGELOG.md

@@ -0,0 +1,15 @@
+# Changelog
+
+## 0.2.0 (2026-04-01)
+
+Full Changelog: [aws-sdk-v0.1.0...aws-sdk-v0.2.0](https://github.com/anthropics/anthropic-sdk-typescript/compare/aws-sdk-v0.1.0...aws-sdk-v0.2.0)
+
+### Features
+
+* prepare aws package ([#782](https://github.com/anthropics/anthropic-sdk-typescript/issues/782)) ([f351d4d](https://github.com/anthropics/anthropic-sdk-typescript/commit/f351d4dfeb57b48bcb126686dc608493813262da))
+
+
+### Chores
+
+* **internal:** version bump ([eb97e85](https://github.com/anthropics/anthropic-sdk-typescript/commit/eb97e8577279fb150582297d2a0924a297185c3c))
+* **internal:** version bump ([8ebaf61](https://github.com/anthropics/anthropic-sdk-typescript/commit/8ebaf616d2e5c6aebc153f19a403dde41ab5a9f1))

package/LICENSE

@@ -0,0 +1,8 @@
+Copyright 2023 Anthropic, PBC.
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+

package/client.d.mts

@@ -0,0 +1,109 @@
+import type { NullableHeaders } from "./internal/headers.mjs";
+import { Anthropic, ClientOptions } from '@anthropic-ai/sdk/client';
+export { BaseAnthropic } from '@anthropic-ai/sdk/client';
+import { AwsCredentialIdentityProvider } from '@smithy/types';
+import { FinalRequestOptions } from "./internal/request-options.mjs";
+import { FinalizedRequestInit } from "./internal/types.mjs";
+export interface AwsClientOptions extends ClientOptions {
+    /**
+     * AWS region for the API gateway.
+     *
+     * Resolved by precedence: `awsRegion` arg > `AWS_REGION` env var > `AWS_DEFAULT_REGION` env var.
+     */
+    awsRegion?: string | undefined;
+    /**
+     * API key for x-api-key authentication.
+     *
+     * Takes precedence over AWS credential options. If neither `apiKey` nor
+     * AWS credentials are provided, falls back to the `ANTHROPIC_AWS_API_KEY`
+     * environment variable, then to the default AWS credential chain.
+     */
+    apiKey?: string | undefined;
+    /**
+     * AWS access key ID for SigV4 authentication.
+     *
+     * Must be provided together with `awsSecretAccessKey`.
+     */
+    awsAccessKey?: string | null | undefined;
+    /**
+     * AWS secret access key for SigV4 authentication.
+     *
+     * Must be provided together with `awsAccessKey`.
+     */
+    awsSecretAccessKey?: string | null | undefined;
+    /**
+     * AWS session token for temporary credentials.
+     */
+    awsSessionToken?: string | null | undefined;
+    /**
+     * AWS named profile for credential resolution.
+     *
+     * When set, credentials are loaded from the AWS credential chain
+     * using this profile.
+     */
+    awsProfile?: string | undefined;
+    /**
+     * Custom provider chain resolver for AWS credentials.
+     * Useful for non-Node environments, like edge workers, where the default
+     * credential provider chain may not work.
+     */
+    providerChainResolver?: (() => Promise<AwsCredentialIdentityProvider>) | null;
+    /**
+     * Workspace ID sent on every request as the `anthropic-workspace-id` header.
+     *
+     * Resolved by precedence: `workspaceId` arg > `ANTHROPIC_AWS_WORKSPACE_ID` env var.
+     */
+    workspaceId?: string | undefined;
+    /**
+     * Skip authentication for requests. This is useful when you have a gateway
+     * or proxy that handles authentication on your behalf.
+     *
+     * @default false
+     */
+    skipAuth?: boolean;
+}
+/** API Client for interfacing with the Anthropic AWS API. */
+export declare class AnthropicAws extends Anthropic {
+    awsRegion: string | undefined;
+    awsAccessKey: string | null;
+    awsSecretAccessKey: string | null;
+    awsSessionToken: string | null;
+    awsProfile: string | null;
+    providerChainResolver: (() => Promise<AwsCredentialIdentityProvider>) | null;
+    workspaceId: string | undefined;
+    skipAuth: boolean;
+    private _useSigV4;
+    /**
+     * API Client for interfacing with the Anthropic AWS API.
+     *
+     * Auth is resolved by precedence: `apiKey` constructor arg > explicit AWS
+     * credentials > `awsProfile` > `ANTHROPIC_AWS_API_KEY` env var > default
+     * AWS credential chain.
+     *
+     * @param {string | undefined} [opts.apiKey] - API key for x-api-key authentication.
+     * @param {string | null | undefined} [opts.awsAccessKey] - AWS access key ID for SigV4 authentication.
+     * @param {string | null | undefined} [opts.awsSecretAccessKey] - AWS secret access key for SigV4 authentication.
+     * @param {string | null | undefined} [opts.awsSessionToken] - AWS session token for temporary credentials.
+     * @param {string | undefined} [opts.awsProfile] - AWS named profile for credential resolution.
+     * @param {string | undefined} [opts.awsRegion] - AWS region. Resolved by precedence: arg > `AWS_REGION` env > `AWS_DEFAULT_REGION` env.
+     * @param {(() => Promise<AwsCredentialIdentityProvider>) | null} [opts.providerChainResolver] - Custom provider chain resolver for AWS credentials.
+     * @param {string | undefined} [opts.workspaceId] - Workspace ID sent as `anthropic-workspace-id` header. Resolved by precedence: arg > `ANTHROPIC_AWS_WORKSPACE_ID` env var.
+     * @param {string} [opts.baseURL=process.env['ANTHROPIC_AWS_BASE_URL'] ?? https://aws-external-anthropic.{awsRegion}.api.aws] - Override the default base URL for the API.
+     * @param {number} [opts.timeout=10 minutes] - The maximum amount of time (in milliseconds) the client will wait for a response before timing out.
+     * @param {MergedRequestInit} [opts.fetchOptions] - Additional `RequestInit` options to be passed to `fetch` calls.
+     * @param {Fetch} [opts.fetch] - Specify a custom `fetch` function implementation.
+     * @param {number} [opts.maxRetries=2] - The maximum number of times the client will retry a request.
+     * @param {HeadersLike} opts.defaultHeaders - Default headers to include with every request to the API.
+     * @param {Record<string, string | undefined>} opts.defaultQuery - Default query parameters to include with every request to the API.
+     * @param {boolean} [opts.dangerouslyAllowBrowser=false] - By default, client-side use of this library is not allowed, as it risks exposing your secret API credentials to attackers.
+     * @param {boolean} [opts.skipAuth=false] - Skip authentication for requests. This is useful when you have a gateway or proxy that handles authentication on your behalf.
+     */
+    constructor({ awsRegion, baseURL, apiKey, awsAccessKey, awsSecretAccessKey, awsSessionToken, awsProfile, providerChainResolver, workspaceId, skipAuth, ...opts }?: AwsClientOptions);
+    protected authHeaders(opts: FinalRequestOptions): Promise<NullableHeaders | undefined>;
+    protected validateHeaders(): void;
+    protected prepareRequest(request: FinalizedRequestInit, { url, options }: {
+        url: string;
+        options: FinalRequestOptions;
+    }): Promise<void>;
+}
+//# sourceMappingURL=client.d.mts.map

