@awsless/awsless 0.0.583 → 0.0.585

package/dist/build-json-schema.js

@@ -4,7 +4,7 @@ import { join as join2 } from "node:path";
 import { zodToJsonSchema } from "zod-to-json-schema";
 
 // src/config/app.ts
-import { z as z23 } from "zod";
+import { z as z24 } from "zod";
 
 // src/feature/alert/schema.ts
 import { kebabCase } from "change-case";
@@ -203,7 +203,7 @@ var ArchitectureSchema = z11.enum(["x86_64", "arm64"]).describe("The instruction
 var RetryAttemptsSchema = z11.number().int().min(0).max(2).describe(
   "The maximum number of times to retry when the function returns an error. You can specify a number from 0 to 2."
 );
-var NodeRuntimeSchema = z11.enum(["nodejs18.x", "nodejs20.x", "nodejs22.x"]);
+var NodeRuntimeSchema = z11.enum(["nodejs18.x", "nodejs20.x", "nodejs22.x", "nodejs24.x"]);
 var ContainerRuntimeSchema = z11.literal("container");
 var RuntimeSchema = NodeRuntimeSchema.or(ContainerRuntimeSchema).or(z11.string()).describe("The identifier of the function's runtime.");
 var ActionSchema = z11.string();
@@ -235,7 +235,7 @@ var LogRetentionSchema = DurationSchema.refine(
   (duration) => {
     return validLogRetentionDays.includes(toDays(duration));
   },
-  `Invalid log retention. Valid days are: ${validLogRetentionDays.map((days4) => `${days4}`).join(", ")}`
+  `Invalid log retention. Valid days are: ${validLogRetentionDays.map((days5) => `${days5}`).join(", ")}`
 ).describe("The log retention duration.");
 var LogSchema = z11.union([
   z11.boolean().transform((enabled) => ({ retention: enabled ? days(7) : days(0) })),
@@ -309,7 +309,7 @@ var FunctionSchema = z11.union([
 ]);
 var FunctionsSchema = z11.record(ResourceIdSchema, FunctionSchema).optional().describe("Define the functions in your stack.");
 var FunctionDefaultSchema = z11.object({
-  runtime: RuntimeSchema.default("nodejs20.x"),
+  runtime: RuntimeSchema.default("nodejs24.x"),
   // node
   handler: HandlerSchema.default("index.default"),
   // build: BuildSchema.default({
@@ -530,50 +530,200 @@ var RestSchema = z18.record(
 ).optional().describe("Define routes in your stack for your global REST API.");
 
