npm - @cdk8s/awscdk-resolver - Versions diffs - 0.0.54 → 0.0.55 - Mend

@cdk8s/awscdk-resolver 0.0.54 → 0.0.55

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (234) hide show

package/node_modules/@aws-sdk/client-sts/dist-cjs/runtimeConfig.js CHANGED Viewed

@@ -3,9 +3,8 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.getRuntimeConfig = void 0;
 const tslib_1 = require("tslib");
 const package_json_1 = tslib_1.__importDefault(require("../package.json"));
-const defaultStsRoleAssumers_1 = require("./defaultStsRoleAssumers");
+const credentialDefaultProvider_1 = require("./credentialDefaultProvider");
 const core_1 = require("@aws-sdk/core");
-const credential_provider_node_1 = require("@aws-sdk/credential-provider-node");
 const util_user_agent_node_1 = require("@aws-sdk/util-user-agent-node");
 const config_resolver_1 = require("@smithy/config-resolver");
 const core_2 = require("@smithy/core");
@@ -31,14 +30,14 @@ const getRuntimeConfig = (config) => {
         runtime: "node",
         defaultsMode,
         bodyLengthChecker: config?.bodyLengthChecker ?? util_body_length_node_1.calculateBodyLength,
-        credentialDefaultProvider: config?.credentialDefaultProvider ?? (0, defaultStsRoleAssumers_1.decorateDefaultCredentialProvider)(credential_provider_node_1.defaultProvider),
+        credentialDefaultProvider: config?.credentialDefaultProvider ?? credentialDefaultProvider_1.defaultProvider,
         defaultUserAgentProvider: config?.defaultUserAgentProvider ??
             (0, util_user_agent_node_1.defaultUserAgent)({ serviceId: clientSharedValues.serviceId, clientVersion: package_json_1.default.version }),
         httpAuthSchemes: config?.httpAuthSchemes ?? [
             {
                 schemeId: "aws.auth#sigv4",
                 identityProvider: (ipc) => ipc.getIdentityProvider("aws.auth#sigv4") ||
-                    (async (idProps) => await (0, defaultStsRoleAssumers_1.decorateDefaultCredentialProvider)(credential_provider_node_1.defaultProvider)(idProps?.__config || {})()),
+                    (async (idProps) => await (0, credentialDefaultProvider_1.defaultProvider)(idProps?.__config || {})()),
                 signer: new core_1.AwsSdkSigV4Signer(),
             },
             {

package/node_modules/@aws-sdk/client-sts/dist-es/credentialDefaultProvider.js ADDED Viewed

@@ -0,0 +1,3 @@
+export const defaultProvider = ((input) => {
+    return () => import("@aws-sdk/credential-provider-node").then(({ defaultProvider }) => defaultProvider(input)());
+});

package/node_modules/@aws-sdk/client-sts/dist-es/runtimeConfig.js CHANGED Viewed

@@ -1,7 +1,6 @@
 import packageInfo from "../package.json";
-import { decorateDefaultCredentialProvider } from "./defaultStsRoleAssumers";
+import { defaultProvider as credentialDefaultProvider } from "./credentialDefaultProvider";
 import { AwsSdkSigV4Signer, emitWarningIfUnsupportedVersion as awsCheckVersion } from "@aws-sdk/core";
-import { defaultProvider as credentialDefaultProvider } from "@aws-sdk/credential-provider-node";
 import { defaultUserAgent } from "@aws-sdk/util-user-agent-node";
 import { NODE_REGION_CONFIG_FILE_OPTIONS, NODE_REGION_CONFIG_OPTIONS, NODE_USE_DUALSTACK_ENDPOINT_CONFIG_OPTIONS, NODE_USE_FIPS_ENDPOINT_CONFIG_OPTIONS, } from "@smithy/config-resolver";
 import { NoAuthSigner } from "@smithy/core";
@@ -27,14 +26,14 @@ export const getRuntimeConfig = (config) => {
         runtime: "node",
         defaultsMode,
         bodyLengthChecker: config?.bodyLengthChecker ?? calculateBodyLength,
-        credentialDefaultProvider: config?.credentialDefaultProvider ?? decorateDefaultCredentialProvider(credentialDefaultProvider),
+        credentialDefaultProvider: config?.credentialDefaultProvider ?? credentialDefaultProvider,
         defaultUserAgentProvider: config?.defaultUserAgentProvider ??
             defaultUserAgent({ serviceId: clientSharedValues.serviceId, clientVersion: packageInfo.version }),
         httpAuthSchemes: config?.httpAuthSchemes ?? [
             {
                 schemeId: "aws.auth#sigv4",
                 identityProvider: (ipc) => ipc.getIdentityProvider("aws.auth#sigv4") ||
-                    (async (idProps) => await decorateDefaultCredentialProvider(credentialDefaultProvider)(idProps?.__config || {})()),
+                    (async (idProps) => await credentialDefaultProvider(idProps?.__config || {})()),
                 signer: new AwsSdkSigV4Signer(),
             },
             {