package/client.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.mts","sourceRoot":"","sources":["src/client.ts"],"names":[],"mappings":"OAAO,KAAK,EAAE,eAAe,EAAE;OAIxB,EAAE,SAAS,EAAE,aAAa,EAAE,MAAM,0BAA0B;OAC5D,EAAE,aAAa,EAAE,MAAM,0BAA0B;OACjD,EAAE,6BAA6B,EAAE,MAAM,eAAe;OAEtD,EAAE,mBAAmB,EAAE;OACvB,EAAE,oBAAoB,EAAE;AAI/B,MAAM,WAAW,gBAAiB,SAAQ,aAAa;IACrD;;;;OAIG;IACH,SAAS,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAE/B;;;;;;OAMG;IACH,MAAM,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAE5B;;;;OAIG;IACH,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,CAAC;IAEzC;;;;OAIG;IACH,kBAAkB,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,CAAC;IAE/C;;OAEG;IACH,eAAe,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,CAAC;IAE5C;;;;;OAKG;IACH,UAAU,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAEhC;;;;OAIG;IACH,qBAAqB,CAAC,EAAE,CAAC,MAAM,OAAO,CAAC,6BAA6B,CAAC,CAAC,GAAG,IAAI,CAAC;IAE9E;;;;OAIG;IACH,WAAW,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAEjC;;;;;OAKG;IACH,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAED,6DAA6D;AAC7D,qBAAa,YAAa,SAAQ,SAAS;IACzC,SAAS,EAAE,MAAM,GAAG,SAAS,CAAC;IAC9B,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,kBAAkB,EAAE,MAAM,GAAG,IAAI,CAAC;IAClC,eAAe,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,qBAAqB,EAAE,CAAC,MAAM,OAAO,CAAC,6BAA6B,CAAC,CAAC,GAAG,IAAI,CAAC;IAC7E,WAAW,EAAE,MAAM,GAAG,SAAS,CAAC;IAChC,QAAQ,EAAE,OAAO,CAAS;IAE1B,OAAO,CAAC,SAAS,CAAU;IAE3B;;;;;;;;;;;;;;;;;;;;;;;;OAwBG;gBACS,EACV,SAAS,EACT,OAAO,EACP,MAAM,EACN,YAAmB,EACnB,kBAAyB,EACzB,eAAsB,EACtB,UAAU,EACV,qBAA4B,EAC5B,WAAW,EACX,QAAgB,EAChB,GAAG,IAAI,EACR,GAAE,gBAAqB;cA+DC,WAAW,CAAC,IAAI,EAAE,mBAAmB,GAAG,OAAO,CAAC,eAAe,GAAG,SAAS,CAAC;cAclF,eAAe,IAAI,IAAI;cAIjB,cAAc,CACrC,OAAO,EAAE,oBAAoB,EAC7B,EAAE,GAAG,EAAE,OAAO,EAAE,EAAE;QAAE,GAAG,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,mBAAmB,CAAA;KAAE,GAC9D,OAAO,CAAC,IAAI,CAAC;CAwBjB"}