 // src/feature/rpc/schema.ts
+import { minutes as minutes4, seconds as seconds3 } from "@awsless/duration";
+import { z as z20 } from "zod";
+
+// src/feature/router/schema.ts
+import { days as days3, minutes as minutes3, parse as parse3 } from "@awsless/duration";
 import { z as z19 } from "zod";
-import { minutes as minutes3, seconds as seconds3 } from "@awsless/duration";
-var TimeoutSchema2 = DurationSchema.refine(durationMin(seconds3(10)), "Minimum timeout duration is 10 seconds").refine(durationMax(minutes3(5)), "Maximum timeout duration is 5 minutes").describe(
+var ErrorResponsePathSchema = z19.string().describe(
+  [
+    "The path to the custom error page that you want to return to the viewer when your origin returns the HTTP status code specified.",
+    "- We recommend that you store custom error pages in an Amazon S3 bucket.",
+    "If you store custom error pages on an HTTP server and the server starts to return 5xx errors, CloudFront can't get the files that you want to return to viewers because the origin server is unavailable."
+  ].join("\n")
+);
+var StatusCodeSchema = z19.number().int().positive().optional().describe(
+  [
+    "The HTTP status code that you want CloudFront to return to the viewer along with the custom error page.",
+    "There are a variety of reasons that you might want CloudFront to return a status code different from the status code that your origin returned to CloudFront, for example:",
+    "- Some Internet devices (some firewalls and corporate proxies, for example) intercept HTTP 4xx and 5xx and prevent the response from being returned to the viewer.",
+    "If you substitute 200, the response typically won't be intercepted.",
+    `- If you don't care about distinguishing among different client errors or server errors, you can specify 400 or 500 as the ResponseCode for all 4xx or 5xx errors.`,
+    `- You might want to return a 200 status code (OK) and static website so your customers don't know that your website is down.`
+  ].join("\n")
+);
+var MinTTLSchema = DurationSchema.describe(
+  "The minimum amount of time, that you want to cache the error response. When this time period has elapsed, CloudFront queries your origin to see whether the problem that caused the error has been resolved and the requested object is now available."
+);
+var ErrorResponseSchema = z19.union([
+  ErrorResponsePathSchema,
+  z19.object({
+    path: ErrorResponsePathSchema,
+    statusCode: StatusCodeSchema.optional(),
+    minTTL: MinTTLSchema.optional()
+  })
+]).optional();
+var RouteSchema2 = z19.string().regex(/^\//, "Route must start with a slash (/)");
+var VisibilitySchema = z19.boolean().default(false).describe("Whether to enable CloudWatch metrics for the WAF rule.");
+var WafSettingsSchema = z19.object({
+  rateLimiter: z19.object({
+    limit: z19.number().min(10).max(2e9).default(10).describe(
+      "The limit on requests during the specified evaluation window for a single aggregation instance for the rate-based rule."
+    ),
+    window: z19.union([
+      z19.literal("1 minute"),
+      z19.literal("2 minutes"),
+      z19.literal("5 minutes"),
+      z19.literal("10 minutes")
+    ]).default("5 minutes").transform((v) => parse3(v)).describe(
+      "The amount of time, in seconds, that AWS WAF should include in its request counts, looking back from the current time."
+    ),
+    visibility: VisibilitySchema
+  }).optional().describe(
+    "A rate-based rule counts incoming requests and rate limits requests when they are coming at too fast a rate."
+  ),
+  ddosProtection: z19.object({
+    sensitivity: z19.object({
+      challenge: z19.enum(["low", "medium", "high"]).default("low").transform((v) => v.toUpperCase()).describe("The sensitivity level for challenge requests."),
+      block: z19.enum(["low", "medium", "high"]).default("low").transform((v) => v.toUpperCase()).describe("The sensitivity level for block requests.")
+    }),
+    exemptUriRegex: z19.string().default("^$"),
+    visibility: VisibilitySchema
+  }).optional().describe(
+    "Provides protection against DDoS attacks targeting the application layer, also known as Layer 7 attacks. Uses 50 WCU."
+  ),
+  botProtection: z19.object({
+    inspectionLevel: z19.enum(["common", "targeted"]).default("common").transform((v) => v.toUpperCase()),
+    visibility: VisibilitySchema
+  }).optional().describe(
+    "Provides protection against automated bots that can consume excess resources, skew business metrics, cause downtime, or perform malicious activities. Bot Control provides additional visibility through Amazon CloudWatch and generates labels that you can use to control bot traffic to your applications. Uses 50 WCU."
+  ),
+  captchaImmunityTime: DurationSchema.refine(durationMin(minutes3(1)), "Minimum timeout duration is 1 minute").refine(durationMax(days3(3)), "Maximum timeout duration is 3 days").default("5 minutes").describe(
+    "The amount of time that a CAPTCHA timestamp is considered valid by AWS WAF. The default setting is 5 minutes."
+  ),
+  challengeImmunityTime: DurationSchema.refine(durationMin(minutes3(1)), "Minimum timeout duration is 1 minute").refine(durationMax(days3(3)), "Maximum timeout duration is 3 days").default("5 minutes").describe(
+    "The amount of time that a challenge timestamp is considered valid by AWS WAF. The default setting is 5 minutes."
+  )
+}).describe(
+  "WAF settings for the router. Each rule consumes Web ACL capacity units (WCUs). The total WCUs for a web ACL can't exceed 5000. Using over 1500 WCUs affects your costs."
+);
+var RouterDefaultSchema = z19.record(
+  ResourceIdSchema,
+  z19.object({
+    domain: ResourceIdSchema.describe("The domain id to link your Router.").optional(),
+    subDomain: z19.string().optional(),
+    waf: WafSettingsSchema.optional(),
+    geoRestrictions: z19.array(z19.string().length(2).toUpperCase()).default([]).describe("Specifies a blacklist of countries that should be blocked."),
+    errors: z19.object({
+      400: ErrorResponseSchema.describe("Customize a `400 Bad Request` response."),
+      403: ErrorResponseSchema.describe("Customize a `403 Forbidden` response."),
+      404: ErrorResponseSchema.describe("Customize a `404 Not Found` response."),
+      405: ErrorResponseSchema.describe("Customize a `405 Method Not Allowed` response."),
+      414: ErrorResponseSchema.describe("Customize a `414 Request-URI` response."),
+      416: ErrorResponseSchema.describe("Customize a `416 Range Not` response."),
+      500: ErrorResponseSchema.describe("Customize a `500 Internal Server` response."),
+      501: ErrorResponseSchema.describe("Customize a `501 Not Implemented` response."),
+      502: ErrorResponseSchema.describe("Customize a `502 Bad Gateway` response."),
+      503: ErrorResponseSchema.describe("Customize a `503 Service Unavailable` response."),
+      504: ErrorResponseSchema.describe("Customize a `504 Gateway Timeout` response.")
+    }).optional().describe("Customize the error responses for specific HTTP status codes."),
+    cors: z19.object({
+      override: z19.boolean().default(false),
+      maxAge: DurationSchema.default("365 days"),
+      exposeHeaders: z19.string().array().optional(),
+      credentials: z19.boolean().default(false),
+      headers: z19.string().array().default(["*"]),
+      origins: z19.string().array().default(["*"]),
+      methods: z19.enum(["GET", "DELETE", "HEAD", "OPTIONS", "PATCH", "POST", "PUT", "ALL"]).array().default(["ALL"])
+    }).optional().describe("Specify the cors headers."),
+    basicAuth: z19.object({
+      username: z19.string().describe("Basic auth username."),
+      password: z19.string().describe("Basic auth password.")
+    }).optional().describe("Enable basic authentication for the site."),
+    // security: z
+    // 	.object({
+    // 		contentSecurityPolicy: z.object({
+    // 			override: z.boolean().default(false),
+    // 			policy: z.string(),
+    // 		})
+    // 		contentSecurityPolicy?: {
+    // 			override?: boolean
+    // 			contentSecurityPolicy: string
+    // 		}
+    // 		contentTypeOptions?: {
+    // 			override?: boolean
+    // 		}
+    // 		frameOptions?: {
+    // 			override?: boolean
+    // 			frameOption?: 'deny' | 'same-origin'
+    // 		}
+    // 		referrerPolicy?: {
+    // 			override?: boolean
+    // 			referrerPolicy?: (
+    // 				'no-referrer' |
+    // 				'no-referrer-when-downgrade' |
+    // 				'origin' |
+    // 				'origin-when-cross-origin' |
+    // 				'same-origin' |
+    // 				'strict-origin' |
+    // 				'strict-origin-when-cross-origin' |
+    // 				'unsafe-url'
+    // 			)
+    // 		}
+    // 		strictTransportSecurity?: {
+    // 			maxAge?: Duration
+    // 			includeSubdomains?: boolean
+    // 			override?: boolean
+    // 			preload?: boolean
+    // 		}
+    // 		xssProtection?: {
+    // 			override?: boolean
+    // 			enable?: boolean
+    // 			modeBlock?: boolean
+    // 			reportUri?: string
+    // 		}
+    // 	})
+    // 	.optional()
+    // 	.describe('Specify the security policy.'),
+    cache: z19.object({
+      cookies: z19.string().array().optional().describe("Specifies the cookies that CloudFront includes in the cache key."),
+      headers: z19.string().array().optional().describe("Specifies the headers that CloudFront includes in the cache key."),
+      queries: z19.string().array().optional().describe("Specifies the query values that CloudFront includes in the cache key.")
+    }).optional().describe(
+      "Specifies the cookies, headers, and query values that CloudFront includes in the cache key."
+    )
+  })
+).optional().describe(`Define the global Router. Backed by AWS CloudFront.`);
+
+// src/feature/rpc/schema.ts
+var TimeoutSchema2 = DurationSchema.refine(durationMin(seconds3(10)), "Minimum timeout duration is 10 seconds").refine(durationMax(minutes4(5)), "Maximum timeout duration is 5 minutes").describe(
   [
     "The amount of time that the RPC lambda is allowed run before stopping it.",
-    "You can specify a size value from 1 second to 5 minutes.",
+    "You can specify a timeout from 10 second to 5 minutes.",
     "The timeouts of all inner RPC functions will be capped at 80% of this timeout."
   ].join(" ")
 );
-var RpcDefaultSchema = z19.record(
+var RpcDefaultSchema = z20.record(
   ResourceIdSchema,
-  z19.object({
-    domain: ResourceIdSchema.describe("The domain id to link your RPC API with.").optional(),
-    subDomain: z19.string().optional(),
-    auth: FunctionSchema.optional(),
+  z20.object({
+    // domain: ResourceIdSchema.describe('The domain id to link your RPC API with.').optional(),
+    // subDomain: z.string().optional(),
+    //
+    router: ResourceIdSchema.describe("The router id to link your RPC API with."),
+    path: RouteSchema2.describe("The path inside the router to link your RPC API to."),
+    auth: FunctionSchema.optional().describe("The authentication handler for your RPC API."),
     log: LogSchema.optional(),
-    timeout: TimeoutSchema2.default("1 minutes"),
-    geoRestrictions: z19.array(z19.string().length(2).toUpperCase()).default([]).describe("Specifies a blacklist of countries that should be blocked.")
+    timeout: TimeoutSchema2.default("1 minutes")
   })
 ).describe(`Define the global RPC API's.`).optional();
-var PermissionsSchema2 = z19.union([
-  //
-  z19.string().transform((v) => [v]),
-  z19.string().array()
-]).default([]).describe(
-  "Specifies a list of permissions that can be used inside your custom authorizer function to determine if the user has access to this specific RPC function."
-);
-var EntrySchema = z19.union([
-  FunctionSchema.transform((props) => ({
-    function: props,
-    permissions: []
-  })),
-  z19.object({
-    function: FunctionSchema,
-    permissions: PermissionsSchema2
-  })
-]);
-var RpcSchema = z19.record(ResourceIdSchema, z19.record(z19.string(), EntrySchema).describe("The queries for your global RPC API.")).describe("Define the schema in your stack for your global RPC API.").optional();
+var RpcSchema = z20.record(ResourceIdSchema, z20.record(z20.string(), FunctionSchema).describe("The queries for your global RPC API.")).describe("Define the schema in your stack for your global RPC API.").optional();
 