package/node_modules/@aws-sdk/client-sts/dist-types/credentialDefaultProvider.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+/**
+ * @internal
+ */
+export declare const defaultProvider: any;

package/node_modules/@aws-sdk/client-sts/dist-types/defaultRoleAssumers.d.ts CHANGED Viewed

@@ -16,5 +16,8 @@ export declare const getDefaultRoleAssumerWithWebIdentity: (stsOptions?: Pick<ST
  * dependencies.
  *
  * @internal
+ *
+ * @deprecated this is no longer needed. Use the defaultProvider directly,
+ * which will load STS if needed.
  */
 export declare const decorateDefaultCredentialProvider: (provider: DefaultCredentialProvider) => DefaultCredentialProvider;

package/node_modules/@aws-sdk/client-sts/dist-types/runtimeConfig.d.ts CHANGED Viewed

@@ -1,3 +1,4 @@
+import { AwsSdkSigV4Signer } from "@aws-sdk/core";
 import { NoAuthSigner } from "@smithy/core";
 import { NodeHttpHandler as RequestHandler } from "@smithy/node-http-handler";
 import { IdentityProviderConfig } from "@smithy/types";
@@ -9,13 +10,17 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
     runtime: string;
     defaultsMode: import("@smithy/types").Provider<import("@smithy/smithy-client").ResolvedDefaultsMode>;
     bodyLengthChecker: import("@smithy/types").BodyLengthCalculator;
-    credentialDefaultProvider: (input: any) => import("@smithy/types").AwsCredentialIdentityProvider;
+    credentialDefaultProvider: any;
     defaultUserAgentProvider: import("@smithy/types").Provider<import("@smithy/types").UserAgent>;
-    httpAuthSchemes: import("@smithy/types").HttpAuthScheme[] | {
+    httpAuthSchemes: import("@smithy/types").HttpAuthScheme[] | ({
+        schemeId: string;
+        identityProvider: (ipc: IdentityProviderConfig) => import("@smithy/types").IdentityProvider<import("@smithy/types").Identity> | ((idProps: Record<string, any> | undefined) => Promise<any>);
+        signer: AwsSdkSigV4Signer;
+    } | {
         schemeId: string;
         identityProvider: (ipc: IdentityProviderConfig) => import("@smithy/types").IdentityProvider<import("@smithy/types").Identity> | (() => Promise<{}>);
         signer: NoAuthSigner;
-    }[];
+    })[];
     maxAttempts: number | import("@smithy/types").Provider<number>;
     region: string | import("@smithy/types").Provider<string>;
     requestHandler: (import("@smithy/types").RequestHandler<any, any, import("@smithy/types").HttpHandlerOptions> & import("@smithy/types").RequestHandler<import("@smithy/protocol-http").HttpRequest, import("@smithy/protocol-http").HttpResponse, import("@smithy/types").HttpHandlerOptions> & {

package/node_modules/@aws-sdk/client-sts/dist-types/ts3.4/credentialDefaultProvider.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export declare const defaultProvider: any;

package/node_modules/@aws-sdk/client-sts/dist-types/ts3.4/runtimeConfig.d.ts CHANGED Viewed

@@ -1,3 +1,4 @@
+import { AwsSdkSigV4Signer } from "@aws-sdk/core";
 import { NoAuthSigner } from "@smithy/core";
 import { NodeHttpHandler as RequestHandler } from "@smithy/node-http-handler";
 import { IdentityProviderConfig } from "@smithy/types";
@@ -8,25 +9,36 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
     import("@smithy/smithy-client").ResolvedDefaultsMode
   >;
   bodyLengthChecker: import("@smithy/types").BodyLengthCalculator;
-  credentialDefaultProvider: (
-    input: any
-  ) => import("@smithy/types").AwsCredentialIdentityProvider;
+  credentialDefaultProvider: any;
   defaultUserAgentProvider: import("@smithy/types").Provider<
     import("@smithy/types").UserAgent
   >;
   httpAuthSchemes:
     | import("@smithy/types").HttpAuthScheme[]
-    | {
-        schemeId: string;
-        identityProvider: (
-          ipc: IdentityProviderConfig
-        ) =>
-          | import("@smithy/types").IdentityProvider<
-              import("@smithy/types").Identity
-            >
-          | (() => Promise<{}>);
-        signer: NoAuthSigner;
-      }[];
+    | (
+        | {
+            schemeId: string;
+            identityProvider: (
+              ipc: IdentityProviderConfig
+            ) =>
+              | import("@smithy/types").IdentityProvider<
+                  import("@smithy/types").Identity
+                >
+              | ((idProps: Record<string, any> | undefined) => Promise<any>);
+            signer: AwsSdkSigV4Signer;
+          }
+        | {
+            schemeId: string;
+            identityProvider: (
+              ipc: IdentityProviderConfig
+            ) =>
+              | import("@smithy/types").IdentityProvider<
+                  import("@smithy/types").Identity
+                >
+              | (() => Promise<{}>);
+            signer: NoAuthSigner;
+          }
+      )[];
   maxAttempts: number | import("@smithy/types").Provider<number>;
   region: string | import("@smithy/types").Provider<string>;
   requestHandler:

package/node_modules/@aws-sdk/client-sts/package.json CHANGED Viewed

@@ -1,13 +1,13 @@
 {
   "name": "@aws-sdk/client-sts",
   "description": "AWS SDK for JavaScript Sts Client for Node.js, Browser and React Native",
-  "version": "3.501.0",
+  "version": "3.502.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-sts",
     "build:es": "tsc -p tsconfig.es.json",
     "build:include:deps": "lerna run --scope $npm_package_name --include-dependencies build",
-    "build:types": "tsc -p tsconfig.types.json",
+    "build:types": "rimraf ./dist-types tsconfig.types.tsbuildinfo && tsc -p tsconfig.types.json",
     "build:types:downlevel": "downlevel-dts dist-types dist-types/ts3.4",
     "clean": "rimraf ./dist-* && rimraf *.tsbuildinfo",
     "extract:docs": "api-extractor run --local",
@@ -23,16 +23,15 @@
     "@aws-crypto/sha256-browser": "3.0.0",
     "@aws-crypto/sha256-js": "3.0.0",
     "@aws-sdk/core": "3.496.0",
-    "@aws-sdk/credential-provider-node": "3.501.0",
-    "@aws-sdk/middleware-host-header": "3.496.0",
-    "@aws-sdk/middleware-logger": "3.496.0",
-    "@aws-sdk/middleware-recursion-detection": "3.496.0",
-    "@aws-sdk/middleware-user-agent": "3.496.0",
-    "@aws-sdk/region-config-resolver": "3.496.0",
-    "@aws-sdk/types": "3.496.0",
-    "@aws-sdk/util-endpoints": "3.496.0",
-    "@aws-sdk/util-user-agent-browser": "3.496.0",
-    "@aws-sdk/util-user-agent-node": "3.496.0",
+    "@aws-sdk/middleware-host-header": "3.502.0",
+    "@aws-sdk/middleware-logger": "3.502.0",
+    "@aws-sdk/middleware-recursion-detection": "3.502.0",
+    "@aws-sdk/middleware-user-agent": "3.502.0",
+    "@aws-sdk/region-config-resolver": "3.502.0",
+    "@aws-sdk/types": "3.502.0",
+    "@aws-sdk/util-endpoints": "3.502.0",
+    "@aws-sdk/util-user-agent-browser": "3.502.0",
+    "@aws-sdk/util-user-agent-node": "3.502.0",
     "@smithy/config-resolver": "^2.1.1",
     "@smithy/core": "^1.3.1",
     "@smithy/fetch-http-handler": "^2.4.1",
@@ -88,6 +87,9 @@
     "url": "https://aws.amazon.com/javascript/"
   },
   "license": "Apache-2.0",
+  "peerDependencies": {
+    "@aws-sdk/credential-provider-node": "*"
+  },
   "browser": {
     "./dist-es/runtimeConfig": "./dist-es/runtimeConfig.browser"
   },

package/node_modules/@aws-sdk/credential-provider-env/dist-cjs/index.js CHANGED Viewed