package/client.d.ts

@@ -0,0 +1,109 @@
+import type { NullableHeaders } from "./internal/headers.js";
+import { Anthropic, ClientOptions } from '@anthropic-ai/sdk/client';
+export { BaseAnthropic } from '@anthropic-ai/sdk/client';
+import { AwsCredentialIdentityProvider } from '@smithy/types';
+import { FinalRequestOptions } from "./internal/request-options.js";
+import { FinalizedRequestInit } from "./internal/types.js";
+export interface AwsClientOptions extends ClientOptions {
+    /**
+     * AWS region for the API gateway.
+     *
+     * Resolved by precedence: `awsRegion` arg > `AWS_REGION` env var > `AWS_DEFAULT_REGION` env var.
+     */
+    awsRegion?: string | undefined;
+    /**
+     * API key for x-api-key authentication.
+     *
+     * Takes precedence over AWS credential options. If neither `apiKey` nor
+     * AWS credentials are provided, falls back to the `ANTHROPIC_AWS_API_KEY`
+     * environment variable, then to the default AWS credential chain.
+     */
+    apiKey?: string | undefined;
+    /**
+     * AWS access key ID for SigV4 authentication.
+     *
+     * Must be provided together with `awsSecretAccessKey`.
+     */
+    awsAccessKey?: string | null | undefined;
+    /**
+     * AWS secret access key for SigV4 authentication.
+     *
+     * Must be provided together with `awsAccessKey`.
+     */
+    awsSecretAccessKey?: string | null | undefined;
+    /**
+     * AWS session token for temporary credentials.
+     */
+    awsSessionToken?: string | null | undefined;
+    /**
+     * AWS named profile for credential resolution.
+     *
+     * When set, credentials are loaded from the AWS credential chain
+     * using this profile.
+     */
+    awsProfile?: string | undefined;
+    /**
+     * Custom provider chain resolver for AWS credentials.
+     * Useful for non-Node environments, like edge workers, where the default
+     * credential provider chain may not work.
+     */
+    providerChainResolver?: (() => Promise<AwsCredentialIdentityProvider>) | null;
+    /**
+     * Workspace ID sent on every request as the `anthropic-workspace-id` header.
+     *
+     * Resolved by precedence: `workspaceId` arg > `ANTHROPIC_AWS_WORKSPACE_ID` env var.
+     */
+    workspaceId?: string | undefined;
+    /**
+     * Skip authentication for requests. This is useful when you have a gateway
+     * or proxy that handles authentication on your behalf.
+     *
+     * @default false
+     */
+    skipAuth?: boolean;
+}
+/** API Client for interfacing with the Anthropic AWS API. */
+export declare class AnthropicAws extends Anthropic {
+    awsRegion: string | undefined;
+    awsAccessKey: string | null;
+    awsSecretAccessKey: string | null;
+    awsSessionToken: string | null;
+    awsProfile: string | null;
+    providerChainResolver: (() => Promise<AwsCredentialIdentityProvider>) | null;
+    workspaceId: string | undefined;
+    skipAuth: boolean;
+    private _useSigV4;
+    /**
+     * API Client for interfacing with the Anthropic AWS API.
+     *
+     * Auth is resolved by precedence: `apiKey` constructor arg > explicit AWS
+     * credentials > `awsProfile` > `ANTHROPIC_AWS_API_KEY` env var > default
+     * AWS credential chain.
+     *
+     * @param {string | undefined} [opts.apiKey] - API key for x-api-key authentication.
+     * @param {string | null | undefined} [opts.awsAccessKey] - AWS access key ID for SigV4 authentication.
+     * @param {string | null | undefined} [opts.awsSecretAccessKey] - AWS secret access key for SigV4 authentication.
+     * @param {string | null | undefined} [opts.awsSessionToken] - AWS session token for temporary credentials.
+     * @param {string | undefined} [opts.awsProfile] - AWS named profile for credential resolution.
+     * @param {string | undefined} [opts.awsRegion] - AWS region. Resolved by precedence: arg > `AWS_REGION` env > `AWS_DEFAULT_REGION` env.
+     * @param {(() => Promise<AwsCredentialIdentityProvider>) | null} [opts.providerChainResolver] - Custom provider chain resolver for AWS credentials.
+     * @param {string | undefined} [opts.workspaceId] - Workspace ID sent as `anthropic-workspace-id` header. Resolved by precedence: arg > `ANTHROPIC_AWS_WORKSPACE_ID` env var.
+     * @param {string} [opts.baseURL=process.env['ANTHROPIC_AWS_BASE_URL'] ?? https://aws-external-anthropic.{awsRegion}.api.aws] - Override the default base URL for the API.
+     * @param {number} [opts.timeout=10 minutes] - The maximum amount of time (in milliseconds) the client will wait for a response before timing out.
+     * @param {MergedRequestInit} [opts.fetchOptions] - Additional `RequestInit` options to be passed to `fetch` calls.
+     * @param {Fetch} [opts.fetch] - Specify a custom `fetch` function implementation.
+     * @param {number} [opts.maxRetries=2] - The maximum number of times the client will retry a request.
+     * @param {HeadersLike} opts.defaultHeaders - Default headers to include with every request to the API.
+     * @param {Record<string, string | undefined>} opts.defaultQuery - Default query parameters to include with every request to the API.
+     * @param {boolean} [opts.dangerouslyAllowBrowser=false] - By default, client-side use of this library is not allowed, as it risks exposing your secret API credentials to attackers.
+     * @param {boolean} [opts.skipAuth=false] - Skip authentication for requests. This is useful when you have a gateway or proxy that handles authentication on your behalf.
+     */
+    constructor({ awsRegion, baseURL, apiKey, awsAccessKey, awsSecretAccessKey, awsSessionToken, awsProfile, providerChainResolver, workspaceId, skipAuth, ...opts }?: AwsClientOptions);
+    protected authHeaders(opts: FinalRequestOptions): Promise<NullableHeaders | undefined>;
+    protected validateHeaders(): void;
+    protected prepareRequest(request: FinalizedRequestInit, { url, options }: {
+        url: string;
+        options: FinalRequestOptions;
+    }): Promise<void>;
+}
+//# sourceMappingURL=client.d.ts.map

package/client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["src/client.ts"],"names":[],"mappings":"OAAO,KAAK,EAAE,eAAe,EAAE;OAIxB,EAAE,SAAS,EAAE,aAAa,EAAE,MAAM,0BAA0B;OAC5D,EAAE,aAAa,EAAE,MAAM,0BAA0B;OACjD,EAAE,6BAA6B,EAAE,MAAM,eAAe;OAEtD,EAAE,mBAAmB,EAAE;OACvB,EAAE,oBAAoB,EAAE;AAI/B,MAAM,WAAW,gBAAiB,SAAQ,aAAa;IACrD;;;;OAIG;IACH,SAAS,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAE/B;;;;;;OAMG;IACH,MAAM,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAE5B;;;;OAIG;IACH,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,CAAC;IAEzC;;;;OAIG;IACH,kBAAkB,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,CAAC;IAE/C;;OAEG;IACH,eAAe,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,CAAC;IAE5C;;;;;OAKG;IACH,UAAU,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAEhC;;;;OAIG;IACH,qBAAqB,CAAC,EAAE,CAAC,MAAM,OAAO,CAAC,6BAA6B,CAAC,CAAC,GAAG,IAAI,CAAC;IAE9E;;;;OAIG;IACH,WAAW,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAEjC;;;;;OAKG;IACH,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAED,6DAA6D;AAC7D,qBAAa,YAAa,SAAQ,SAAS;IACzC,SAAS,EAAE,MAAM,GAAG,SAAS,CAAC;IAC9B,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,kBAAkB,EAAE,MAAM,GAAG,IAAI,CAAC;IAClC,eAAe,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,qBAAqB,EAAE,CAAC,MAAM,OAAO,CAAC,6BAA6B,CAAC,CAAC,GAAG,IAAI,CAAC;IAC7E,WAAW,EAAE,MAAM,GAAG,SAAS,CAAC;IAChC,QAAQ,EAAE,OAAO,CAAS;IAE1B,OAAO,CAAC,SAAS,CAAU;IAE3B;;;;;;;;;;;;;;;;;;;;;;;;OAwBG;gBACS,EACV,SAAS,EACT,OAAO,EACP,MAAM,EACN,YAAmB,EACnB,kBAAyB,EACzB,eAAsB,EACtB,UAAU,EACV,qBAA4B,EAC5B,WAAW,EACX,QAAgB,EAChB,GAAG,IAAI,EACR,GAAE,gBAAqB;cA+DC,WAAW,CAAC,IAAI,EAAE,mBAAmB,GAAG,OAAO,CAAC,eAAe,GAAG,SAAS,CAAC;cAclF,eAAe,IAAI,IAAI;cAIjB,cAAc,CACrC,OAAO,EAAE,oBAAoB,EAC7B,EAAE,GAAG,EAAE,OAAO,EAAE,EAAE;QAAE,GAAG,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,mBAAmB,CAAA;KAAE,GAC9D,OAAO,CAAC,IAAI,CAAC;CAwBjB"}