 // src/feature/instance/schema.ts
-import { days as days3, toDays as toDays2 } from "@awsless/duration";
+import { days as days4, toDays as toDays2 } from "@awsless/duration";
 import { toMebibytes } from "@awsless/size";
-import { z as z20 } from "zod";
-var CpuSchema = z20.union([z20.literal(0.25), z20.literal(0.5), z20.literal(1), z20.literal(2), z20.literal(4), z20.literal(8), z20.literal(16)]).transform((v) => `${v} vCPU`).describe(
+import { z as z21 } from "zod";
+var CpuSchema = z21.union([z21.literal(0.25), z21.literal(0.5), z21.literal(1), z21.literal(2), z21.literal(4), z21.literal(8), z21.literal(16)]).transform((v) => `${v} vCPU`).describe(
   "The number of virtual CPU units (vCPU) used by the instance. Valid values: 0.25, 0.5, 1, 2, 4, 8, 16 vCPU."
 );
 var validMemorySize = [
@@ -613,10 +763,10 @@ var MemorySizeSchema2 = SizeSchema.refine(
   (s) => validMemorySize.includes(toMebibytes(s)),
   `Invalid memory size. Allowed sizes: ${validMemorySize.join(", ")} MiB`
 ).describe("The amount of memory (in MiB) used by the instance. Valid memory values depend on the CPU configuration.");
-var HealthCheckSchema = z20.object({
-  path: z20.string().describe("The path that the container runs to determine if it is healthy."),
+var HealthCheckSchema = z21.object({
+  path: z21.string().describe("The path that the container runs to determine if it is healthy."),
   interval: DurationSchema.describe("The time period in seconds between each health check execution."),
-  retries: z20.number().int().min(1).max(10).describe(
+  retries: z21.number().int().min(1).max(10).describe(
     "The number of times to retry a failed health check before the container is considered unhealthy."
   ),
   startPeriod: DurationSchema.describe(
@@ -626,53 +776,53 @@ var HealthCheckSchema = z20.object({
     "The time period in seconds to wait for a health check to succeed before it is considered a failure."
   )
 }).describe("The health check command and associated configuration parameters for the container.");
-var EnvironmentSchema2 = z20.record(z20.string(), z20.string()).optional().describe("Environment variable key-value pairs.");
-var ArchitectureSchema3 = z20.enum(["x86_64", "arm64"]).describe("The instruction set architecture that the instance supports.");
-var ActionSchema2 = z20.string();
-var ActionsSchema2 = z20.union([ActionSchema2.transform((v) => [v]), ActionSchema2.array()]);
-var ArnSchema2 = z20.string().startsWith("arn:");
-var WildcardSchema2 = z20.literal("*");
-var ResourceSchema2 = z20.union([ArnSchema2, WildcardSchema2]);
-var ResourcesSchema2 = z20.union([ResourceSchema2.transform((v) => [v]), ResourceSchema2.array()]);
-var PermissionSchema2 = z20.object({
-  effect: z20.enum(["allow", "deny"]).default("allow"),
+var EnvironmentSchema2 = z21.record(z21.string(), z21.string()).optional().describe("Environment variable key-value pairs.");
+var ArchitectureSchema3 = z21.enum(["x86_64", "arm64"]).describe("The instruction set architecture that the instance supports.");
+var ActionSchema2 = z21.string();
+var ActionsSchema2 = z21.union([ActionSchema2.transform((v) => [v]), ActionSchema2.array()]);
+var ArnSchema2 = z21.string().startsWith("arn:");
+var WildcardSchema2 = z21.literal("*");
+var ResourceSchema2 = z21.union([ArnSchema2, WildcardSchema2]);
+var ResourcesSchema2 = z21.union([ResourceSchema2.transform((v) => [v]), ResourceSchema2.array()]);
+var PermissionSchema2 = z21.object({
+  effect: z21.enum(["allow", "deny"]).default("allow"),
   actions: ActionsSchema2,
   resources: ResourcesSchema2
 });
-var PermissionsSchema3 = z20.union([PermissionSchema2.transform((v) => [v]), PermissionSchema2.array()]).describe("Add IAM permissions to your instance.");
-var DescriptionSchema2 = z20.string().describe("A description of the instance.");
-var ImageSchema = z20.string().optional().describe("The URL of the container image to use.");
+var PermissionsSchema2 = z21.union([PermissionSchema2.transform((v) => [v]), PermissionSchema2.array()]).describe("Add IAM permissions to your instance.");
+var DescriptionSchema2 = z21.string().describe("A description of the instance.");
+var ImageSchema = z21.string().optional().describe("The URL of the container image to use.");
 var validLogRetentionDays2 = [
   ...[1, 3, 5, 7, 14, 30, 60, 90, 120, 150],
   ...[180, 365, 400, 545, 731, 1096, 1827, 2192],
   ...[2557, 2922, 3288, 3653]
 ];
 var LogRetentionSchema2 = DurationSchema.refine(
-  durationMin(days3(0)),
+  durationMin(days4(0)),
   "Minimum log retention is 0 day, which will disable logging."
 ).refine(
   (duration) => {
     return validLogRetentionDays2.includes(toDays2(duration));
   },
-  `Invalid log retention. Valid days are: ${validLogRetentionDays2.map((days4) => `${days4}`).join(", ")}`
+  `Invalid log retention. Valid days are: ${validLogRetentionDays2.map((days5) => `${days5}`).join(", ")}`
 ).describe("The log retention duration.");
-var LogSchema2 = z20.union([
-  z20.boolean().transform((enabled) => ({ retention: enabled ? days3(7) : days3(0) })),
+var LogSchema2 = z21.union([
+  z21.boolean().transform((enabled) => ({ retention: enabled ? days4(7) : days4(0) })),
   LogRetentionSchema2.transform((retention) => ({ retention })),
-  z20.object({
+  z21.object({
     retention: LogRetentionSchema2.optional()
   })
 ]).describe("Enable logging to a CloudWatch log group. Providing a duration value will set the log retention time.");
-var FileCodeSchema2 = z20.object({
+var FileCodeSchema2 = z21.object({
   file: LocalFileSchema.describe("The file path of the instance code.")
 });
-var CodeSchema2 = z20.union([
+var CodeSchema2 = z21.union([
   LocalFileSchema.transform((file) => ({
     file
   })).pipe(FileCodeSchema2),
   FileCodeSchema2
 ]).describe("Specify the code of your instance.");
-var ISchema = z20.object({
+var ISchema = z21.object({
   code: CodeSchema2,
   description: DescriptionSchema2.optional(),
   image: ImageSchema.optional(),
@@ -681,42 +831,42 @@ var ISchema = z20.object({
   memorySize: MemorySizeSchema2.optional(),
   architecture: ArchitectureSchema3.optional(),
   environment: EnvironmentSchema2.optional(),
-  permissions: PermissionsSchema3.optional(),
+  permissions: PermissionsSchema2.optional(),
   healthCheck: HealthCheckSchema.optional()
   // restartPolicy: RestartPolicySchema.optional(),
 });
-var InstanceSchema = z20.union([
+var InstanceSchema = z21.union([
   LocalFileSchema.transform((code) => ({
     code
   })).pipe(ISchema),
   ISchema
 ]);
-var InstancesSchema = z20.record(ResourceIdSchema, InstanceSchema).optional().describe("Define the instances in your stack.");
-var InstanceDefaultSchema = z20.object({
+var InstancesSchema = z21.record(ResourceIdSchema, InstanceSchema).optional().describe("Define the instances in your stack.");
+var InstanceDefaultSchema = z21.object({
   image: ImageSchema.optional(),
   cpu: CpuSchema.default(0.25),
   memorySize: MemorySizeSchema2.default("512 MB"),
   architecture: ArchitectureSchema3.default("arm64"),
   environment: EnvironmentSchema2.optional(),
-  permissions: PermissionsSchema3.optional(),
+  permissions: PermissionsSchema2.optional(),
   healthCheck: HealthCheckSchema.optional(),
   // restartPolicy: RestartPolicySchema.default({ enabled: true }),
   log: LogSchema2.default(true).transform((log) => ({
-    retention: log.retention ?? days3(7)
+    retention: log.retention ?? days4(7)
   }))
 }).default({});
 