@@ -36,7 +36,9 @@ var ENV_SECRET = "AWS_SECRET_ACCESS_KEY";
 var ENV_SESSION = "AWS_SESSION_TOKEN";
 var ENV_EXPIRATION = "AWS_CREDENTIAL_EXPIRATION";
 var ENV_CREDENTIAL_SCOPE = "AWS_CREDENTIAL_SCOPE";
-var fromEnv = /* @__PURE__ */ __name(() => async () => {
+var fromEnv = /* @__PURE__ */ __name((init) => async () => {
+  var _a;
+  (_a = init == null ? void 0 : init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-env", "fromEnv");
   const accessKeyId = process.env[ENV_KEY];
   const secretAccessKey = process.env[ENV_SECRET];
   const sessionToken = process.env[ENV_SESSION];
@@ -56,11 +58,11 @@ var fromEnv = /* @__PURE__ */ __name(() => async () => {
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
-  ENV_CREDENTIAL_SCOPE,
-  ENV_EXPIRATION,
   ENV_KEY,
   ENV_SECRET,
   ENV_SESSION,
+  ENV_EXPIRATION,
+  ENV_CREDENTIAL_SCOPE,
   fromEnv
 });

package/node_modules/@aws-sdk/credential-provider-env/dist-es/fromEnv.js CHANGED Viewed

@@ -4,7 +4,8 @@ export const ENV_SECRET = "AWS_SECRET_ACCESS_KEY";
 export const ENV_SESSION = "AWS_SESSION_TOKEN";
 export const ENV_EXPIRATION = "AWS_CREDENTIAL_EXPIRATION";
 export const ENV_CREDENTIAL_SCOPE = "AWS_CREDENTIAL_SCOPE";
-export const fromEnv = () => async () => {
+export const fromEnv = (init) => async () => {
+    init?.logger?.debug("@aws-sdk/credential-provider-env", "fromEnv");
     const accessKeyId = process.env[ENV_KEY];
     const secretAccessKey = process.env[ENV_SECRET];
     const sessionToken = process.env[ENV_SESSION];

package/node_modules/@aws-sdk/credential-provider-env/dist-types/fromEnv.d.ts CHANGED Viewed

@@ -1,4 +1,7 @@
+import type { CredentialProviderOptions } from "@aws-sdk/types";
 import { AwsCredentialIdentityProvider } from "@smithy/types";
+export interface FromEnvInit extends CredentialProviderOptions {
+}
 /**
  * @internal
  */
@@ -26,4 +29,4 @@ export declare const ENV_CREDENTIAL_SCOPE = "AWS_CREDENTIAL_SCOPE";
  * `AWS_ACCESS_KEY_ID` or `AWS_SECRET_ACCESS_KEY` environment variable is not
  * set in this process, the provider will return a rejected promise.
  */
-export declare const fromEnv: () => AwsCredentialIdentityProvider;
+export declare const fromEnv: (init?: FromEnvInit) => AwsCredentialIdentityProvider;

package/node_modules/@aws-sdk/credential-provider-env/dist-types/ts3.4/fromEnv.d.ts CHANGED Viewed

@@ -1,7 +1,11 @@
+import { CredentialProviderOptions } from "@aws-sdk/types";
 import { AwsCredentialIdentityProvider } from "@smithy/types";
+export interface FromEnvInit extends CredentialProviderOptions {}
 export declare const ENV_KEY = "AWS_ACCESS_KEY_ID";
 export declare const ENV_SECRET = "AWS_SECRET_ACCESS_KEY";
 export declare const ENV_SESSION = "AWS_SESSION_TOKEN";
 export declare const ENV_EXPIRATION = "AWS_CREDENTIAL_EXPIRATION";
 export declare const ENV_CREDENTIAL_SCOPE = "AWS_CREDENTIAL_SCOPE";
-export declare const fromEnv: () => AwsCredentialIdentityProvider;
+export declare const fromEnv: (
+  init?: FromEnvInit
+) => AwsCredentialIdentityProvider;

package/node_modules/@aws-sdk/credential-provider-env/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/credential-provider-env",
-  "version": "3.496.0",
+  "version": "3.502.0",
   "description": "AWS credential provider that sources credentials from known environment variables",
   "main": "./dist-cjs/index.js",
   "module": "./dist-es/index.js",
@@ -24,7 +24,7 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
-    "@aws-sdk/types": "3.496.0",
+    "@aws-sdk/types": "3.502.0",
     "@smithy/property-provider": "^2.1.1",
     "@smithy/types": "^2.9.1",
     "tslib": "^2.5.0"

package/node_modules/@aws-sdk/credential-provider-ini/dist-cjs/index.js CHANGED Viewed