package/client.js

@@ -0,0 +1,158 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AnthropicAws = exports.BaseAnthropic = void 0;
+const headers_1 = require("./internal/headers.js");
+const Errors = __importStar(require("./core/error.js"));
+const utils_1 = require("./internal/utils.js");
+const client_1 = require("@anthropic-ai/sdk/client");
+var client_2 = require("@anthropic-ai/sdk/client");
+Object.defineProperty(exports, "BaseAnthropic", { enumerable: true, get: function () { return client_2.BaseAnthropic; } });
+const auth_1 = require("./core/auth.js");
+const DEFAULT_SERVICE_NAME = 'aws-external-anthropic';
+/** API Client for interfacing with the Anthropic AWS API. */
+class AnthropicAws extends client_1.Anthropic {
+    /**
+     * API Client for interfacing with the Anthropic AWS API.
+     *
+     * Auth is resolved by precedence: `apiKey` constructor arg > explicit AWS
+     * credentials > `awsProfile` > `ANTHROPIC_AWS_API_KEY` env var > default
+     * AWS credential chain.
+     *
+     * @param {string | undefined} [opts.apiKey] - API key for x-api-key authentication.
+     * @param {string | null | undefined} [opts.awsAccessKey] - AWS access key ID for SigV4 authentication.
+     * @param {string | null | undefined} [opts.awsSecretAccessKey] - AWS secret access key for SigV4 authentication.
+     * @param {string | null | undefined} [opts.awsSessionToken] - AWS session token for temporary credentials.
+     * @param {string | undefined} [opts.awsProfile] - AWS named profile for credential resolution.
+     * @param {string | undefined} [opts.awsRegion] - AWS region. Resolved by precedence: arg > `AWS_REGION` env > `AWS_DEFAULT_REGION` env.
+     * @param {(() => Promise<AwsCredentialIdentityProvider>) | null} [opts.providerChainResolver] - Custom provider chain resolver for AWS credentials.
+     * @param {string | undefined} [opts.workspaceId] - Workspace ID sent as `anthropic-workspace-id` header. Resolved by precedence: arg > `ANTHROPIC_AWS_WORKSPACE_ID` env var.
+     * @param {string} [opts.baseURL=process.env['ANTHROPIC_AWS_BASE_URL'] ?? https://aws-external-anthropic.{awsRegion}.api.aws] - Override the default base URL for the API.
+     * @param {number} [opts.timeout=10 minutes] - The maximum amount of time (in milliseconds) the client will wait for a response before timing out.
+     * @param {MergedRequestInit} [opts.fetchOptions] - Additional `RequestInit` options to be passed to `fetch` calls.
+     * @param {Fetch} [opts.fetch] - Specify a custom `fetch` function implementation.
+     * @param {number} [opts.maxRetries=2] - The maximum number of times the client will retry a request.
+     * @param {HeadersLike} opts.defaultHeaders - Default headers to include with every request to the API.
+     * @param {Record<string, string | undefined>} opts.defaultQuery - Default query parameters to include with every request to the API.
+     * @param {boolean} [opts.dangerouslyAllowBrowser=false] - By default, client-side use of this library is not allowed, as it risks exposing your secret API credentials to attackers.
+     * @param {boolean} [opts.skipAuth=false] - Skip authentication for requests. This is useful when you have a gateway or proxy that handles authentication on your behalf.
+     */
+    constructor({ awsRegion, baseURL, apiKey, awsAccessKey = null, awsSecretAccessKey = null, awsSessionToken = null, awsProfile, providerChainResolver = null, workspaceId, skipAuth = false, ...opts } = {}) {
+        // Region resolution: arg > AWS_REGION env > AWS_DEFAULT_REGION env
+        const resolvedRegion = awsRegion ?? (0, utils_1.readEnv)('AWS_REGION') ?? (0, utils_1.readEnv)('AWS_DEFAULT_REGION');
+        const resolvedBaseURL = baseURL ??
+            (0, utils_1.readEnv)('ANTHROPIC_AWS_BASE_URL') ??
+            (resolvedRegion ? `https://aws-external-anthropic.${resolvedRegion}.api.aws` : undefined);
+        if (!resolvedBaseURL && !skipAuth) {
+            throw new Errors.AnthropicError('No AWS region or base URL found. Set `awsRegion` in the constructor, the `AWS_REGION` / `AWS_DEFAULT_REGION` environment variable, or provide a `baseURL` / `ANTHROPIC_AWS_BASE_URL` environment variable.');
+        }
+        // Precedence-based auth resolution:
+        // 1. apiKey constructor arg
+        // 2. awsAccessKey/awsSecretAccessKey constructor args (SigV4)
+        // 3. awsProfile constructor arg (SigV4)
+        // 4. ANTHROPIC_AWS_API_KEY env var
+        // 5. Default AWS credential chain (SigV4)
+        const hasExplicitApiKey = apiKey != null;
+        const hasPartialAwsCreds = (awsAccessKey != null) !== (awsSecretAccessKey != null);
+        if (hasPartialAwsCreds) {
+            throw new Errors.AnthropicError('`awsAccessKey` and `awsSecretAccessKey` must be provided together. You provided only one.');
+        }
+        const hasExplicitAwsCreds = awsAccessKey != null && awsSecretAccessKey != null;
+        const hasAwsProfile = awsProfile != null;
+        let resolvedApiKey;
+        if (hasExplicitApiKey) {
+            resolvedApiKey = apiKey;
+        }
+        else if (!hasExplicitAwsCreds && !hasAwsProfile) {
+            resolvedApiKey = (0, utils_1.readEnv)('ANTHROPIC_AWS_API_KEY') ?? undefined;
+        }
+        const resolvedWorkspaceId = workspaceId ?? (0, utils_1.readEnv)('ANTHROPIC_AWS_WORKSPACE_ID');
+        if (!resolvedWorkspaceId && !skipAuth) {
+            throw new Errors.AnthropicError('No workspace ID found. Set `workspaceId` in the constructor or the `ANTHROPIC_AWS_WORKSPACE_ID` environment variable.');
+        }
+        super({
+            apiKey: resolvedApiKey,
+            baseURL: resolvedBaseURL,
+            ...opts,
+            defaultHeaders: (0, headers_1.buildHeaders)([{ 'anthropic-workspace-id': resolvedWorkspaceId }, opts.defaultHeaders]),
+        });
+        this.skipAuth = false;
+        this.awsRegion = resolvedRegion;
+        this.awsAccessKey = awsAccessKey;
+        this.awsSecretAccessKey = awsSecretAccessKey;
+        this.awsSessionToken = awsSessionToken;
+        this.awsProfile = awsProfile ?? null;
+        this.providerChainResolver = providerChainResolver;
+        this.workspaceId = resolvedWorkspaceId;
+        this.skipAuth = skipAuth;
+        this._useSigV4 = resolvedApiKey == null;
+    }
+    async authHeaders(opts) {
+        if (this.skipAuth) {
+            return undefined;
+        }
+        if (!this._useSigV4) {
+            // API key mode — use inherited x-api-key auth
+            return super.authHeaders(opts);
+        }
+        // SigV4 mode — auth is handled in prepareRequest since it needs the full request
+        return undefined;
+    }
+    validateHeaders() {
+        // Auth validation is handled in the constructor and prepareRequest
+    }
+    async prepareRequest(request, { url, options }) {
+        if (this.skipAuth || !this._useSigV4) {
+            return;
+        }
+        const regionName = this.awsRegion;
+        if (!regionName) {
+            throw new Errors.AnthropicError('No AWS region found. Set `awsRegion` in the constructor or the `AWS_REGION` / `AWS_DEFAULT_REGION` environment variable.');
+        }
+        const headers = await (0, auth_1.getAuthHeaders)(request, {
+            url,
+            regionName,
+            serviceName: DEFAULT_SERVICE_NAME,
+            awsAccessKey: this.awsAccessKey,
+            awsSecretAccessKey: this.awsSecretAccessKey,
+            awsSessionToken: this.awsSessionToken,
+            awsProfile: this.awsProfile,
+            providerChainResolver: this.providerChainResolver,
+        });
+        request.headers = (0, headers_1.buildHeaders)([headers, request.headers]).values;
+    }
+}
+exports.AnthropicAws = AnthropicAws;
+//# sourceMappingURL=client.js.map

