@cdklabs/cdk-ecs-codedeploy 0.0.241 → 0.0.242

package/node_modules/@aws-sdk/credential-provider-http/dist-es/fromHttp/retry-wrapper.js

@@ -0,0 +1,13 @@
+export const retryWrapper = (toRetry, maxRetries, delayMs) => {
+    return async () => {
+        for (let i = 0; i < maxRetries; ++i) {
+            try {
+                return await toRetry();
+            }
+            catch (e) {
+                await new Promise((resolve) => setTimeout(resolve, delayMs));
+            }
+        }
+        return await toRetry();
+    };
+};

package/node_modules/@aws-sdk/credential-provider-http/dist-es/index.browser.js

@@ -0,0 +1 @@
+export { fromHttp } from "./fromHttp/fromHttp.browser";

package/node_modules/@aws-sdk/credential-provider-http/dist-es/index.js

@@ -0,0 +1 @@
+export { fromHttp } from "./fromHttp/fromHttp";

package/node_modules/@aws-sdk/credential-provider-http/dist-types/fromHttp/checkUrl.d.ts

@@ -0,0 +1,7 @@
+/**
+ * @internal
+ *
+ * @param url - to be validated.
+ * @throws if not acceptable to this provider.
+ */
+export declare const checkUrl: (url: URL) => void;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/fromHttp/fromHttp.browser.d.ts

@@ -0,0 +1,6 @@
+import { AwsCredentialIdentityProvider } from "@smithy/types";
+import type { FromHttpOptions } from "./fromHttpTypes";
+/**
+ * Creates a provider that gets credentials via HTTP request.
+ */
+export declare const fromHttp: (options: FromHttpOptions) => AwsCredentialIdentityProvider;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/fromHttp/fromHttp.d.ts

@@ -0,0 +1,6 @@
+import { AwsCredentialIdentityProvider } from "@smithy/types";
+import type { FromHttpOptions } from "./fromHttpTypes";
+/**
+ * Creates a provider that gets credentials via HTTP request.
+ */
+export declare const fromHttp: (options: FromHttpOptions) => AwsCredentialIdentityProvider;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/fromHttp/fromHttpTypes.d.ts

@@ -0,0 +1,69 @@
+import type { CredentialProviderOptions } from "@aws-sdk/types";
+/**
+ * @public
+ *
+ * Input for the fromHttp function in the HTTP Credentials Provider for Node.js.
+ */
+export interface FromHttpOptions extends CredentialProviderOptions {
+    /**
+     * If this value is provided, it will be used as-is.
+     *
+     * For browser environments, use instead {@link credentialsFullUri}.
+     */
+    awsContainerCredentialsFullUri?: string;
+    /**
+     * If this value is provided instead of the full URI, it
+     * will be appended to the default link local host of 169.254.170.2.
+     *
+     * Not supported in browsers.
+     */
+    awsContainerCredentialsRelativeUri?: string;
+    /**
+     * Will be read on each credentials request to
+     * add an Authorization request header value.
+     *
+     * Not supported in browsers.
+     */
+    awsContainerAuthorizationTokenFile?: string;
+    /**
+     * An alternative to awsContainerAuthorizationTokenFile,
+     * this is the token value itself.
+     *
+     * For browser environments, use instead {@link authorizationToken}.
+     */
+    awsContainerAuthorizationToken?: string;
+    /**
+     * BROWSER ONLY.
+     *
+     * In browsers, a relative URI is not allowed, and a full URI must be provided.
+     * HTTPS is required.
+     *
+     * This value is required for the browser environment.
+     */
+    credentialsFullUri?: string;
+    /**
+     * BROWSER ONLY.
+     *
+     * Providing this value will set an "Authorization" request
+     * header value on the GET request.
+     */
+    authorizationToken?: string;
+    /**
+     * Default is 3 retry attempts or 4 total attempts.
+     */
+    maxRetries?: number;
+    /**
+     * Default is 1000ms. Time in milliseconds to spend waiting between retry attempts.
+     */
+    timeout?: number;
+}
+/**
+ * @public
+ */
+export type HttpProviderCredentials = {
+    AccessKeyId: string;
+    SecretAccessKey: string;
+    Token: string;
+    AccountId?: string;
+    Expiration: string;
+};

package/node_modules/@aws-sdk/credential-provider-http/dist-types/fromHttp/requestHelpers.d.ts