 // src/feature/topic/schema.ts
 import { kebabCase as kebabCase3 } from "change-case";
-import { z as z21 } from "zod";
-var TopicNameSchema = z21.string().min(3).max(256).regex(/^[a-z0-9\-]+$/i, "Invalid topic name").transform((value) => kebabCase3(value)).describe("Define event topic name.");
-var TopicsDefaultSchema = z21.array(TopicNameSchema).refine((topics) => {
+import { z as z22 } from "zod";
+var TopicNameSchema = z22.string().min(3).max(256).regex(/^[a-z0-9\-]+$/i, "Invalid topic name").transform((value) => kebabCase3(value)).describe("Define event topic name.");
+var TopicsDefaultSchema = z22.array(TopicNameSchema).refine((topics) => {
   return topics.length === new Set(topics).size;
 }, "Must be a list of unique topic names").optional().describe("Define the event topics for your app.");
-var SubscribersSchema = z21.record(TopicNameSchema, FunctionSchema).optional().describe("Define the event topics to subscribe too in your stack.");
+var SubscribersSchema = z22.record(TopicNameSchema, FunctionSchema).optional().describe("Define the event topics to subscribe too in your stack.");
 
 // src/config/schema/region.ts
-import { z as z22 } from "zod";
+import { z as z23 } from "zod";
 var US = ["us-east-2", "us-east-1", "us-west-1", "us-west-2"];
 var AF = ["af-south-1"];
 var AP = [
@@ -745,16 +895,16 @@ var EU = [
 var ME = ["me-south-1", "me-central-1"];
 var SA = ["sa-east-1"];
 var regions = [...US, ...AF, ...AP, ...CA, ...EU, ...ME, ...SA];
-var RegionSchema = z22.enum(regions);
+var RegionSchema = z23.enum(regions);
 
 // src/config/app.ts
-var AppSchema = z23.object({
-  $schema: z23.string().optional(),
+var AppSchema = z24.object({
+  $schema: z24.string().optional(),
   name: ResourceIdSchema.describe("App name."),
   region: RegionSchema.describe("The AWS region to deploy to."),
-  profile: z23.string().describe("The AWS profile to deploy to."),
-  protect: z23.boolean().default(false).describe("Protect your app & stacks from being deleted."),
-  removal: z23.enum(["remove", "retain"]).default("remove").describe(
+  profile: z24.string().describe("The AWS profile to deploy to."),
+  protect: z24.boolean().default(false).describe("Protect your app & stacks from being deleted."),
+  removal: z24.enum(["remove", "retain"]).default("remove").describe(
     [
       "Configure how your resources are handled when they have to be removed.",
       "",
@@ -768,7 +918,7 @@ var AppSchema = z23.object({
   // 	.default('prod')
   // 	.describe('The deployment stage.'),
   // onFailure: OnFailureSchema,
-  defaults: z23.object({
+  defaults: z24.object({
     onFailure: OnFailureDefaultSchema,
     onLog: OnLogDefaultSchema,
     auth: AuthDefaultSchema,
@@ -785,17 +935,18 @@ var AppSchema = z23.object({
     // store: StoreDefaultSchema,
     alerts: AlertsDefaultSchema,
     topics: TopicsDefaultSchema,
-    layers: LayerSchema
+    layers: LayerSchema,
+    router: RouterDefaultSchema
     // dataRetention: z.boolean().describe('Configure how your resources are handled on delete.').default(false),
   }).default({}).describe("Default properties")
 });
 
 // src/config/stack.ts
-import { z as z39 } from "zod";
+import { z as z40 } from "zod";
 
 // src/feature/cache/schema.ts
 import { gibibytes as gibibytes2 } from "@awsless/size";
-import { z as z24 } from "zod";
+import { z as z25 } from "zod";
 var StorageSchema = SizeSchema.refine(sizeMin(gibibytes2(1)), "Minimum storage size is 1 GB").refine(
   sizeMax(gibibytes2(5e3)),
   "Maximum storage size is 5000 GB"
@@ -806,31 +957,31 @@ var MinimumStorageSchema = StorageSchema.describe(
 var MaximumStorageSchema = StorageSchema.describe(
   "The upper limit for data storage the cache is set to use. You can specify a size value from 1 GB to 5000 GB."
 );
-var EcpuSchema = z24.number().int().min(1e3).max(15e6);
+var EcpuSchema = z25.number().int().min(1e3).max(15e6);
 var MinimumEcpuSchema = EcpuSchema.describe(
   "The minimum number of ECPUs the cache can consume per second. You can specify a integer from 1,000 to 15,000,000."
 );
 var MaximumEcpuSchema = EcpuSchema.describe(
   "The maximum number of ECPUs the cache can consume per second. You can specify a integer from 1,000 to 15,000,000."
 );
-var CachesSchema = z24.record(
+var CachesSchema = z25.record(
   ResourceIdSchema,
-  z24.object({
+  z25.object({
     minStorage: MinimumStorageSchema.optional(),
     maxStorage: MaximumStorageSchema.optional(),
     minECPU: MinimumEcpuSchema.optional(),
     maxECPU: MaximumEcpuSchema.optional(),
-    snapshotRetentionLimit: z24.number().int().positive().default(1)
+    snapshotRetentionLimit: z25.number().int().positive().default(1)
   })
 ).optional().describe("Define the caches in your stack. For access to the cache put your functions inside the global VPC.");
 
 // src/feature/command/schema.ts
-import { z as z25 } from "zod";
-var CommandSchema = z25.union([
-  z25.object({
+import { z as z26 } from "zod";
+var CommandSchema = z26.union([
+  z26.object({
     file: LocalFileSchema,
-    handler: z25.string().default("default").describe("The name of the handler that needs to run"),
-    description: z25.string().optional().describe("A description of the command")
+    handler: z26.string().default("default").describe("The name of the handler that needs to run"),
+    description: z26.string().optional().describe("A description of the command")
     // options: z.record(ResourceIdSchema, OptionSchema).optional(),
     // arguments: z.record(ResourceIdSchema, ArgumentSchema).optional(),
   }),
@@ -840,22 +991,22 @@ var CommandSchema = z25.union([
     description: void 0
   }))
 ]);
-var CommandsSchema = z25.record(ResourceIdSchema, CommandSchema).optional().describe("Define the custom commands for your stack.");
+var CommandsSchema = z26.record(ResourceIdSchema, CommandSchema).optional().describe("Define the custom commands for your stack.");
 
 // src/feature/config/schema.ts
-import { z as z26 } from "zod";
-var ConfigNameSchema = z26.string().regex(/[a-z0-9\-]/g, "Invalid config name");
-var ConfigsSchema = z26.array(ConfigNameSchema).optional().describe("Define the config values for your stack.");
+import { z as z27 } from "zod";
+var ConfigNameSchema = z27.string().regex(/[a-z0-9\-]/g, "Invalid config name");
+var ConfigsSchema = z27.array(ConfigNameSchema).optional().describe("Define the config values for your stack.");
 
 // src/feature/cron/schema/index.ts
-import { z as z28 } from "zod";
+import { z as z29 } from "zod";
 
 // src/feature/cron/schema/schedule.ts
-import { z as z27 } from "zod";
+import { z as z28 } from "zod";
 import { awsCronExpressionValidator } from "aws-cron-expression-validator";
-var RateExpressionSchema = z27.custom(
+var RateExpressionSchema = z28.custom(
   (value) => {
-    return z27.string().regex(/^[0-9]+ (seconds?|minutes?|hours?|days?)$/).refine((rate) => {
+    return z28.string().regex(/^[0-9]+ (seconds?|minutes?|hours?|days?)$/).refine((rate) => {
       const [str] = rate.split(" ");
       const number = parseInt(str);
       return number > 0;
@@ -871,9 +1022,9 @@ var RateExpressionSchema = z27.custom(
   }
   return `rate(${rate})`;
 });
-var CronExpressionSchema = z27.custom(
+var CronExpressionSchema = z28.custom(
   (value) => {
-    return z27.string().safeParse(value).success;
+    return z28.string().safeParse(value).success;
   },
   { message: "Invalid cron expression" }
 ).superRefine((value, ctx) => {
@@ -882,12 +1033,12 @@ var CronExpressionSchema = z27.custom(
   } catch (error) {
     if (error instanceof Error) {
       ctx.addIssue({
-        code: z27.ZodIssueCode.custom,
+        code: z28.ZodIssueCode.custom,
         message: `Invalid cron expression: ${error.message}`
       });
     } else {
       ctx.addIssue({
-        code: z27.ZodIssueCode.custom,
+        code: z28.ZodIssueCode.custom,
         message: "Invalid cron expression"
       });
     }
@@ -898,28 +1049,28 @@ var CronExpressionSchema = z27.custom(
 var ScheduleExpressionSchema = RateExpressionSchema.or(CronExpressionSchema);
 