package/client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.js","sourceRoot":"","sources":["src/client.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AACA,mDAAkD;AAClD,wDAAuC;AACvC,+CAA2C;AAC3C,qDAAoE;AACpE,mDAAyD;AAAhD,uGAAA,aAAa,OAAA;AAEtB,yCAA6C;AAI7C,MAAM,oBAAoB,GAAG,wBAAwB,CAAC;AAqEtD,6DAA6D;AAC7D,MAAa,YAAa,SAAQ,kBAAS;IAYzC;;;;;;;;;;;;;;;;;;;;;;;;OAwBG;IACH,YAAY,EACV,SAAS,EACT,OAAO,EACP,MAAM,EACN,YAAY,GAAG,IAAI,EACnB,kBAAkB,GAAG,IAAI,EACzB,eAAe,GAAG,IAAI,EACtB,UAAU,EACV,qBAAqB,GAAG,IAAI,EAC5B,WAAW,EACX,QAAQ,GAAG,KAAK,EAChB,GAAG,IAAI,KACa,EAAE;QACtB,mEAAmE;QACnE,MAAM,cAAc,GAAG,SAAS,IAAI,IAAA,eAAO,EAAC,YAAY,CAAC,IAAI,IAAA,eAAO,EAAC,oBAAoB,CAAC,CAAC;QAE3F,MAAM,eAAe,GACnB,OAAO;YACP,IAAA,eAAO,EAAC,wBAAwB,CAAC;YACjC,CAAC,cAAc,CAAC,CAAC,CAAC,kCAAkC,cAAc,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;QAE5F,IAAI,CAAC,eAAe,IAAI,CAAC,QAAQ,EAAE,CAAC;YAClC,MAAM,IAAI,MAAM,CAAC,cAAc,CAC7B,4MAA4M,CAC7M,CAAC;QACJ,CAAC;QAED,oCAAoC;QACpC,4BAA4B;QAC5B,8DAA8D;QAC9D,wCAAwC;QACxC,mCAAmC;QACnC,0CAA0C;QAC1C,MAAM,iBAAiB,GAAG,MAAM,IAAI,IAAI,CAAC;QACzC,MAAM,kBAAkB,GAAG,CAAC,YAAY,IAAI,IAAI,CAAC,KAAK,CAAC,kBAAkB,IAAI,IAAI,CAAC,CAAC;QACnF,IAAI,kBAAkB,EAAE,CAAC;YACvB,MAAM,IAAI,MAAM,CAAC,cAAc,CAC7B,2FAA2F,CAC5F,CAAC;QACJ,CAAC;QACD,MAAM,mBAAmB,GAAG,YAAY,IAAI,IAAI,IAAI,kBAAkB,IAAI,IAAI,CAAC;QAC/E,MAAM,aAAa,GAAG,UAAU,IAAI,IAAI,CAAC;QAEzC,IAAI,cAAkC,CAAC;QACvC,IAAI,iBAAiB,EAAE,CAAC;YACtB,cAAc,GAAG,MAAM,CAAC;QAC1B,CAAC;aAAM,IAAI,CAAC,mBAAmB,IAAI,CAAC,aAAa,EAAE,CAAC;YAClD,cAAc,GAAG,IAAA,eAAO,EAAC,uBAAuB,CAAC,IAAI,SAAS,CAAC;QACjE,CAAC;QAED,MAAM,mBAAmB,GAAG,WAAW,IAAI,IAAA,eAAO,EAAC,4BAA4B,CAAC,CAAC;QACjF,IAAI,CAAC,mBAAmB,IAAI,CAAC,QAAQ,EAAE,CAAC;YACtC,MAAM,IAAI,MAAM,CAAC,cAAc,CAC7B,uHAAuH,CACxH,CAAC;QACJ,CAAC;QAED,KAAK,CAAC;YACJ,MAAM,EAAE,cAAc;YACtB,OAAO,EAAE,eAAe;YACxB,GAAG,IAAI;YACP,cAAc,EAAE,IAAA,sBAAY,EAAC,CAAC,EAAE,wBAAwB,EAAE,mBAAmB,EAAE,EAAE,IAAI,CAAC,cAAc,CAAC,CAAC;SACvG,CAAC,CAAC;QA3FL,aAAQ,GAAY,KAAK,CAAC;QA6FxB,IAAI,CAAC,SAAS,GAAG,cAAc,CAAC;QAChC,IAAI,CAAC,YAAY,GAAG,YAAY,CAAC;QACjC,IAAI,CAAC,kBAAkB,GAAG,kBAAkB,CAAC;QAC7C,IAAI,CAAC,eAAe,GAAG,eAAe,CAAC;QACvC,IAAI,CAAC,UAAU,GAAG,UAAU,IAAI,IAAI,CAAC;QACrC,IAAI,CAAC,qBAAqB,GAAG,qBAAqB,CAAC;QACnD,IAAI,CAAC,WAAW,GAAG,mBAAmB,CAAC;QACvC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,SAAS,GAAG,cAAc,IAAI,IAAI,CAAC;IAC1C,CAAC;IAEkB,KAAK,CAAC,WAAW,CAAC,IAAyB;QAC5D,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YAClB,OAAO,SAAS,CAAC;QACnB,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC;YACpB,8CAA8C;YAC9C,OAAO,KAAK,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;QACjC,CAAC;QAED,iFAAiF;QACjF,OAAO,SAAS,CAAC;IACnB,CAAC;IAEkB,eAAe;QAChC,mEAAmE;IACrE,CAAC;IAEkB,KAAK,CAAC,cAAc,CACrC,OAA6B,EAC7B,EAAE,GAAG,EAAE,OAAO,EAAiD;QAE/D,IAAI,IAAI,CAAC,QAAQ,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC;YACrC,OAAO;QACT,CAAC;QAED,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAAC;QAClC,IAAI,CAAC,UAAU,EAAE,CAAC;YAChB,MAAM,IAAI,MAAM,CAAC,cAAc,CAC7B,0HAA0H,CAC3H,CAAC;QACJ,CAAC;QAED,MAAM,OAAO,GAAG,MAAM,IAAA,qBAAc,EAAC,OAAO,EAAE;YAC5C,GAAG;YACH,UAAU;YACV,WAAW,EAAE,oBAAoB;YACjC,YAAY,EAAE,IAAI,CAAC,YAAY;YAC/B,kBAAkB,EAAE,IAAI,CAAC,kBAAkB;YAC3C,eAAe,EAAE,IAAI,CAAC,eAAe;YACrC,UAAU,EAAE,IAAI,CAAC,UAAU;YAC3B,qBAAqB,EAAE,IAAI,CAAC,qBAAqB;SAClD,CAAC,CAAC;QACH,OAAO,CAAC,OAAO,GAAG,IAAA,sBAAY,EAAC,CAAC,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC;IACpE,CAAC;CACF;AA7JD,oCA6JC"}