@@ -0,0 +1,11 @@
+import { AwsCredentialIdentity } from "@aws-sdk/types";
+import { HttpRequest } from "@smithy/protocol-http";
+import { HttpResponse } from "@smithy/types";
+/**
+ * @internal
+ */
+export declare function createGetRequest(url: URL): HttpRequest;
+/**
+ * @internal
+ */
+export declare function getCredentials(response: HttpResponse): Promise<AwsCredentialIdentity>;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/fromHttp/retry-wrapper.d.ts

@@ -0,0 +1,10 @@
+/**
+ * @internal
+ */
+export interface RetryableProvider<T> {
+    (): Promise<T>;
+}
+/**
+ * @internal
+ */
+export declare const retryWrapper: <T>(toRetry: RetryableProvider<T>, maxRetries: number, delayMs: number) => RetryableProvider<T>;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/index.browser.d.ts

@@ -0,0 +1,2 @@
+export { fromHttp } from "./fromHttp/fromHttp.browser";
+export type { FromHttpOptions, HttpProviderCredentials } from "./fromHttp/fromHttpTypes";

package/node_modules/@aws-sdk/credential-provider-http/dist-types/index.d.ts

@@ -0,0 +1,2 @@
+export { fromHttp } from "./fromHttp/fromHttp";
+export type { FromHttpOptions, HttpProviderCredentials } from "./fromHttp/fromHttpTypes";

package/node_modules/@aws-sdk/credential-provider-http/dist-types/ts3.4/fromHttp/checkUrl.d.ts

@@ -0,0 +1 @@
+export declare const checkUrl: (url: URL) => void;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/ts3.4/fromHttp/fromHttp.browser.d.ts

@@ -0,0 +1,5 @@
+import { AwsCredentialIdentityProvider } from "@smithy/types";
+import { FromHttpOptions } from "./fromHttpTypes";
+export declare const fromHttp: (
+  options: FromHttpOptions
+) => AwsCredentialIdentityProvider;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/ts3.4/fromHttp/fromHttp.d.ts

@@ -0,0 +1,5 @@
+import { AwsCredentialIdentityProvider } from "@smithy/types";
+import { FromHttpOptions } from "./fromHttpTypes";
+export declare const fromHttp: (
+  options: FromHttpOptions
+) => AwsCredentialIdentityProvider;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/ts3.4/fromHttp/fromHttpTypes.d.ts

@@ -0,0 +1,18 @@
+import { CredentialProviderOptions } from "@aws-sdk/types";
+export interface FromHttpOptions extends CredentialProviderOptions {
+  awsContainerCredentialsFullUri?: string;
+  awsContainerCredentialsRelativeUri?: string;
+  awsContainerAuthorizationTokenFile?: string;
+  awsContainerAuthorizationToken?: string;
+  credentialsFullUri?: string;
+  authorizationToken?: string;
+  maxRetries?: number;
+  timeout?: number;
+}
+export type HttpProviderCredentials = {
+  AccessKeyId: string;
+  SecretAccessKey: string;
+  Token: string;
+  AccountId?: string;
+  Expiration: string;
+};

package/node_modules/@aws-sdk/credential-provider-http/dist-types/ts3.4/fromHttp/requestHelpers.d.ts

@@ -0,0 +1,7 @@
+import { AwsCredentialIdentity } from "@aws-sdk/types";
+import { HttpRequest } from "@smithy/protocol-http";
+import { HttpResponse } from "@smithy/types";
+export declare function createGetRequest(url: URL): HttpRequest;
+export declare function getCredentials(
+  response: HttpResponse
+): Promise<AwsCredentialIdentity>;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/ts3.4/fromHttp/retry-wrapper.d.ts

@@ -0,0 +1,8 @@
+export interface RetryableProvider<T> {
+  (): Promise<T>;
+}
+export declare const retryWrapper: <T>(
+  toRetry: RetryableProvider<T>,
+  maxRetries: number,
+  delayMs: number
+) => RetryableProvider<T>;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/ts3.4/index.browser.d.ts

@@ -0,0 +1,5 @@
+export { fromHttp } from "./fromHttp/fromHttp.browser";
+export {
+  FromHttpOptions,
+  HttpProviderCredentials,
+} from "./fromHttp/fromHttpTypes";

package/node_modules/@aws-sdk/credential-provider-http/dist-types/ts3.4/index.d.ts