@@ -1,8 +1,13 @@
+var __create = Object.create;
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
 var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
 var __hasOwnProp = Object.prototype.hasOwnProperty;
 var __name = (target, value) => __defProp(target, "name", { value, configurable: true });
+var __esm = (fn, res) => function __init() {
+  return fn && (res = (0, fn[__getOwnPropNames(fn)[0]])(fn = 0)), res;
+};
 var __export = (target, all) => {
   for (var name in all)
     __defProp(target, name, { get: all[name], enumerable: true });
@@ -15,8 +20,28 @@ var __copyProps = (to, from, except, desc) => {
   }
   return to;
 };
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
+  // If the importer is in node compatibility mode or this is not an ESM
+  // file that has been converted to a CommonJS file using a Babel-
+  // compatible transform (i.e. "__esModule" has not been set), then set
+  // "default" to the CommonJS "module.exports" for node compatibility.
+  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
+  mod
+));
 var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+// src/loadSts.ts
+var loadSts_exports = {};
+__export(loadSts_exports, {
+  getDefaultRoleAssumer: () => import_client_sts.getDefaultRoleAssumer
+});
+var import_client_sts;
+var init_loadSts = __esm({
+  "src/loadSts.ts"() {
+    import_client_sts = require("@aws-sdk/client-sts");
+  }
+});
 // src/index.ts
 var src_exports = {};
 __export(src_exports, {
@@ -35,17 +60,15 @@ module.exports = __toCommonJS(src_exports);
 var import_shared_ini_file_loader = require("@smithy/shared-ini-file-loader");
 // src/resolveCredentialSource.ts
-var import_credential_provider_env = require("@aws-sdk/credential-provider-env");
-var import_credential_provider_imds = require("@smithy/credential-provider-imds");
 var import_property_provider = require("@smithy/property-provider");
 var resolveCredentialSource = /* @__PURE__ */ __name((credentialSource, profileName) => {
   const sourceProvidersMap = {
-    EcsContainer: import_credential_provider_imds.fromContainerMetadata,
-    Ec2InstanceMetadata: import_credential_provider_imds.fromInstanceMetadata,
-    Environment: import_credential_provider_env.fromEnv
+    EcsContainer: (options) => Promise.resolve().then(() => __toESM(require("@smithy/credential-provider-imds"))).then(({ fromContainerMetadata }) => fromContainerMetadata(options)),
+    Ec2InstanceMetadata: (options) => Promise.resolve().then(() => __toESM(require("@smithy/credential-provider-imds"))).then(({ fromInstanceMetadata }) => fromInstanceMetadata(options)),
+    Environment: (options) => Promise.resolve().then(() => __toESM(require("@aws-sdk/credential-provider-env"))).then(({ fromEnv }) => fromEnv(options))
   };
   if (credentialSource in sourceProvidersMap) {
-    return sourceProvidersMap[credentialSource]();
+    return sourceProvidersMap[credentialSource];
   } else {
     throw new import_property_provider.CredentialsProviderError(
       `Unsupported credential source in profile ${profileName}. Got ${credentialSource}, expected EcsContainer or Ec2InstanceMetadata or Environment.`
@@ -58,12 +81,12 @@ var isAssumeRoleProfile = /* @__PURE__ */ __name((arg) => Boolean(arg) && typeof
 var isAssumeRoleWithSourceProfile = /* @__PURE__ */ __name((arg) => typeof arg.source_profile === "string" && typeof arg.credential_source === "undefined", "isAssumeRoleWithSourceProfile");
 var isAssumeRoleWithProviderProfile = /* @__PURE__ */ __name((arg) => typeof arg.credential_source === "string" && typeof arg.source_profile === "undefined", "isAssumeRoleWithProviderProfile");
 var resolveAssumeRoleCredentials = /* @__PURE__ */ __name(async (profileName, profiles, options, visitedProfiles = {}) => {
+  var _a;
+  (_a = options.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-ini", "resolveAssumeRoleCredentials (STS)");
   const data = profiles[profileName];
   if (!options.roleAssumer) {
-    throw new import_property_provider.CredentialsProviderError(
-      `Profile ${profileName} requires a role to be assumed, but no role assumption callback was provided.`,
-      false
-    );
+    const { getDefaultRoleAssumer: getDefaultRoleAssumer2 } = await Promise.resolve().then(() => (init_loadSts(), loadSts_exports));
+    options.roleAssumer = getDefaultRoleAssumer2(options.clientConfig, options.clientPlugins);
   }
   const { source_profile } = data;
   if (source_profile && source_profile in visitedProfiles) {
@@ -75,7 +98,7 @@ var resolveAssumeRoleCredentials = /* @__PURE__ */ __name(async (profileName, pr
   const sourceCredsProvider = source_profile ? resolveProfileData(source_profile, profiles, options, {
     ...visitedProfiles,
     [source_profile]: true
-  }) : resolveCredentialSource(data.credential_source, profileName)();
+  }) : (await resolveCredentialSource(data.credential_source, profileName)(options))();
   const params = {
     RoleArn: data.role_arn,
     RoleSessionName: data.role_session_name || `aws-sdk-js-${Date.now()}`,
@@ -98,19 +121,19 @@ var resolveAssumeRoleCredentials = /* @__PURE__ */ __name(async (profileName, pr
 }, "resolveAssumeRoleCredentials");
 // src/resolveProcessCredentials.ts
-var import_credential_provider_process = require("@aws-sdk/credential-provider-process");
 var isProcessProfile = /* @__PURE__ */ __name((arg) => Boolean(arg) && typeof arg === "object" && typeof arg.credential_process === "string", "isProcessProfile");
-var resolveProcessCredentials = /* @__PURE__ */ __name(async (options, profile) => (0, import_credential_provider_process.fromProcess)({
-  ...options,
-  profile
-})(), "resolveProcessCredentials");