package/client.mjs

@@ -0,0 +1,120 @@
+import { buildHeaders } from "./internal/headers.mjs";
+import * as Errors from "./core/error.mjs";
+import { readEnv } from "./internal/utils.mjs";
+import { Anthropic } from '@anthropic-ai/sdk/client';
+export { BaseAnthropic } from '@anthropic-ai/sdk/client';
+import { getAuthHeaders } from "./core/auth.mjs";
+const DEFAULT_SERVICE_NAME = 'aws-external-anthropic';
+/** API Client for interfacing with the Anthropic AWS API. */
+export class AnthropicAws extends Anthropic {
+    /**
+     * API Client for interfacing with the Anthropic AWS API.
+     *
+     * Auth is resolved by precedence: `apiKey` constructor arg > explicit AWS
+     * credentials > `awsProfile` > `ANTHROPIC_AWS_API_KEY` env var > default
+     * AWS credential chain.
+     *
+     * @param {string | undefined} [opts.apiKey] - API key for x-api-key authentication.
+     * @param {string | null | undefined} [opts.awsAccessKey] - AWS access key ID for SigV4 authentication.
+     * @param {string | null | undefined} [opts.awsSecretAccessKey] - AWS secret access key for SigV4 authentication.
+     * @param {string | null | undefined} [opts.awsSessionToken] - AWS session token for temporary credentials.
+     * @param {string | undefined} [opts.awsProfile] - AWS named profile for credential resolution.
+     * @param {string | undefined} [opts.awsRegion] - AWS region. Resolved by precedence: arg > `AWS_REGION` env > `AWS_DEFAULT_REGION` env.
+     * @param {(() => Promise<AwsCredentialIdentityProvider>) | null} [opts.providerChainResolver] - Custom provider chain resolver for AWS credentials.
+     * @param {string | undefined} [opts.workspaceId] - Workspace ID sent as `anthropic-workspace-id` header. Resolved by precedence: arg > `ANTHROPIC_AWS_WORKSPACE_ID` env var.
+     * @param {string} [opts.baseURL=process.env['ANTHROPIC_AWS_BASE_URL'] ?? https://aws-external-anthropic.{awsRegion}.api.aws] - Override the default base URL for the API.
+     * @param {number} [opts.timeout=10 minutes] - The maximum amount of time (in milliseconds) the client will wait for a response before timing out.
+     * @param {MergedRequestInit} [opts.fetchOptions] - Additional `RequestInit` options to be passed to `fetch` calls.
+     * @param {Fetch} [opts.fetch] - Specify a custom `fetch` function implementation.
+     * @param {number} [opts.maxRetries=2] - The maximum number of times the client will retry a request.
+     * @param {HeadersLike} opts.defaultHeaders - Default headers to include with every request to the API.
+     * @param {Record<string, string | undefined>} opts.defaultQuery - Default query parameters to include with every request to the API.
+     * @param {boolean} [opts.dangerouslyAllowBrowser=false] - By default, client-side use of this library is not allowed, as it risks exposing your secret API credentials to attackers.
+     * @param {boolean} [opts.skipAuth=false] - Skip authentication for requests. This is useful when you have a gateway or proxy that handles authentication on your behalf.
+     */
+    constructor({ awsRegion, baseURL, apiKey, awsAccessKey = null, awsSecretAccessKey = null, awsSessionToken = null, awsProfile, providerChainResolver = null, workspaceId, skipAuth = false, ...opts } = {}) {
+        // Region resolution: arg > AWS_REGION env > AWS_DEFAULT_REGION env
+        const resolvedRegion = awsRegion ?? readEnv('AWS_REGION') ?? readEnv('AWS_DEFAULT_REGION');
+        const resolvedBaseURL = baseURL ??
+            readEnv('ANTHROPIC_AWS_BASE_URL') ??
+            (resolvedRegion ? `https://aws-external-anthropic.${resolvedRegion}.api.aws` : undefined);
+        if (!resolvedBaseURL && !skipAuth) {
+            throw new Errors.AnthropicError('No AWS region or base URL found. Set `awsRegion` in the constructor, the `AWS_REGION` / `AWS_DEFAULT_REGION` environment variable, or provide a `baseURL` / `ANTHROPIC_AWS_BASE_URL` environment variable.');
+        }
+        // Precedence-based auth resolution:
+        // 1. apiKey constructor arg
+        // 2. awsAccessKey/awsSecretAccessKey constructor args (SigV4)
+        // 3. awsProfile constructor arg (SigV4)
+        // 4. ANTHROPIC_AWS_API_KEY env var
+        // 5. Default AWS credential chain (SigV4)
+        const hasExplicitApiKey = apiKey != null;
+        const hasPartialAwsCreds = (awsAccessKey != null) !== (awsSecretAccessKey != null);
+        if (hasPartialAwsCreds) {
+            throw new Errors.AnthropicError('`awsAccessKey` and `awsSecretAccessKey` must be provided together. You provided only one.');
+        }
+        const hasExplicitAwsCreds = awsAccessKey != null && awsSecretAccessKey != null;
+        const hasAwsProfile = awsProfile != null;
+        let resolvedApiKey;
+        if (hasExplicitApiKey) {
+            resolvedApiKey = apiKey;
+        }
+        else if (!hasExplicitAwsCreds && !hasAwsProfile) {
+            resolvedApiKey = readEnv('ANTHROPIC_AWS_API_KEY') ?? undefined;
+        }
+        const resolvedWorkspaceId = workspaceId ?? readEnv('ANTHROPIC_AWS_WORKSPACE_ID');
+        if (!resolvedWorkspaceId && !skipAuth) {
+            throw new Errors.AnthropicError('No workspace ID found. Set `workspaceId` in the constructor or the `ANTHROPIC_AWS_WORKSPACE_ID` environment variable.');
+        }
+        super({
+            apiKey: resolvedApiKey,
+            baseURL: resolvedBaseURL,
+            ...opts,
+            defaultHeaders: buildHeaders([{ 'anthropic-workspace-id': resolvedWorkspaceId }, opts.defaultHeaders]),
+        });
+        this.skipAuth = false;
+        this.awsRegion = resolvedRegion;
+        this.awsAccessKey = awsAccessKey;
+        this.awsSecretAccessKey = awsSecretAccessKey;
+        this.awsSessionToken = awsSessionToken;
+        this.awsProfile = awsProfile ?? null;
+        this.providerChainResolver = providerChainResolver;
+        this.workspaceId = resolvedWorkspaceId;
+        this.skipAuth = skipAuth;
+        this._useSigV4 = resolvedApiKey == null;
+    }
+    async authHeaders(opts) {
+        if (this.skipAuth) {
+            return undefined;
+        }
+        if (!this._useSigV4) {
+            // API key mode — use inherited x-api-key auth
+            return super.authHeaders(opts);
+        }
+        // SigV4 mode — auth is handled in prepareRequest since it needs the full request
+        return undefined;
+    }
+    validateHeaders() {
+        // Auth validation is handled in the constructor and prepareRequest
+    }
+    async prepareRequest(request, { url, options }) {
+        if (this.skipAuth || !this._useSigV4) {
+            return;
+        }
+        const regionName = this.awsRegion;
+        if (!regionName) {
+            throw new Errors.AnthropicError('No AWS region found. Set `awsRegion` in the constructor or the `AWS_REGION` / `AWS_DEFAULT_REGION` environment variable.');
+        }
+        const headers = await getAuthHeaders(request, {
+            url,
+            regionName,
+            serviceName: DEFAULT_SERVICE_NAME,
+            awsAccessKey: this.awsAccessKey,
+            awsSecretAccessKey: this.awsSecretAccessKey,
+            awsSessionToken: this.awsSessionToken,
+            awsProfile: this.awsProfile,
+            providerChainResolver: this.providerChainResolver,
+        });
+        request.headers = buildHeaders([headers, request.headers]).values;
+    }
+}
+//# sourceMappingURL=client.mjs.map