@@ -0,0 +1,5 @@
+export { fromHttp } from "./fromHttp/fromHttp";
+export {
+  FromHttpOptions,
+  HttpProviderCredentials,
+} from "./fromHttp/fromHttpTypes";

package/node_modules/@aws-sdk/credential-provider-http/package.json

@@ -0,0 +1,67 @@
+{
+  "name": "@aws-sdk/credential-provider-http",
+  "version": "3.503.1",
+  "description": "AWS credential provider for containers and HTTP sources",
+  "main": "./dist-cjs/index.js",
+  "module": "./dist-es/index.js",
+  "browser": "./dist-es/index.browser.js",
+  "react-native": "./dist-es/index.browser.js",
+  "scripts": {
+    "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
+    "build:cjs": "node ../../scripts/compilation/inline credential-provider-http",
+    "build:es": "tsc -p tsconfig.es.json",
+    "build:include:deps": "lerna run --scope $npm_package_name --include-dependencies build",
+    "build:types": "tsc -p tsconfig.types.json",
+    "build:types:downlevel": "downlevel-dts dist-types dist-types/ts3.4",
+    "clean": "rimraf ./dist-* && rimraf *.tsbuildinfo",
+    "test": "jest"
+  },
+  "keywords": [
+    "aws",
+    "credentials"
+  ],
+  "author": {
+    "name": "AWS SDK for JavaScript Team",
+    "url": "https://aws.amazon.com/javascript/"
+  },
+  "license": "Apache-2.0",
+  "dependencies": {
+    "@aws-sdk/types": "3.502.0",
+    "@smithy/fetch-http-handler": "^2.4.1",
+    "@smithy/node-http-handler": "^2.3.1",
+    "@smithy/property-provider": "^2.1.1",
+    "@smithy/protocol-http": "^3.1.1",
+    "@smithy/smithy-client": "^2.3.1",
+    "@smithy/types": "^2.9.1",
+    "@smithy/util-stream": "^2.1.1",
+    "tslib": "^2.5.0"
+  },
+  "devDependencies": {
+    "@tsconfig/recommended": "1.0.1",
+    "@types/node": "^14.14.31",
+    "concurrently": "7.0.0",
+    "downlevel-dts": "0.10.1",
+    "rimraf": "3.0.2",
+    "typescript": "~4.9.5"
+  },
+  "types": "./dist-types/index.d.ts",
+  "engines": {
+    "node": ">=14.0.0"
+  },
+  "typesVersions": {
+    "<4.0": {
+      "dist-types/*": [
+        "dist-types/ts3.4/*"
+      ]
+    }
+  },
+  "files": [
+    "dist-*/**"
+  ],
+  "homepage": "https://github.com/aws/aws-sdk-js-v3/tree/main/packages/credential-provider-http",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/aws/aws-sdk-js-v3.git",
+    "directory": "packages/credential-provider-http"
+  }
+}

package/node_modules/@aws-sdk/credential-provider-ini/dist-cjs/index.js

@@ -130,15 +130,11 @@ var resolveProcessCredentials = /* @__PURE__ */ __name(async (options, profile)
 ), "resolveProcessCredentials");
 
 // src/resolveSsoCredentials.ts
-var resolveSsoCredentials = /* @__PURE__ */ __name(async (data) => {
-  const { fromSSO, validateSsoProfile } = await Promise.resolve().then(() => __toESM(require("@aws-sdk/credential-provider-sso")));
-  const { sso_start_url, sso_account_id, sso_session, sso_region, sso_role_name } = validateSsoProfile(data);
+var resolveSsoCredentials = /* @__PURE__ */ __name(async (profile, options = {}) => {
+  const { fromSSO } = await Promise.resolve().then(() => __toESM(require("@aws-sdk/credential-provider-sso")));
   return fromSSO({
-    ssoStartUrl: sso_start_url,
-    ssoAccountId: sso_account_id,
-    ssoSession: sso_session,
-    ssoRegion: sso_region,
-    ssoRoleName: sso_role_name
+    profile,
+    logger: options.logger
   })();
 }, "resolveSsoCredentials");
 var isSsoProfile = /* @__PURE__ */ __name((arg) => arg && (typeof arg.sso_start_url === "string" || typeof arg.sso_account_id === "string" || typeof arg.sso_session === "string" || typeof arg.sso_region === "string" || typeof arg.sso_role_name === "string"), "isSsoProfile");
@@ -163,7 +159,8 @@ var resolveWebIdentityCredentials = /* @__PURE__ */ __name(async (profile, optio
     webIdentityTokenFile: profile.web_identity_token_file,
     roleArn: profile.role_arn,
     roleSessionName: profile.role_session_name,
-    roleAssumerWithWebIdentity: options.roleAssumerWithWebIdentity
+    roleAssumerWithWebIdentity: options.roleAssumerWithWebIdentity,
+    logger: options.logger
   })()
 ), "resolveWebIdentityCredentials");
 