+var resolveProcessCredentials = /* @__PURE__ */ __name(async (options, profile) => Promise.resolve().then(() => __toESM(require("@aws-sdk/credential-provider-process"))).then(
+  ({ fromProcess }) => fromProcess({
+    ...options,
+    profile
+  })()
+), "resolveProcessCredentials");
 // src/resolveSsoCredentials.ts
-var import_credential_provider_sso = require("@aws-sdk/credential-provider-sso");
-var resolveSsoCredentials = /* @__PURE__ */ __name((data) => {
-  const { sso_start_url, sso_account_id, sso_session, sso_region, sso_role_name } = (0, import_credential_provider_sso.validateSsoProfile)(data);
-  return (0, import_credential_provider_sso.fromSSO)({
+var resolveSsoCredentials = /* @__PURE__ */ __name(async (data) => {
+  const { fromSSO, validateSsoProfile } = await Promise.resolve().then(() => __toESM(require("@aws-sdk/credential-provider-sso")));
+  const { sso_start_url, sso_account_id, sso_session, sso_region, sso_role_name } = validateSsoProfile(data);
+  return fromSSO({
     ssoStartUrl: sso_start_url,
     ssoAccountId: sso_account_id,
     ssoSession: sso_session,
@@ -118,37 +141,43 @@ var resolveSsoCredentials = /* @__PURE__ */ __name((data) => {
     ssoRoleName: sso_role_name
   })();
 }, "resolveSsoCredentials");
+var isSsoProfile = /* @__PURE__ */ __name((arg) => arg && (typeof arg.sso_start_url === "string" || typeof arg.sso_account_id === "string" || typeof arg.sso_session === "string" || typeof arg.sso_region === "string" || typeof arg.sso_role_name === "string"), "isSsoProfile");
 // src/resolveStaticCredentials.ts
 var isStaticCredsProfile = /* @__PURE__ */ __name((arg) => Boolean(arg) && typeof arg === "object" && typeof arg.aws_access_key_id === "string" && typeof arg.aws_secret_access_key === "string" && ["undefined", "string"].indexOf(typeof arg.aws_session_token) > -1, "isStaticCredsProfile");
-var resolveStaticCredentials = /* @__PURE__ */ __name((profile) => Promise.resolve({
-  accessKeyId: profile.aws_access_key_id,
-  secretAccessKey: profile.aws_secret_access_key,
-  sessionToken: profile.aws_session_token,
-  credentialScope: profile.aws_credential_scope
-}), "resolveStaticCredentials");
+var resolveStaticCredentials = /* @__PURE__ */ __name((profile, options) => {
+  var _a;
+  (_a = options == null ? void 0 : options.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-ini", "resolveStaticCredentials");
+  return Promise.resolve({
+    accessKeyId: profile.aws_access_key_id,
+    secretAccessKey: profile.aws_secret_access_key,
+    sessionToken: profile.aws_session_token,
+    credentialScope: profile.aws_credential_scope
+  });
+}, "resolveStaticCredentials");
 // src/resolveWebIdentityCredentials.ts
-var import_credential_provider_web_identity = require("@aws-sdk/credential-provider-web-identity");
 var isWebIdentityProfile = /* @__PURE__ */ __name((arg) => Boolean(arg) && typeof arg === "object" && typeof arg.web_identity_token_file === "string" && typeof arg.role_arn === "string" && ["undefined", "string"].indexOf(typeof arg.role_session_name) > -1, "isWebIdentityProfile");
-var resolveWebIdentityCredentials = /* @__PURE__ */ __name(async (profile, options) => (0, import_credential_provider_web_identity.fromTokenFile)({
-  webIdentityTokenFile: profile.web_identity_token_file,
-  roleArn: profile.role_arn,
-  roleSessionName: profile.role_session_name,
-  roleAssumerWithWebIdentity: options.roleAssumerWithWebIdentity
-})(), "resolveWebIdentityCredentials");
+var resolveWebIdentityCredentials = /* @__PURE__ */ __name(async (profile, options) => Promise.resolve().then(() => __toESM(require("@aws-sdk/credential-provider-web-identity"))).then(
+  ({ fromTokenFile }) => fromTokenFile({
+    webIdentityTokenFile: profile.web_identity_token_file,
+    roleArn: profile.role_arn,
+    roleSessionName: profile.role_session_name,
+    roleAssumerWithWebIdentity: options.roleAssumerWithWebIdentity
+  })()
+), "resolveWebIdentityCredentials");
 // src/resolveProfileData.ts
 var resolveProfileData = /* @__PURE__ */ __name(async (profileName, profiles, options, visitedProfiles = {}) => {
   const data = profiles[profileName];
   if (Object.keys(visitedProfiles).length > 0 && isStaticCredsProfile(data)) {
-    return resolveStaticCredentials(data);
+    return resolveStaticCredentials(data, options);
   }
   if (isAssumeRoleProfile(data)) {
     return resolveAssumeRoleCredentials(profileName, profiles, options, visitedProfiles);
   }
   if (isStaticCredsProfile(data)) {
-    return resolveStaticCredentials(data);
+    return resolveStaticCredentials(data, options);
   }
   if (isWebIdentityProfile(data)) {
     return resolveWebIdentityCredentials(data, options);
@@ -156,14 +185,16 @@ var resolveProfileData = /* @__PURE__ */ __name(async (profileName, profiles, op
   if (isProcessProfile(data)) {
     return resolveProcessCredentials(options, profileName);
   }
-  if ((0, import_credential_provider_sso.isSsoProfile)(data)) {
-    return resolveSsoCredentials(data);
+  if (isSsoProfile(data)) {
+    return await resolveSsoCredentials(data);
   }
   throw new import_property_provider.CredentialsProviderError(`Profile ${profileName} could not be found or parsed in shared credentials file.`);
 }, "resolveProfileData");
 // src/fromIni.ts
 var fromIni = /* @__PURE__ */ __name((init = {}) => async () => {
+  var _a;
+  (_a = init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-ini", "fromIni");
   const profiles = await (0, import_shared_ini_file_loader.parseKnownFiles)(init);
   return resolveProfileData((0, import_shared_ini_file_loader.getProfileName)(init), profiles, init);
 }, "fromIni");