 // src/feature/cron/schema/index.ts
-var CronsSchema = z28.record(
+var CronsSchema = z29.record(
   ResourceIdSchema,
-  z28.object({
-    enabled: z28.boolean().default(true).describe("If the cron is enabled."),
+  z29.object({
+    enabled: z29.boolean().default(true).describe("If the cron is enabled."),
     consumer: FunctionSchema.describe("The consuming lambda function properties."),
     schedule: ScheduleExpressionSchema.describe(
       'The scheduling expression.\n\nexample: "0 20 * * ? *"\nexample: "5 minutes"'
     ),
-    payload: z28.unknown().optional().describe("The JSON payload that will be passed to the consumer.")
+    payload: z29.unknown().optional().describe("The JSON payload that will be passed to the consumer.")
   })
 ).optional().describe(`Define the cron jobs in your stack.`);
 
 // src/feature/search/schema.ts
 import { gibibytes as gibibytes3 } from "@awsless/size";
-import { z as z29 } from "zod";
-var VersionSchema = z29.union([
+import { z as z30 } from "zod";
+var VersionSchema = z30.union([
   //
-  z29.enum(["2.13", "2.11", "2.9", "2.7", "2.5", "2.3", "1.3"]),
-  z29.string()
+  z30.enum(["2.13", "2.11", "2.9", "2.7", "2.5", "2.3", "1.3"]),
+  z30.string()
 ]).describe("Specify the OpenSearch engine version.");
-var TypeSchema = z29.union([
-  z29.enum([
+var TypeSchema = z30.union([
+  z30.enum([
     "t3.small",
     "t3.medium",
     "m3.medium",
@@ -993,13 +1144,13 @@ var TypeSchema = z29.union([
     "r6gd.12xlarge",
     "r6gd.16xlarge"
   ]),
-  z29.string()
+  z30.string()
 ]).describe("Instance type of data nodes in the cluster.");
-var CountSchema = z29.number().int().min(1).describe("Number of instances in the cluster.");
+var CountSchema = z30.number().int().min(1).describe("Number of instances in the cluster.");
 var StorageSizeSchema = SizeSchema.refine(sizeMin(gibibytes3(10)), "Minimum storage size is 10 GB").refine(sizeMax(gibibytes3(100)), "Maximum storage size is 100 GB").describe("The size of the function's /tmp directory. You can specify a size value from 512 MB to 10 GiB.");
-var SearchsSchema = z29.record(
+var SearchsSchema = z30.record(
   ResourceIdSchema,
-  z29.object({
+  z30.object({
     type: TypeSchema.default("t3.small"),
     count: CountSchema.default(1),
     version: VersionSchema.default("2.13"),
@@ -1010,12 +1161,12 @@ var SearchsSchema = z29.record(
 ).optional().describe("Define the search instances in your stack. Backed by OpenSearch.");
 
 // src/feature/site/schema.ts
-import { z as z31 } from "zod";
+import { z as z32 } from "zod";
 
 // src/config/schema/local-entry.ts
 import { stat as stat3 } from "fs/promises";
-import { z as z30 } from "zod";
-var LocalEntrySchema = z30.union([
+import { z as z31 } from "zod";
+var LocalEntrySchema = z31.union([
   RelativePathSchema.refine(async (path) => {
     try {
       const s = await stat3(path);
@@ -1024,7 +1175,7 @@ var LocalEntrySchema = z30.union([
       return false;
     }
   }, `File or directory doesn't exist`),
-  z30.object({
+  z31.object({
     nocheck: RelativePathSchema.describe(
       "Specifies a local file or directory without checking if the file or directory exists."
     )
@@ -1032,182 +1183,43 @@ var LocalEntrySchema = z30.union([
 ]);
 