@@ -186,7 +183,7 @@ var resolveProfileData = /* @__PURE__ */ __name(async (profileName, profiles, op
     return resolveProcessCredentials(options, profileName);
   }
   if (isSsoProfile(data)) {
-    return await resolveSsoCredentials(data);
+    return await resolveSsoCredentials(profileName, options);
   }
   throw new import_property_provider.CredentialsProviderError(`Profile ${profileName} could not be found or parsed in shared credentials file.`);
 }, "resolveProfileData");

package/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveProfileData.js

@@ -22,7 +22,7 @@ export const resolveProfileData = async (profileName, profiles, options, visited
         return resolveProcessCredentials(options, profileName);
     }
     if (isSsoProfile(data)) {
-        return await resolveSsoCredentials(data);
+        return await resolveSsoCredentials(profileName, options);
     }
     throw new CredentialsProviderError(`Profile ${profileName} could not be found or parsed in shared credentials file.`);
 };

package/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveSsoCredentials.js

@@ -1,12 +1,8 @@
-export const resolveSsoCredentials = async (data) => {
-    const { fromSSO, validateSsoProfile } = await import("@aws-sdk/credential-provider-sso");
-    const { sso_start_url, sso_account_id, sso_session, sso_region, sso_role_name } = validateSsoProfile(data);
+export const resolveSsoCredentials = async (profile, options = {}) => {
+    const { fromSSO } = await import("@aws-sdk/credential-provider-sso");
     return fromSSO({
-        ssoStartUrl: sso_start_url,
-        ssoAccountId: sso_account_id,
-        ssoSession: sso_session,
-        ssoRegion: sso_region,
-        ssoRoleName: sso_role_name,
+        profile,
+        logger: options.logger,
     })();
 };
 export const isSsoProfile = (arg) => arg &&

package/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveWebIdentityCredentials.js

@@ -8,4 +8,5 @@ export const resolveWebIdentityCredentials = async (profile, options) => import(
     roleArn: profile.role_arn,
     roleSessionName: profile.role_session_name,
     roleAssumerWithWebIdentity: options.roleAssumerWithWebIdentity,
+    logger: options.logger,
 })());

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/resolveSsoCredentials.d.ts

@@ -1,9 +1,10 @@
 import type { SsoProfile } from "@aws-sdk/credential-provider-sso";
+import type { CredentialProviderOptions } from "@aws-sdk/types";
 import type { Profile } from "@smithy/types";
 /**
  * @internal
  */
-export declare const resolveSsoCredentials: (data: Partial<SsoProfile>) => Promise<import("@smithy/types").AwsCredentialIdentity>;
+export declare const resolveSsoCredentials: (profile: string, options?: CredentialProviderOptions) => Promise<import("@aws-sdk/types").AwsCredentialIdentity>;
 /**
  * @internal
  * duplicated from \@aws-sdk/credential-provider-sso to defer import.

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/ts3.4/resolveSsoCredentials.d.ts

@@ -1,6 +1,8 @@
 import { SsoProfile } from "@aws-sdk/credential-provider-sso";
+import { CredentialProviderOptions } from "@aws-sdk/types";
 import { Profile } from "@smithy/types";
 export declare const resolveSsoCredentials: (
-  data: Partial<SsoProfile>
-) => Promise<import("@smithy/types").AwsCredentialIdentity>;
+  profile: string,
+  options?: CredentialProviderOptions
+) => Promise<import("@aws-sdk/types").AwsCredentialIdentity>;
 export declare const isSsoProfile: (arg: Profile) => arg is Partial<SsoProfile>;

