@cloud-copilot/iam-expand 0.1.0

package/dist/expand.test.js

@@ -0,0 +1,382 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const expand_1 = require("./expand");
+const iam_data_1 = require("@cloud-copilot/iam-data");
+jest.mock('@cloud-copilot/iam-data');
+const mockGetActionsForService = iam_data_1.getActionsForService;
+const mockServiceExists = iam_data_1.serviceExists;
+const mockAllServiceKeys = iam_data_1.allServiceKeys;
+beforeEach(() => {
+    jest.resetAllMocks();
+});
+describe("expand", () => {
+    it("should return an empty array when actionString is null", () => {
+        //Given actionString is null
+        const actionString = null;
+        //When expand is called with actionString
+        const result = (0, expand_1.expandIamActions)(actionString);
+        //Then result should be an empty array
+        expect(result).toEqual([]);
+    });
+    it("should return '*' when actionString is '*' and expandAsterik is false", () => {
+        //Given actionString is '*'
+        const actionString = '*';
+        //When expand is called with actionString
+        const result = (0, expand_1.expandIamActions)(actionString);
+        //Then result should be '*'
+        expect(result).toEqual(['*']);
+    });
+    it("should expand all actions for all services when actionString is '*' and expandAsterik is true", () => {
+        //Given actionString is '*'
+        const actionString = '*';
+        //And expandAsterik is true
+        const options = { expandAsterik: true };
+        //And there are services
+        mockAllServiceKeys.mockReturnValue(['s3', 'ec2']);
+        //And there are actions for the services
+        mockGetActionsForService.mockImplementation(service => {
+            if (service === 's3') {
+                return ['action1', 'action2'];
+            }
+            if (service === 'ec2') {
+                return ['action3', 'action4'];
+            }
+            return [];
+        });
+        //When expand is called with actionString and options
+        const result = (0, expand_1.expandIamActions)(actionString, options);
+        //Then result should be an array of all actions for all services
+        expect(result.sort()).toEqual([
+            'ec2:action3',
+            'ec2:action4',
+            's3:action1',
+            's3:action2'
+        ]);
+    });
+    it("should do a case insensitive match for the service in the action string", () => {
+        //Given actionString is 'S3:GetObject'
+        const actionString = 'S3:get*';
+        //And s3 service exists
+        mockServiceExists.mockImplementation((s) => s === 's3');
+        //And there are matching actions
+        mockGetActionsForService.mockReturnValue(['GetObject']);
+        //When expand is called with actionString
+        const result = (0, expand_1.expandIamActions)(actionString);
+        //Then result should be an array with the actionString
+        expect(result).toEqual(['s3:GetObject']);
+    });
+    it("should return the action string as is when it does not contain wildcards", () => {
+        //Given actionString contains no wildcards
+        const actionString = 's3:GetObject';
+        //And the service and action exist
+        mockServiceExists.mockReturnValue(true);
+        mockGetActionsForService.mockReturnValue(['GetObject']);
+        //When expand is called with actionString
+        const result = (0, expand_1.expandIamActions)(actionString);
+        //Then result should be an array with the actionString
+        expect(result).toEqual([actionString]);
+    });
+    describe("when the actions string is in the wrong format", () => {
+        it("should return an empty array when there are too many parts and errorOnInvalidFormat is false", () => {
+            //Given actionString is in the wrong format
+            const actionString = 's3:GetObject:Extra*';
+            //And errorOnInvalidFormat is false
+            const options = { errorOnInvalidFormat: false };
+            //When expand is called with actionString
+            const result = (0, expand_1.expandIamActions)(actionString, options);
+            //Then result should be an empty array
+            expect(result).toEqual([]);
+        });
+        it("should return an empty array when there are too few parts and errorOnInvalidFormat is false", () => {
+            //Given actionString has no :
+            const actionString = 's3GetObject*';
+            //And errorOnInvalidFormat is false
+            const options = { errorOnInvalidFormat: false };
+            //When expand is called with actionString
+            const result = (0, expand_1.expandIamActions)(actionString, options);
+            //Then result should be an empty array
+            expect(result).toEqual([]);
+        });
+        it("should throw an error when there are too many parts and errorOnInvalidFormat is true", () => {
+            //Given actionString is in the wrong format
+            const actionString = 's3:GetObject:Extra*';
+            //And errorOnInvalidFormat is true
+            const options = { errorOnInvalidFormat: true };
+            //When expand is called with actionString
+            //Then an error should be thrown
+            expect(() => (0, expand_1.expandIamActions)(actionString, options)).toThrowError('Invalid action format');
+        });
+        it("should throw an error when there are too few parts and errorOnInvalidFormat is true", () => {
+            //Given actionString has no :
+            const actionString = 's3GetObject*';
+            //And errorOnInvalidFormat is true
+            const options = { errorOnInvalidFormat: true };
+            //When expand is called with actionString
+            //Then an error should be thrown
+            expect(() => (0, expand_1.expandIamActions)(actionString, options)).toThrowError('Invalid action format');
+        });
+    });
+    describe("when the service in the action string does not exist", () => {
+        it("should return an empty array when errorOnMissingService is false", () => {
+            //Given actionString contains a service that does not exist
+            const actionString = 'fake:GetObject*';
+            //And errorOnMissingService is false
+            const options = { errorOnMissingService: false };
+            //When expand is called with actionString
+            const result = (0, expand_1.expandIamActions)(actionString, options);
+            //Then result should be an empty array
+            expect(result).toEqual([]);
+        });
+        it("should throw an error when errorOnMissingService is true", () => {
+            //Given actionString contains a service that does not exist
+            const actionString = 'fake:GetObject*';
+            //And errorOnMissingService is true
+            const options = { errorOnMissingService: true };
+            //When expand is called with actionString