 // src/feature/site/schema.ts
-var ErrorResponsePathSchema = z31.string().describe(
-  [
-    "The path to the custom error page that you want to return to the viewer when your origin returns the HTTP status code specified.",
-    "- We recommend that you store custom error pages in an Amazon S3 bucket.",
-    "If you store custom error pages on an HTTP server and the server starts to return 5xx errors, CloudFront can't get the files that you want to return to viewers because the origin server is unavailable."
-  ].join("\n")
-);
-var StatusCodeSchema = z31.number().int().positive().optional().describe(
-  [
-    "The HTTP status code that you want CloudFront to return to the viewer along with the custom error page.",
-    "There are a variety of reasons that you might want CloudFront to return a status code different from the status code that your origin returned to CloudFront, for example:",
-    "- Some Internet devices (some firewalls and corporate proxies, for example) intercept HTTP 4xx and 5xx and prevent the response from being returned to the viewer.",
-    "If you substitute 200, the response typically won't be intercepted.",
-    `- If you don't care about distinguishing among different client errors or server errors, you can specify 400 or 500 as the ResponseCode for all 4xx or 5xx errors.`,
-    `- You might want to return a 200 status code (OK) and static website so your customers don't know that your website is down.`
-  ].join("\n")
-);
-var MinTTLSchema = DurationSchema.describe(
-  "The minimum amount of time, that you want to cache the error response. When this time period has elapsed, CloudFront queries your origin to see whether the problem that caused the error has been resolved and the requested object is now available."
-);
-var ErrorResponseSchema = z31.union([
-  ErrorResponsePathSchema,
-  z31.object({
-    path: ErrorResponsePathSchema,
-    statusCode: StatusCodeSchema.optional(),
-    minTTL: MinTTLSchema.optional()
-  })
-]).optional();
-var SitesSchema = z31.record(
+var SitesSchema = z32.record(
   ResourceIdSchema,
-  z31.object({
-    domain: ResourceIdSchema.describe("The domain id to link your site with.").optional(),
-    subDomain: z31.string().optional(),
-    // bind: z
-    // 	.object({
-    // 		auth: z.array(ResourceIdSchema),
-    // 		graphql: z.array(ResourceIdSchema),
-    // 		// http: z.array(ResourceIdSchema),
-    // 		// rest: z.array(ResourceIdSchema),
-    // 	})
-    // 	.optional(),
-    build: z31.object({
-      command: z31.string().describe(
+  z32.object({
+    router: ResourceIdSchema.describe("The router id to link your site with."),
+    path: RouteSchema2.describe("The path inside the router to link your site to."),
+    build: z32.object({
+      command: z32.string().describe(
         `Specifies the files and directories to generate the cache key for your custom build command.`
       ),
-      cacheKey: z31.union([LocalEntrySchema.transform((v) => [v]), LocalEntrySchema.array()]).describe(
+      cacheKey: z32.union([LocalEntrySchema.transform((v) => [v]), LocalEntrySchema.array()]).describe(
         `Specifies the files and directories to generate the cache key for your custom build command.`
       ),
-      configs: z31.string().array().optional().describe("Define the config values for your build command.")
+      configs: z32.string().array().optional().describe("Define the config values for your build command.")
     }).optional().describe(`Specifies the build process for sites that need a build step.`),
-    static: z31.union([LocalDirectorySchema, z31.boolean()]).optional().describe(
+    static: z32.union([LocalDirectorySchema, z32.boolean()]).optional().describe(
       "Specifies the path to the static files directory. Additionally you can also pass `true` when you don't have local static files, but still want to make an S3 bucket."
     ),
-    ssr: FunctionSchema.optional().describe("Specifies the file that will render the site on the server."),
-    // envPrefix: z.string().optional().describe('Specifies a prefix for all '),
-    // origin: z
-    // 	.enum(['ssr-first', 'static-first'])
-    // 	.default('static-first')
-    // 	.describe('Specifies the origin fallback ordering.'),
-    // bind: z.object({
-    // 	auth:
-    // 	h
-    // }).optional(),
-    // ssr: z.union([
-    // 	FunctionSchema.optional(),
-    // 	z.object({
-    // 		consumer: FunctionSchema.optional(),
-    // 		responseStreaming: z.boolean().default(false),
-    // 		build: z.string().optional(),
-    // 	}),
-    // ]),
-    geoRestrictions: z31.array(z31.string().length(2).toUpperCase()).default([]).describe("Specifies a blacklist of countries that should be blocked."),
-    // forwardHost: z
-    // 	.boolean()
-    // 	.default(false)
-    // 	.describe(
-    // 		[
-    // 			'Specify if the original `host` header should be forwarded to the SSR function.',
-    // 			'The original `host` header will be forwarded as `x-forwarded-host`.',
-    // 			'Keep in mind that this requires an extra CloudFront Function.',
-    // 		].join('\n')
-    // 	),
-    errors: z31.object({
-      400: ErrorResponseSchema.describe("Customize a `400 Bad Request` response."),
-      403: ErrorResponseSchema.describe("Customize a `403 Forbidden` response."),
-      404: ErrorResponseSchema.describe("Customize a `404 Not Found` response."),
-      405: ErrorResponseSchema.describe("Customize a `405 Method Not Allowed` response."),
-      414: ErrorResponseSchema.describe("Customize a `414 Request-URI` response."),
-      416: ErrorResponseSchema.describe("Customize a `416 Range Not` response."),
-      500: ErrorResponseSchema.describe("Customize a `500 Internal Server` response."),
-      501: ErrorResponseSchema.describe("Customize a `501 Not Implemented` response."),
-      502: ErrorResponseSchema.describe("Customize a `502 Bad Gateway` response."),
-      503: ErrorResponseSchema.describe("Customize a `503 Service Unavailable` response."),
-      504: ErrorResponseSchema.describe("Customize a `504 Gateway Timeout` response.")
-    }).optional().describe("Customize the error responses for specific HTTP status codes."),
-    cors: z31.object({
-      override: z31.boolean().default(false),
-      maxAge: DurationSchema.default("365 days"),
-      exposeHeaders: z31.string().array().optional(),
-      credentials: z31.boolean().default(false),
-      headers: z31.string().array().default(["*"]),
-      origins: z31.string().array().default(["*"]),
-      methods: z31.enum(["GET", "DELETE", "HEAD", "OPTIONS", "PATCH", "POST", "PUT", "ALL"]).array().default(["ALL"])
-    }).optional().describe("Specify the cors headers."),
-    basicAuth: z31.object({
-      username: z31.string().describe("Basic auth username."),
-      password: z31.string().describe("Basic auth password.")
-    }).optional().describe("Enable basic authentication for the site."),
-    security: z31.object({
-      // contentSecurityPolicy: z.object({
-      // 	override: z.boolean().default(false),
-      // 	policy: z.string(),
-      // })
-      // contentSecurityPolicy?: {
-      // 	override?: boolean
-      // 	contentSecurityPolicy: string
-      // }
-      // contentTypeOptions?: {
-      // 	override?: boolean
-      // }
-      // frameOptions?: {
-      // 	override?: boolean
-      // 	frameOption?: 'deny' | 'same-origin'
-      // }
-      // referrerPolicy?: {
-      // 	override?: boolean
-      // 	referrerPolicy?: (
-      // 		'no-referrer' |
-      // 		'no-referrer-when-downgrade' |
-      // 		'origin' |
-      // 		'origin-when-cross-origin' |
-      // 		'same-origin' |
-      // 		'strict-origin' |
-      // 		'strict-origin-when-cross-origin' |
-      // 		'unsafe-url'
-      // 	)
-      // }
-      // strictTransportSecurity?: {
-      // 	maxAge?: Duration
-      // 	includeSubdomains?: boolean
-      // 	override?: boolean
-      // 	preload?: boolean
-      // }
-      // xssProtection?: {
-      // 	override?: boolean
-      // 	enable?: boolean
-      // 	modeBlock?: boolean
-      // 	reportUri?: string
-      // }
-    }).optional().describe("Specify the security policy."),
-    cache: z31.object({
-      cookies: z31.string().array().optional().describe("Specifies the cookies that CloudFront includes in the cache key."),
-      headers: z31.string().array().optional().describe("Specifies the headers that CloudFront includes in the cache key."),
-      queries: z31.string().array().optional().describe("Specifies the query values that CloudFront includes in the cache key.")
-    }).optional().describe(
-      "Specifies the cookies, headers, and query values that CloudFront includes in the cache key."
-    )
+    ssr: FunctionSchema.optional().describe("Specifies the file that will render the site on the server.")
   })
 ).optional().describe("Define the sites in your stack.");
 
 // src/feature/store/schema.ts
-import { z as z32 } from "zod";
-var StoresSchema = z32.union([
-  z32.array(ResourceIdSchema).transform((list) => {
+import { z as z33 } from "zod";
+var StoresSchema = z33.union([
+  z33.array(ResourceIdSchema).transform((list) => {
     const stores = {};
     for (const key of list) {
       stores[key] = {};
     }
     return stores;
   }),
-  z32.record(
+  z33.record(
     ResourceIdSchema,
-    z32.object({
+    z33.object({
       static: LocalDirectorySchema.optional().describe("Specifies the path to the static files directory."),
-      versioning: z32.boolean().default(false).describe("Enable versioning of your store."),
-      events: z32.object({
+      versioning: z33.boolean().default(false).describe("Enable versioning of your store."),
+      events: z33.object({
         // create
         "created:*": FunctionSchema.optional().describe(
           "Subscribe to notifications regardless of the API that was used to create an object."
@@ -1240,28 +1252,30 @@ var StoresSchema = z32.union([
 ]).optional().describe("Define the stores in your stack.");
 