package/node_modules/@aws-sdk/credential-provider-ini/dist-cjs/loadSts.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ module.exports = require("./index.js");

package/node_modules/@aws-sdk/credential-provider-ini/dist-es/fromIni.js CHANGED Viewed

@@ -1,6 +1,7 @@
 import { getProfileName, parseKnownFiles } from "@smithy/shared-ini-file-loader";
 import { resolveProfileData } from "./resolveProfileData";
 export const fromIni = (init = {}) => async () => {
+    init.logger?.debug("@aws-sdk/credential-provider-ini", "fromIni");
     const profiles = await parseKnownFiles(init);
     return resolveProfileData(getProfileName(init), profiles, init);
 };

package/node_modules/@aws-sdk/credential-provider-ini/dist-es/loadSts.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ import { getDefaultRoleAssumer } from "@aws-sdk/client-sts";
2	+ export { getDefaultRoleAssumer };

package/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveAssumeRoleCredentials.js CHANGED Viewed

@@ -12,9 +12,11 @@ export const isAssumeRoleProfile = (arg) => Boolean(arg) &&
 const isAssumeRoleWithSourceProfile = (arg) => typeof arg.source_profile === "string" && typeof arg.credential_source === "undefined";
 const isAssumeRoleWithProviderProfile = (arg) => typeof arg.credential_source === "string" && typeof arg.source_profile === "undefined";
 export const resolveAssumeRoleCredentials = async (profileName, profiles, options, visitedProfiles = {}) => {
+    options.logger?.debug("@aws-sdk/credential-provider-ini", "resolveAssumeRoleCredentials (STS)");
     const data = profiles[profileName];
     if (!options.roleAssumer) {
-        throw new CredentialsProviderError(`Profile ${profileName} requires a role to be assumed, but no role assumption callback was provided.`, false);
+        const { getDefaultRoleAssumer } = await import("./loadSts");
+        options.roleAssumer = getDefaultRoleAssumer(options.clientConfig, options.clientPlugins);
     }
     const { source_profile } = data;
     if (source_profile && source_profile in visitedProfiles) {
@@ -27,7 +29,7 @@ export const resolveAssumeRoleCredentials = async (profileName, profiles, option
             ...visitedProfiles,
             [source_profile]: true,
         })
-        : resolveCredentialSource(data.credential_source, profileName)();
+        : (await resolveCredentialSource(data.credential_source, profileName)(options))();
     const params = {
         RoleArn: data.role_arn,
         RoleSessionName: data.role_session_name || `aws-sdk-js-${Date.now()}`,

package/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveCredentialSource.js CHANGED Viewed