package/client.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.mjs","sourceRoot":"","sources":["src/client.ts"],"names":[],"mappings":"OACO,EAAE,YAAY,EAAE;OAChB,KAAK,MAAM;OACX,EAAE,OAAO,EAAE;OACX,EAAE,SAAS,EAAiB,MAAM,0BAA0B;OAC5D,EAAE,aAAa,EAAE,MAAM,0BAA0B;OAEjD,EAAE,cAAc,EAAE;AAIzB,MAAM,oBAAoB,GAAG,wBAAwB,CAAC;AAqEtD,6DAA6D;AAC7D,MAAM,OAAO,YAAa,SAAQ,SAAS;IAYzC;;;;;;;;;;;;;;;;;;;;;;;;OAwBG;IACH,YAAY,EACV,SAAS,EACT,OAAO,EACP,MAAM,EACN,YAAY,GAAG,IAAI,EACnB,kBAAkB,GAAG,IAAI,EACzB,eAAe,GAAG,IAAI,EACtB,UAAU,EACV,qBAAqB,GAAG,IAAI,EAC5B,WAAW,EACX,QAAQ,GAAG,KAAK,EAChB,GAAG,IAAI,KACa,EAAE;QACtB,mEAAmE;QACnE,MAAM,cAAc,GAAG,SAAS,IAAI,OAAO,CAAC,YAAY,CAAC,IAAI,OAAO,CAAC,oBAAoB,CAAC,CAAC;QAE3F,MAAM,eAAe,GACnB,OAAO;YACP,OAAO,CAAC,wBAAwB,CAAC;YACjC,CAAC,cAAc,CAAC,CAAC,CAAC,kCAAkC,cAAc,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;QAE5F,IAAI,CAAC,eAAe,IAAI,CAAC,QAAQ,EAAE,CAAC;YAClC,MAAM,IAAI,MAAM,CAAC,cAAc,CAC7B,4MAA4M,CAC7M,CAAC;QACJ,CAAC;QAED,oCAAoC;QACpC,4BAA4B;QAC5B,8DAA8D;QAC9D,wCAAwC;QACxC,mCAAmC;QACnC,0CAA0C;QAC1C,MAAM,iBAAiB,GAAG,MAAM,IAAI,IAAI,CAAC;QACzC,MAAM,kBAAkB,GAAG,CAAC,YAAY,IAAI,IAAI,CAAC,KAAK,CAAC,kBAAkB,IAAI,IAAI,CAAC,CAAC;QACnF,IAAI,kBAAkB,EAAE,CAAC;YACvB,MAAM,IAAI,MAAM,CAAC,cAAc,CAC7B,2FAA2F,CAC5F,CAAC;QACJ,CAAC;QACD,MAAM,mBAAmB,GAAG,YAAY,IAAI,IAAI,IAAI,kBAAkB,IAAI,IAAI,CAAC;QAC/E,MAAM,aAAa,GAAG,UAAU,IAAI,IAAI,CAAC;QAEzC,IAAI,cAAkC,CAAC;QACvC,IAAI,iBAAiB,EAAE,CAAC;YACtB,cAAc,GAAG,MAAM,CAAC;QAC1B,CAAC;aAAM,IAAI,CAAC,mBAAmB,IAAI,CAAC,aAAa,EAAE,CAAC;YAClD,cAAc,GAAG,OAAO,CAAC,uBAAuB,CAAC,IAAI,SAAS,CAAC;QACjE,CAAC;QAED,MAAM,mBAAmB,GAAG,WAAW,IAAI,OAAO,CAAC,4BAA4B,CAAC,CAAC;QACjF,IAAI,CAAC,mBAAmB,IAAI,CAAC,QAAQ,EAAE,CAAC;YACtC,MAAM,IAAI,MAAM,CAAC,cAAc,CAC7B,uHAAuH,CACxH,CAAC;QACJ,CAAC;QAED,KAAK,CAAC;YACJ,MAAM,EAAE,cAAc;YACtB,OAAO,EAAE,eAAe;YACxB,GAAG,IAAI;YACP,cAAc,EAAE,YAAY,CAAC,CAAC,EAAE,wBAAwB,EAAE,mBAAmB,EAAE,EAAE,IAAI,CAAC,cAAc,CAAC,CAAC;SACvG,CAAC,CAAC;QA3FL,aAAQ,GAAY,KAAK,CAAC;QA6FxB,IAAI,CAAC,SAAS,GAAG,cAAc,CAAC;QAChC,IAAI,CAAC,YAAY,GAAG,YAAY,CAAC;QACjC,IAAI,CAAC,kBAAkB,GAAG,kBAAkB,CAAC;QAC7C,IAAI,CAAC,eAAe,GAAG,eAAe,CAAC;QACvC,IAAI,CAAC,UAAU,GAAG,UAAU,IAAI,IAAI,CAAC;QACrC,IAAI,CAAC,qBAAqB,GAAG,qBAAqB,CAAC;QACnD,IAAI,CAAC,WAAW,GAAG,mBAAmB,CAAC;QACvC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,SAAS,GAAG,cAAc,IAAI,IAAI,CAAC;IAC1C,CAAC;IAEkB,KAAK,CAAC,WAAW,CAAC,IAAyB;QAC5D,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YAClB,OAAO,SAAS,CAAC;QACnB,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC;YACpB,8CAA8C;YAC9C,OAAO,KAAK,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;QACjC,CAAC;QAED,iFAAiF;QACjF,OAAO,SAAS,CAAC;IACnB,CAAC;IAEkB,eAAe;QAChC,mEAAmE;IACrE,CAAC;IAEkB,KAAK,CAAC,cAAc,CACrC,OAA6B,EAC7B,EAAE,GAAG,EAAE,OAAO,EAAiD;QAE/D,IAAI,IAAI,CAAC,QAAQ,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC;YACrC,OAAO;QACT,CAAC;QAED,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAAC;QAClC,IAAI,CAAC,UAAU,EAAE,CAAC;YAChB,MAAM,IAAI,MAAM,CAAC,cAAc,CAC7B,0HAA0H,CAC3H,CAAC;QACJ,CAAC;QAED,MAAM,OAAO,GAAG,MAAM,cAAc,CAAC,OAAO,EAAE;YAC5C,GAAG;YACH,UAAU;YACV,WAAW,EAAE,oBAAoB;YACjC,YAAY,EAAE,IAAI,CAAC,YAAY;YAC/B,kBAAkB,EAAE,IAAI,CAAC,kBAAkB;YAC3C,eAAe,EAAE,IAAI,CAAC,eAAe;YACrC,UAAU,EAAE,IAAI,CAAC,UAAU;YAC3B,qBAAqB,EAAE,IAAI,CAAC,qBAAqB;SAClD,CAAC,CAAC;QACH,OAAO,CAAC,OAAO,GAAG,YAAY,CAAC,CAAC,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC;IACpE,CAAC;CACF"}