package/node_modules/@aws-sdk/credential-provider-ini/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/credential-provider-ini",
-  "version": "3.502.0",
+  "version": "3.503.1",
   "description": "AWS credential provider that sources credentials from ~/.aws/credentials and ~/.aws/config",
   "main": "./dist-cjs/index.js",
   "module": "./dist-es/index.js",
@@ -27,7 +27,7 @@
     "@aws-sdk/client-sts": "3.502.0",
     "@aws-sdk/credential-provider-env": "3.502.0",
     "@aws-sdk/credential-provider-process": "3.502.0",
-    "@aws-sdk/credential-provider-sso": "3.502.0",
+    "@aws-sdk/credential-provider-sso": "3.503.1",
     "@aws-sdk/credential-provider-web-identity": "3.502.0",
     "@aws-sdk/types": "3.502.0",
     "@smithy/credential-provider-imds": "^2.2.1",

package/node_modules/@aws-sdk/credential-provider-node/dist-cjs/index.js

@@ -47,8 +47,9 @@ var remoteProvider = /* @__PURE__ */ __name(async (init) => {
   var _a, _b;
   const { ENV_CMDS_FULL_URI, ENV_CMDS_RELATIVE_URI, fromContainerMetadata, fromInstanceMetadata } = await Promise.resolve().then(() => __toESM(require("@smithy/credential-provider-imds")));
   if (process.env[ENV_CMDS_RELATIVE_URI] || process.env[ENV_CMDS_FULL_URI]) {
-    (_a = init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-node", "remoteProvider::fromContainerMetadata");
-    return fromContainerMetadata(init);
+    (_a = init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-node", "remoteProvider::fromHttp/fromContainerMetadata");
+    const { fromHttp } = await Promise.resolve().then(() => __toESM(require("@aws-sdk/credential-provider-http")));
+    return (0, import_property_provider.chain)(fromHttp(init), fromContainerMetadata(init));
   }
   if (process.env[ENV_IMDS_DISABLED]) {
     return async () => {
@@ -73,8 +74,8 @@ var defaultProvider = /* @__PURE__ */ __name((init = {}) => (0, import_property_
     async () => {
       var _a;
       (_a = init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-node", "defaultProvider::fromSSO");
-      const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName } = init;
-      if (!ssoStartUrl || !ssoAccountId || !ssoRegion || !ssoRoleName) {
+      const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName, ssoSession } = init;
+      if (!ssoStartUrl && !ssoAccountId && !ssoRegion && !ssoRoleName && !ssoSession) {
         throw new import_property_provider.CredentialsProviderError(
           "Skipping SSO provider in default chain (inputs do not include SSO fields)."
         );

package/node_modules/@aws-sdk/credential-provider-node/dist-es/defaultProvider.js

@@ -11,8 +11,8 @@ export const defaultProvider = (init = {}) => memoize(chain(...(init.profile ||
         },
     ]), async () => {
     init.logger?.debug("@aws-sdk/credential-provider-node", "defaultProvider::fromSSO");
-    const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName } = init;
-    if (!ssoStartUrl || !ssoAccountId || !ssoRegion || !ssoRoleName) {
+    const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName, ssoSession } = init;
+    if (!ssoStartUrl && !ssoAccountId && !ssoRegion && !ssoRoleName && !ssoSession) {
         throw new CredentialsProviderError("Skipping SSO provider in default chain (inputs do not include SSO fields).");
     }
     const { fromSSO } = await import("@aws-sdk/credential-provider-sso");

package/node_modules/@aws-sdk/credential-provider-node/dist-es/remoteProvider.js

@@ -1,10 +1,11 @@
-import { CredentialsProviderError } from "@smithy/property-provider";
+import { chain, CredentialsProviderError } from "@smithy/property-provider";
 export const ENV_IMDS_DISABLED = "AWS_EC2_METADATA_DISABLED";
 export const remoteProvider = async (init) => {
     const { ENV_CMDS_FULL_URI, ENV_CMDS_RELATIVE_URI, fromContainerMetadata, fromInstanceMetadata } = await import("@smithy/credential-provider-imds");
     if (process.env[ENV_CMDS_RELATIVE_URI] || process.env[ENV_CMDS_FULL_URI]) {
-        init.logger?.debug("@aws-sdk/credential-provider-node", "remoteProvider::fromContainerMetadata");
-        return fromContainerMetadata(init);
+        init.logger?.debug("@aws-sdk/credential-provider-node", "remoteProvider::fromHttp/fromContainerMetadata");
+        const { fromHttp } = await import("@aws-sdk/credential-provider-http");
+        return chain(fromHttp(init), fromContainerMetadata(init));
     }
     if (process.env[ENV_IMDS_DISABLED]) {
         return async () => {

package/node_modules/@aws-sdk/credential-provider-node/dist-types/remoteProvider.d.ts