 // src/feature/icon/schema.ts
-import { z as z33 } from "zod";
+import { z as z34 } from "zod";
 var staticOriginSchema = LocalDirectorySchema.describe(
   "Specifies the path to a local image directory that will be uploaded in S3."
 );
 var functionOriginSchema = FunctionSchema.describe(
   "Specifies the file that will be called when an image isn't found in the (cache) bucket."
 );
-var IconsSchema = z33.record(
+var IconsSchema = z34.record(
   ResourceIdSchema,
-  z33.object({
-    domain: ResourceIdSchema.describe("The domain id to link your site with.").optional(),
-    subDomain: z33.string().optional(),
+  z34.object({
+    // domain: ResourceIdSchema.describe('The domain id to link your site with.').optional(),
+    // subDomain: z.string().optional(),
+    router: ResourceIdSchema.describe("The router id to link your icon proxy."),
+    path: RouteSchema2.describe("The path inside the router to link your icon proxy to."),
     log: LogSchema.optional(),
     cacheDuration: DurationSchema.optional().describe("The cache duration of the cached icons."),
-    preserveIds: z33.boolean().optional().default(false).describe("Preserve the IDs of the icons."),
-    symbols: z33.boolean().optional().default(false).describe(`Convert the SVG's to SVG symbols.`),
-    origin: z33.union([
-      z33.object({
+    preserveIds: z34.boolean().optional().default(false).describe("Preserve the IDs of the icons."),
+    symbols: z34.boolean().optional().default(false).describe(`Convert the SVG's to SVG symbols.`),
+    origin: z34.union([
+      z34.object({
         static: staticOriginSchema,
         function: functionOriginSchema.optional()
       }),
-      z33.object({
+      z34.object({
         static: staticOriginSchema.optional(),
         function: functionOriginSchema
       })
@@ -1271,27 +1285,30 @@ var IconsSchema = z33.record(
       // }),
     ]).describe(
       "Image transformation will be applied from a base image. Base images orginates from a local directory that will be uploaded to S3 or from a lambda function."
-    ),
-    cors: z33.object({
-      override: z33.boolean().default(true),
-      maxAge: DurationSchema.default("365 days"),
-      exposeHeaders: z33.string().array().optional(),
-      credentials: z33.boolean().default(false),
-      headers: z33.string().array().default(["*"]),
-      origins: z33.string().array().default(["*"])
-    }).optional().describe("Specify the cors headers.")
+    )
+    // cors: z
+    // 	.object({
+    // 		override: z.boolean().default(true),
+    // 		maxAge: DurationSchema.default('365 days'),
+    // 		exposeHeaders: z.string().array().optional(),
+    // 		credentials: z.boolean().default(false),
+    // 		headers: z.string().array().default(['*']),
+    // 		origins: z.string().array().default(['*']),
+    // 	})
+    // 	.optional()
+    // 	.describe('Specify the cors headers.'),
     // version: z.number().int().min(1).optional().describe('Version of the icon configuration.'),
   })
-).optional().describe("Define an icon proxy in your stack. Store, optimize, and deliver icons at scale.");
+).optional().describe("Define an svg icon proxy in your stack. Store, optimize, and deliver svg icons at scale.");
 
 // src/feature/image/schema.ts
-import { z as z34 } from "zod";
-var transformationOptionsSchema = z34.object({
-  width: z34.number().int().positive().optional(),
-  height: z34.number().int().positive().optional(),
-  fit: z34.enum(["cover", "contain", "fill", "inside", "outside"]).optional(),
-  position: z34.enum(["top", "right top", "right", "right bottom", "bottom", "left bottom", "left", "left top", "center"]).optional(),
-  quality: z34.number().int().min(1).max(100).optional()
+import { z as z35 } from "zod";
+var transformationOptionsSchema = z35.object({
+  width: z35.number().int().positive().optional(),
+  height: z35.number().int().positive().optional(),
+  fit: z35.enum(["cover", "contain", "fill", "inside", "outside"]).optional(),
+  position: z35.enum(["top", "right top", "right", "right bottom", "bottom", "left bottom", "left", "left top", "center"]).optional(),
+  quality: z35.number().int().min(1).max(100).optional()
 });
 var staticOriginSchema2 = LocalDirectorySchema.describe(
   "Specifies the path to a local image directory that will be uploaded in S3."
@@ -1299,36 +1316,38 @@ var staticOriginSchema2 = LocalDirectorySchema.describe(
 var functionOriginSchema2 = FunctionSchema.describe(
   "Specifies the file that will be called when an image isn't found in the (cache) bucket."
 );
-var ImagesSchema = z34.record(
+var ImagesSchema = z35.record(
   ResourceIdSchema,
-  z34.object({
-    domain: ResourceIdSchema.describe("The domain id to link your site with.").optional(),
-    subDomain: z34.string().optional(),
+  z35.object({
+    // domain: ResourceIdSchema.describe('The domain id to link your site with.').optional(),
+    // subDomain: z.string().optional(),
+    router: ResourceIdSchema.describe("The router id to link your image proxy."),
+    path: RouteSchema2.describe("The path inside the router to link your image proxy to."),
     log: LogSchema.optional(),
     cacheDuration: DurationSchema.optional().describe("Cache duration of the cached images."),
-    presets: z34.record(z34.string(), transformationOptionsSchema).describe("Named presets for image transformations"),
-    extensions: z34.object({
-      jpeg: z34.object({
-        mozjpeg: z34.boolean().optional(),
-        progressive: z34.boolean().optional()
+    presets: z35.record(z35.string(), transformationOptionsSchema).describe("Named presets for image transformations"),
+    extensions: z35.object({
+      jpg: z35.object({
+        mozjpeg: z35.boolean().optional(),
+        progressive: z35.boolean().optional()
       }).optional(),
-      webp: z34.object({
-        effort: z34.number().int().min(1).max(10).default(7).optional(),
-        lossless: z34.boolean().optional(),
-        nearLossless: z34.boolean().optional()
+      webp: z35.object({
+        effort: z35.number().int().min(1).max(10).default(7).optional(),
+        lossless: z35.boolean().optional(),
+        nearLossless: z35.boolean().optional()
       }).optional(),
-      png: z34.object({
-        compressionLevel: z34.number().int().min(0).max(9).default(6).optional()
+      png: z35.object({
+        compressionLevel: z35.number().int().min(0).max(9).default(6).optional()
       }).optional()
     }).refine((data) => {
       return Object.keys(data).length > 0;
     }, "At least one extension must be defined.").describe("Specify the allowed extensions."),
-    origin: z34.union([
-      z34.object({
+    origin: z35.union([
+      z35.object({
         static: staticOriginSchema2,
         function: functionOriginSchema2.optional()
       }),
-      z34.object({
+      z35.object({
         static: staticOriginSchema2.optional(),
         function: functionOriginSchema2
       })
@@ -1338,13 +1357,12 @@ var ImagesSchema = z34.record(
       // }),
     ]).describe(
       "Specify the origin of your images. Image transformation will be applied from a base image. Base images can be loaded from a S3 bucket (that is synced from a local directory) or dynamicly from a lambda function."
-    ),
-    version: z34.number().int().min(1).optional().describe("Version of the image configuration.")
+    )
   })
 ).optional().describe("Define an image proxy in your stack. Store, transform, optimize, and deliver images at scale.");
 
 // src/feature/metric/schema.ts
-import { z as z35 } from "zod";
+import { z as z36 } from "zod";
 var ops = {
   ">": "GreaterThanThreshold",
   ">=": "GreaterThanOrEqualToThreshold",
@@ -1358,15 +1376,15 @@ var stats = {
   min: "Minimum",
   max: "Maximum"
 };
-var WhereSchema = z35.union([
-  z35.string().regex(/(count|avg|sum|min|max) (>|>=|<|<=) (\d)/, "Invalid where query").transform((where) => {
+var WhereSchema = z36.union([
+  z36.string().regex(/(count|avg|sum|min|max) (>|>=|<|<=) (\d)/, "Invalid where query").transform((where) => {
     const [stat4, op, value] = where.split(" ");
     return { stat: stat4, op, value: parseFloat(value) };
   }),
-  z35.object({
-    stat: z35.enum(["count", "avg", "sum", "min", "max"]),
-    op: z35.enum([">", ">=", "<", "<="]),
-    value: z35.number()
+  z36.object({
+    stat: z36.enum(["count", "avg", "sum", "min", "max"]),
+    op: z36.enum([">", ">=", "<", "<="]),
+    value: z36.number()
   })
 ]).transform((where) => {
   return {
@@ -1375,39 +1393,39 @@ var WhereSchema = z35.union([
     value: where.value
   };
 });
-var AlarmSchema = z35.object({
-  description: z35.string().optional(),
+var AlarmSchema = z36.object({
+  description: z36.string().optional(),
   where: WhereSchema,
   period: DurationSchema,
-  minDataPoints: z35.number().int().default(1),
-  trigger: z35.union([EmailSchema.transform((v) => [v]), EmailSchema.array(), FunctionSchema])
+  minDataPoints: z36.number().int().default(1),
+  trigger: z36.union([EmailSchema.transform((v) => [v]), EmailSchema.array(), FunctionSchema])
 });
-var MetricsSchema = z35.record(
+var MetricsSchema = z36.record(
   ResourceIdSchema,
-  z35.object({
-    type: z35.enum(["number", "size", "duration"]),
+  z36.object({
+    type: z36.enum(["number", "size", "duration"]),
     alarms: AlarmSchema.array().optional()
   })
 ).optional().describe("Define the metrics in your stack.");
 