package/core/auth.d.mts

@@ -0,0 +1,15 @@
+import { AwsCredentialIdentityProvider } from '@smithy/types';
+import { MergedRequestInit } from "../internal/types.mjs";
+export type AuthProps = {
+    url: string;
+    regionName: string;
+    serviceName: string;
+    awsAccessKey: string | null | undefined;
+    awsSecretAccessKey: string | null | undefined;
+    awsSessionToken: string | null | undefined;
+    awsProfile?: string | null | undefined;
+    fetchOptions?: MergedRequestInit | undefined;
+    providerChainResolver?: (() => Promise<AwsCredentialIdentityProvider>) | null;
+};
+export declare const getAuthHeaders: (req: RequestInit, props: AuthProps) => Promise<Record<string, string>>;
+//# sourceMappingURL=auth.d.mts.map

package/core/auth.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.mts","sourceRoot":"","sources":["../src/core/auth.ts"],"names":[],"mappings":"OAIO,EAAE,6BAA6B,EAAE,MAAM,eAAe;OAEtD,EAAE,iBAAiB,EAAE;AAE5B,MAAM,MAAM,SAAS,GAAG;IACtB,GAAG,EAAE,MAAM,CAAC;IACZ,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,CAAC;IACxC,kBAAkB,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,CAAC;IAC9C,eAAe,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,CAAC;IAC3C,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,CAAC;IACvC,YAAY,CAAC,EAAE,iBAAiB,GAAG,SAAS,CAAC;IAC7C,qBAAqB,CAAC,EAAE,CAAC,MAAM,OAAO,CAAC,6BAA6B,CAAC,CAAC,GAAG,IAAI,CAAC;CAC/E,CAAC;AA2BF,eAAO,MAAM,cAAc,GAAU,KAAK,WAAW,EAAE,OAAO,SAAS,KAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAuDvG,CAAC"}

package/core/auth.d.ts

@@ -0,0 +1,15 @@
+import { AwsCredentialIdentityProvider } from '@smithy/types';
+import { MergedRequestInit } from "../internal/types.js";
+export type AuthProps = {
+    url: string;
+    regionName: string;
+    serviceName: string;
+    awsAccessKey: string | null | undefined;
+    awsSecretAccessKey: string | null | undefined;
+    awsSessionToken: string | null | undefined;
+    awsProfile?: string | null | undefined;
+    fetchOptions?: MergedRequestInit | undefined;
+    providerChainResolver?: (() => Promise<AwsCredentialIdentityProvider>) | null;
+};
+export declare const getAuthHeaders: (req: RequestInit, props: AuthProps) => Promise<Record<string, string>>;
+//# sourceMappingURL=auth.d.ts.map

package/core/auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../src/core/auth.ts"],"names":[],"mappings":"OAIO,EAAE,6BAA6B,EAAE,MAAM,eAAe;OAEtD,EAAE,iBAAiB,EAAE;AAE5B,MAAM,MAAM,SAAS,GAAG;IACtB,GAAG,EAAE,MAAM,CAAC;IACZ,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,CAAC;IACxC,kBAAkB,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,CAAC;IAC9C,eAAe,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,CAAC;IAC3C,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,CAAC;IACvC,YAAY,CAAC,EAAE,iBAAiB,GAAG,SAAS,CAAC;IAC7C,qBAAqB,CAAC,EAAE,CAAC,MAAM,OAAO,CAAC,6BAA6B,CAAC,CAAC,GAAG,IAAI,CAAC;CAC/E,CAAC;AA2BF,eAAO,MAAM,cAAc,GAAU,KAAK,WAAW,EAAE,OAAO,SAAS,KAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAuDvG,CAAC"}