@@ -1,5 +1,8 @@
 import type { RemoteProviderInit } from "@smithy/credential-provider-imds";
 import type { AwsCredentialIdentityProvider } from "@smithy/types";
+/**
+ * @internal
+ */
 export declare const ENV_IMDS_DISABLED = "AWS_EC2_METADATA_DISABLED";
 /**
  * @internal

package/node_modules/@aws-sdk/credential-provider-node/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/credential-provider-node",
-  "version": "3.502.0",
+  "version": "3.503.1",
   "description": "AWS credential provider that sources credentials from a Node.JS environment. ",
   "engines": {
     "node": ">=14.0.0"
@@ -28,9 +28,10 @@
   "license": "Apache-2.0",
   "dependencies": {
     "@aws-sdk/credential-provider-env": "3.502.0",
-    "@aws-sdk/credential-provider-ini": "3.502.0",
+    "@aws-sdk/credential-provider-http": "3.503.1",
+    "@aws-sdk/credential-provider-ini": "3.503.1",
     "@aws-sdk/credential-provider-process": "3.502.0",
-    "@aws-sdk/credential-provider-sso": "3.502.0",
+    "@aws-sdk/credential-provider-sso": "3.503.1",
     "@aws-sdk/credential-provider-web-identity": "3.502.0",
     "@aws-sdk/types": "3.502.0",
     "@smithy/credential-provider-imds": "^2.2.1",

package/node_modules/@aws-sdk/credential-provider-sso/dist-cjs/index.js

@@ -61,6 +61,7 @@ var resolveSSOCredentials = /* @__PURE__ */ __name(async ({
   ssoRegion,
   ssoRoleName,
   ssoClient,
+  clientConfig,
   profile
 }) => {
   let token;
@@ -93,7 +94,11 @@ var resolveSSOCredentials = /* @__PURE__ */ __name(async ({
   }
   const { accessToken } = token;
   const { SSOClient: SSOClient2, GetRoleCredentialsCommand: GetRoleCredentialsCommand2 } = await Promise.resolve().then(() => (init_loadSso(), loadSso_exports));
-  const sso = ssoClient || new SSOClient2({ region: ssoRegion });
+  const sso = ssoClient || new SSOClient2(
+    Object.assign({}, clientConfig ?? {}, {
+      region: (clientConfig == null ? void 0 : clientConfig.region) ?? ssoRegion
+    })
+  );
   let ssoResp;
   try {
     ssoResp = await sso.send(
@@ -134,11 +139,7 @@ var fromSSO = /* @__PURE__ */ __name((init = {}) => async () => {
   var _a;
   (_a = init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-sso", "fromSSO");
   const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName, ssoSession } = init;
-  let { ssoClient } = init;
-  if (!ssoClient) {
-    const { SSOClient: SSOClient2 } = await Promise.resolve().then(() => (init_loadSso(), loadSso_exports));
-    ssoClient = new SSOClient2(init.clientConfig ?? {});
-  }
+  const { ssoClient } = init;
   const profileName = (0, import_shared_ini_file_loader.getProfileName)(init);
   if (!ssoStartUrl && !ssoAccountId && !ssoRegion && !ssoRoleName && !ssoSession) {
     const profiles = await (0, import_shared_ini_file_loader.parseKnownFiles)(init);
@@ -170,6 +171,7 @@ var fromSSO = /* @__PURE__ */ __name((init = {}) => async () => {
       ssoRegion: sso_region,
       ssoRoleName: sso_role_name,
       ssoClient,
+      clientConfig: init.clientConfig,
       profile: profileName
     });
   } else if (!ssoStartUrl || !ssoAccountId || !ssoRegion || !ssoRoleName) {
@@ -184,6 +186,7 @@ var fromSSO = /* @__PURE__ */ __name((init = {}) => async () => {
       ssoRegion,
       ssoRoleName,
       ssoClient,
+      clientConfig: init.clientConfig,
       profile: profileName
     });
   }