@@ -1,14 +1,12 @@
-import { fromEnv } from "@aws-sdk/credential-provider-env";
-import { fromContainerMetadata, fromInstanceMetadata } from "@smithy/credential-provider-imds";
 import { CredentialsProviderError } from "@smithy/property-provider";
 export const resolveCredentialSource = (credentialSource, profileName) => {
     const sourceProvidersMap = {
-        EcsContainer: fromContainerMetadata,
-        Ec2InstanceMetadata: fromInstanceMetadata,
-        Environment: fromEnv,
+        EcsContainer: (options) => import("@smithy/credential-provider-imds").then(({ fromContainerMetadata }) => fromContainerMetadata(options)),
+        Ec2InstanceMetadata: (options) => import("@smithy/credential-provider-imds").then(({ fromInstanceMetadata }) => fromInstanceMetadata(options)),
+        Environment: (options) => import("@aws-sdk/credential-provider-env").then(({ fromEnv }) => fromEnv(options)),
     };
     if (credentialSource in sourceProvidersMap) {
-        return sourceProvidersMap[credentialSource]();
+        return sourceProvidersMap[credentialSource];
     }
     else {
         throw new CredentialsProviderError(`Unsupported credential source in profile ${profileName}. Got ${credentialSource}, ` +

package/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveProcessCredentials.js CHANGED Viewed

@@ -1,6 +1,5 @@
-import { fromProcess } from "@aws-sdk/credential-provider-process";
 export const isProcessProfile = (arg) => Boolean(arg) && typeof arg === "object" && typeof arg.credential_process === "string";
-export const resolveProcessCredentials = async (options, profile) => fromProcess({
+export const resolveProcessCredentials = async (options, profile) => import("@aws-sdk/credential-provider-process").then(({ fromProcess }) => fromProcess({
     ...options,
     profile,
-})();
+})());

package/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveProfileData.js CHANGED Viewed

@@ -7,13 +7,13 @@ import { isWebIdentityProfile, resolveWebIdentityCredentials } from "./resolveWe
 export const resolveProfileData = async (profileName, profiles, options, visitedProfiles = {}) => {
     const data = profiles[profileName];
     if (Object.keys(visitedProfiles).length > 0 && isStaticCredsProfile(data)) {
-        return resolveStaticCredentials(data);
+        return resolveStaticCredentials(data, options);
     }
     if (isAssumeRoleProfile(data)) {
         return resolveAssumeRoleCredentials(profileName, profiles, options, visitedProfiles);
     }
     if (isStaticCredsProfile(data)) {
-        return resolveStaticCredentials(data);
+        return resolveStaticCredentials(data, options);
     }
     if (isWebIdentityProfile(data)) {
         return resolveWebIdentityCredentials(data, options);
@@ -22,7 +22,7 @@ export const resolveProfileData = async (profileName, profiles, options, visited
         return resolveProcessCredentials(options, profileName);
     }
     if (isSsoProfile(data)) {
-        return resolveSsoCredentials(data);
+        return await resolveSsoCredentials(data);
     }
     throw new CredentialsProviderError(`Profile ${profileName} could not be found or parsed in shared credentials file.`);
 };

package/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveSsoCredentials.js CHANGED Viewed

@@ -1,6 +1,5 @@
-import { fromSSO, validateSsoProfile } from "@aws-sdk/credential-provider-sso";
-export { isSsoProfile } from "@aws-sdk/credential-provider-sso";
-export const resolveSsoCredentials = (data) => {
+export const resolveSsoCredentials = async (data) => {
+    const { fromSSO, validateSsoProfile } = await import("@aws-sdk/credential-provider-sso");
     const { sso_start_url, sso_account_id, sso_session, sso_region, sso_role_name } = validateSsoProfile(data);
     return fromSSO({
         ssoStartUrl: sso_start_url,
@@ -10,3 +9,9 @@ export const resolveSsoCredentials = (data) => {
         ssoRoleName: sso_role_name,
     })();
 };
+export const isSsoProfile = (arg) => arg &&
+    (typeof arg.sso_start_url === "string" ||
+        typeof arg.sso_account_id === "string" ||
+        typeof arg.sso_session === "string" ||
+        typeof arg.sso_region === "string" ||
+        typeof arg.sso_role_name === "string");