 // src/feature/table/schema.ts
-import { minutes as minutes4, seconds as seconds4 } from "@awsless/duration";
-import { z as z36 } from "zod";
-var KeySchema = z36.string().min(1).max(255);
-var TablesSchema = z36.record(
+import { minutes as minutes5, seconds as seconds4 } from "@awsless/duration";
+import { z as z37 } from "zod";
+var KeySchema = z37.string().min(1).max(255);
+var TablesSchema = z37.record(
   ResourceIdSchema,
-  z36.object({
+  z37.object({
     hash: KeySchema.describe(
       "Specifies the name of the partition / hash key that makes up the primary key for the table."
     ),
     sort: KeySchema.optional().describe(
       "Specifies the name of the range / sort key that makes up the primary key for the table."
     ),
-    fields: z36.record(z36.string(), z36.enum(["string", "number", "binary"])).optional().describe(
+    fields: z37.record(z37.string(), z37.enum(["string", "number", "binary"])).optional().describe(
       'A list of attributes that describe the key schema for the table and indexes. If no attribute field is defined we default to "string".'
     ),
-    class: z36.enum(["standard", "standard-infrequent-access"]).default("standard").describe("The table class of the table."),
-    pointInTimeRecovery: z36.boolean().default(false).describe("Indicates whether point in time recovery is enabled on the table."),
+    class: z37.enum(["standard", "standard-infrequent-access"]).default("standard").describe("The table class of the table."),
+    pointInTimeRecovery: z37.boolean().default(false).describe("Indicates whether point in time recovery is enabled on the table."),
     ttl: KeySchema.optional().describe(
       [
         "The name of the TTL attribute used to store the expiration time for items in the table.",
@@ -1415,8 +1433,8 @@ var TablesSchema = z36.record(
       ].join("\n")
     ),
     // deletionProtection: DeletionProtectionSchema.optional(),
-    stream: z36.object({
-      type: z36.enum(["keys-only", "new-image", "old-image", "new-and-old-images"]).describe(
+    stream: z37.object({
+      type: z37.enum(["keys-only", "new-image", "old-image", "new-and-old-images"]).describe(
         [
           "When an item in the table is modified, you can determines what information is written to the stream for this table.",
           "Valid values are:",
@@ -1426,7 +1444,7 @@ var TablesSchema = z36.record(
           "- new-and-old-images - Both the new and the old item images of the item are written to the stream."
         ].join("\n")
       ),
-      batchSize: z36.number().min(1).max(1e4).default(1).describe(
+      batchSize: z37.number().min(1).max(1e4).default(1).describe(
         [
           "The maximum number of records in each batch that Lambda pulls from your stream and sends to your function.",
           "Lambda passes all of the records in the batch to the function in a single call, up to the payload limit for synchronous invocation (6 MB).",
@@ -1436,7 +1454,7 @@ var TablesSchema = z36.record(
       batchWindow: DurationSchema.refine(
         durationMin(seconds4(1)),
         "Minimum batch window duration is 1 second"
-      ).refine(durationMax(minutes4(5)), "Maximum batch window duration is 5 minutes").optional().describe(
+      ).refine(durationMax(minutes5(5)), "Maximum batch window duration is 5 minutes").optional().describe(
         [
           "The maximum amount of time that is spend gathering records before invoking the function.",
           "You can specify a duration from 1 seconds to 5 minutes."
@@ -1456,7 +1474,7 @@ var TablesSchema = z36.record(
       // 			'You can specify a number from -1 to 10000.',
       // 		].join('\n')
       // 	),
-      retryAttempts: z36.number().min(-1).max(1e4).default(-1).describe(
+      retryAttempts: z37.number().min(-1).max(1e4).default(-1).describe(
         [
           "Discard records after the specified number of retries.",
           "The default value is -1, which sets the maximum number of retries to infinite.",
@@ -1464,7 +1482,7 @@ var TablesSchema = z36.record(
           "You can specify a number from -1 to 10000."
         ].join("\n")
       ),
-      concurrencyPerShard: z36.number().min(1).max(10).default(1).describe(
+      concurrencyPerShard: z37.number().min(1).max(10).default(1).describe(
         [
           "The number of batches to process concurrently from each shard.",
           "You can specify a number from 1 to 10."
@@ -1474,16 +1492,16 @@ var TablesSchema = z36.record(
     }).optional().describe(
       "The settings for the DynamoDB table stream, which capture changes to items stored in the table."
     ),
-    indexes: z36.record(
-      z36.string(),
-      z36.object({
+    indexes: z37.record(
+      z37.string(),
+      z37.object({
         hash: KeySchema.describe(
           "Specifies the name of the partition / hash key that makes up the primary key for the global secondary index."
         ),
         sort: KeySchema.optional().describe(
           "Specifies the name of the range / sort key that makes up the primary key for the global secondary index."
         ),
-        projection: z36.enum(["all", "keys-only"]).default("all").describe(
+        projection: z37.enum(["all", "keys-only"]).default("all").describe(
           [
             "The set of attributes that are projected into the index:",
             "- all - All of the table attributes are projected into the index.",
@@ -1497,11 +1515,11 @@ var TablesSchema = z36.record(
 ).optional().describe("Define the tables in your stack.");
 
 // src/feature/task/schema.ts
-import { z as z37 } from "zod";
-var RetryAttemptsSchema2 = z37.number().int().min(0).max(2).describe(
+import { z as z38 } from "zod";
+var RetryAttemptsSchema2 = z38.number().int().min(0).max(2).describe(
   "The maximum number of times to retry when the function returns an error. You can specify a number from 0 to 2."
 );
-var TaskSchema = z37.union([
+var TaskSchema = z38.union([
   LocalFileSchema.transform((file) => ({
     consumer: {
       code: {
@@ -1512,20 +1530,20 @@ var TaskSchema = z37.union([
     },
     retryAttempts: void 0
   })),
-  z37.object({
+  z38.object({
     consumer: FunctionSchema,
     retryAttempts: RetryAttemptsSchema2.optional()
   })
 ]);
-var TasksSchema = z37.record(ResourceIdSchema, TaskSchema).optional().describe("Define the tasks in your stack.");
+var TasksSchema = z38.record(ResourceIdSchema, TaskSchema).optional().describe("Define the tasks in your stack.");
 
 // src/feature/test/schema.ts
-import { z as z38 } from "zod";
-var TestsSchema = z38.union([
+import { z as z39 } from "zod";
+var TestsSchema = z39.union([
   //
   LocalDirectorySchema.transform((v) => [v]),
   LocalDirectorySchema.array(),
-  z38.literal(false)
+  z39.literal(false)
 ]).describe("Define the location of your tests for your stack.").optional();
 
 // src/config/stack.ts
@@ -1533,8 +1551,8 @@ var DependsSchema = ResourceIdSchema.array().optional().describe("Define the sta
 var NameSchema = ResourceIdSchema.refine((name) => !["base", "hostedzones"].includes(name), {
   message: `Stack name can't be a reserved name.`
 }).describe("Stack name.");
-var StackSchema = z39.object({
-  $schema: z39.string().optional(),
+var StackSchema = z40.object({
+  $schema: z40.string().optional(),
   name: NameSchema,
   depends: DependsSchema,
   commands: CommandsSchema,