package/node_modules/@aws-sdk/credential-provider-sso/dist-es/fromSSO.js

@@ -6,11 +6,7 @@ import { validateSsoProfile } from "./validateSsoProfile";
 export const fromSSO = (init = {}) => async () => {
     init.logger?.debug("@aws-sdk/credential-provider-sso", "fromSSO");
     const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName, ssoSession } = init;
-    let { ssoClient } = init;
-    if (!ssoClient) {
-        const { SSOClient } = await import("./loadSso");
-        ssoClient = new SSOClient(init.clientConfig ?? {});
-    }
+    const { ssoClient } = init;
     const profileName = getProfileName(init);
     if (!ssoStartUrl && !ssoAccountId && !ssoRegion && !ssoRoleName && !ssoSession) {
         const profiles = await parseKnownFiles(init);
@@ -42,6 +38,7 @@ export const fromSSO = (init = {}) => async () => {
             ssoRegion: sso_region,
             ssoRoleName: sso_role_name,
             ssoClient: ssoClient,
+            clientConfig: init.clientConfig,
             profile: profileName,
         });
     }
@@ -57,6 +54,7 @@ export const fromSSO = (init = {}) => async () => {
             ssoRegion,
             ssoRoleName,
             ssoClient,
+            clientConfig: init.clientConfig,
             profile: profileName,
         });
     }

package/node_modules/@aws-sdk/credential-provider-sso/dist-es/resolveSSOCredentials.js

@@ -2,7 +2,7 @@ import { fromSso as getSsoTokenProvider } from "@aws-sdk/token-providers";
 import { CredentialsProviderError } from "@smithy/property-provider";
 import { getSSOTokenFromFile } from "@smithy/shared-ini-file-loader";
 const SHOULD_FAIL_CREDENTIAL_CHAIN = false;
-export const resolveSSOCredentials = async ({ ssoStartUrl, ssoSession, ssoAccountId, ssoRegion, ssoRoleName, ssoClient, profile, }) => {
+export const resolveSSOCredentials = async ({ ssoStartUrl, ssoSession, ssoAccountId, ssoRegion, ssoRoleName, ssoClient, clientConfig, profile, }) => {
     let token;
     const refreshMessage = `To refresh this SSO session run aws sso login with the corresponding profile.`;
     if (ssoSession) {
@@ -30,7 +30,10 @@ export const resolveSSOCredentials = async ({ ssoStartUrl, ssoSession, ssoAccoun
     }
     const { accessToken } = token;
     const { SSOClient, GetRoleCredentialsCommand } = await import("./loadSso");
-    const sso = ssoClient || new SSOClient({ region: ssoRegion });
+    const sso = ssoClient ||
+        new SSOClient(Object.assign({}, clientConfig ?? {}, {
+            region: clientConfig?.region ?? ssoRegion,
+        }));
     let ssoResp;
     try {
         ssoResp = await sso.send(new GetRoleCredentialsCommand({

package/node_modules/@aws-sdk/credential-provider-sso/dist-types/resolveSSOCredentials.d.ts

@@ -3,4 +3,4 @@ import { FromSSOInit, SsoCredentialsParameters } from "./fromSSO";
 /**
  * @internal
  */
-export declare const resolveSSOCredentials: ({ ssoStartUrl, ssoSession, ssoAccountId, ssoRegion, ssoRoleName, ssoClient, profile, }: FromSSOInit & SsoCredentialsParameters) => Promise<AwsCredentialIdentity>;
+export declare const resolveSSOCredentials: ({ ssoStartUrl, ssoSession, ssoAccountId, ssoRegion, ssoRoleName, ssoClient, clientConfig, profile, }: FromSSOInit & SsoCredentialsParameters) => Promise<AwsCredentialIdentity>;

package/node_modules/@aws-sdk/credential-provider-sso/dist-types/ts3.4/resolveSSOCredentials.d.ts

@@ -7,5 +7,6 @@ export declare const resolveSSOCredentials: ({
   ssoRegion,
   ssoRoleName,
   ssoClient,
+  clientConfig,
   profile,
 }: FromSSOInit & SsoCredentialsParameters) => Promise<AwsCredentialIdentity>;

package/node_modules/@aws-sdk/credential-provider-sso/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/credential-provider-sso",
-  "version": "3.502.0",
+  "version": "3.503.1",
   "description": "AWS credential provider that exchanges a resolved SSO login token file for temporary AWS credentials",
   "main": "./dist-cjs/index.js",
   "module": "./dist-es/index.js",