+            //Then an error should be thrown
+            expect(() => (0, expand_1.expandIamActions)(actionString, options)).toThrowError('Service not found');
+        });
+    });
+    describe("when the action string contains a wildcard for a service", () => {
+        it("should expand not expand the wildcard when expandServiceAsterik is false", () => {
+            //Given actionString is 's3:*'
+            const actionString = 's3:*';
+            //And expandServiceAsterik is false
+            const options = { expandServiceAsterik: false };
+            //And s3 service exists
+            mockServiceExists.mockReturnValue(true);
+            //And there are matching actions
+            mockGetActionsForService.mockReturnValue(['GetObject', 'PutObject']);
+            //When expand is called with actionString
+            const result = (0, expand_1.expandIamActions)(actionString, options);
+            //Then result should be an array with the original string
+            expect(result).toEqual([actionString]);
+        });
+        it("should expand the wildcard when expandServiceAsterik is true", () => {
+            //Given actionString is 's3:*'
+            const actionString = 's3:*';
+            //And expandServiceAsterik is true
+            const options = { expandServiceAsterik: true };
+            //And s3 service exists
+            mockServiceExists.mockReturnValue(true);
+            //And there are matching actions
+            mockGetActionsForService.mockReturnValue(['GetObject', 'PutObject']);
+            //When expand is called with actionString
+            const result = (0, expand_1.expandIamActions)(actionString, options);
+            //Then result should be an array of actions
+            expect(result).toEqual([
+                's3:GetObject',
+                's3:PutObject'
+            ]);
+        });
+    });
+    describe("when the action string contains wildcards", () => {
+        it('should expand the wildcard actions at the end', () => {
+            //Given actionString is 's3:Get*'
+            const actionString = 's3:Get*';
+            //And s3 service exists
+            mockServiceExists.mockReturnValue(true);
+            //And there are matching actions
+            mockGetActionsForService.mockReturnValue([
+                'GetObject',
+                'GetObjectAcl',
+                'GetObjectTagging',
+                'GetObjectTorrent',
+                'PutObject',
+                'PutObjectAcl',
+                'SomethingGetSomething'
+            ]);
+            //When expand is called with actionString
+            const result = (0, expand_1.expandIamActions)(actionString);
+            //Then result should be an array of actions
+            expect(result).toEqual([
+                's3:GetObject',
+                's3:GetObjectAcl',
+                's3:GetObjectTagging',
+                's3:GetObjectTorrent'
+            ]);
+        });
+        it('should expand the wildcard actions at the beginning', () => {
+            //Given actionString is 's3:*Object'
+            const actionString = 's3:*Object';
+            //And s3 service exists
+            mockServiceExists.mockReturnValue(true);
+            //And there are matching actions
+            mockGetActionsForService.mockReturnValue([
+                'GetObject',
+                'GetObjectAcl',
+                'GetObjectTagging',
+                'GetObjectTorrent',
+                'PutObject',
+                'PutObjectAcl',
+                'SomethingGetSomething'
+            ]);
+            //When expand is called with actionString
+            const result = (0, expand_1.expandIamActions)(actionString);
+            //Then result should be an array of actions
+            expect(result).toEqual([
+                's3:GetObject',
+                's3:PutObject'
+            ]);
+        });
+        it('should expand the wildcard actions in the middle', () => {
+            //Given actionString is 's3:Get*Tagging'
+            const actionString = 's3:Get*Tagging';
+            //And s3 service exists
+            mockServiceExists.mockReturnValue(true);
+            //And there are matching actions
+            mockGetActionsForService.mockReturnValue([
+                'GetObject',
+                'GetObjectAcl',
+                'GetObjectTagging',
+                'GetBanskyTagging',
+                'GetObjectTorrent',
+                'PutObject',
+                'PutObjectAcl',
+                'SomethingGetSomething'
+            ]);
+            //When expand is called with actionString
+            const result = (0, expand_1.expandIamActions)(actionString);
+            //Then result should be an array of actions
+            expect(result).toEqual([
+                's3:GetObjectTagging',
+                's3:GetBanskyTagging'
+            ]);
+        });
+        it('should expand multiple wildcards', () => {
+            //Given actionString is 's3:Get*Tagging*'
+            const actionString = 's3:Get*Tagging*';
+            //And s3 service exists
+            mockServiceExists.mockReturnValue(true);
+            //And there are matching actions
+            mockGetActionsForService.mockReturnValue([
+                'GetObject',
+                'GetObjectAcl',
+                'GetObjectTagging',
+                'GetBanskyTagging',
+                'GetTagging',
+                'GetObjectTorrent',
+                'GetSomethingTaggingSomething',
+                'PutObject',
+                'PutObjectAcl',
+                'SomethingGetSomething'
+            ]);
+            //When expand is called with actionString
+            const result = (0, expand_1.expandIamActions)(actionString);
+            //Then result should be an array of actions
+            expect(result).toEqual([
+                's3:GetObjectTagging',
+                's3:GetBanskyTagging',
+                's3:GetTagging',
+                's3:GetSomethingTaggingSomething'
+            ]);
+        });
+    });
+    describe("when actionStrings is an array", () => {
+        it("should return an empty array when actionStrings is an empty array", () => {
+            //Given actionStrings is an empty array
+            const actionStrings = [];
+            //When expand is called with actionStrings
+            const result = (0, expand_1.expandIamActions)(actionStrings);
+            //Then result should be an empty array
+            expect(result).toEqual([]);
+        });
+        it("should return an array of expanded actions when actionStrings is an array of action strings", () => {
+            //Given actionStrings is an array of action strings
+            const actionStrings = [
+                's3:Get*',
+                'ec2:*Instances'
+            ];
+            //And s3 and ec2 services exist
+            mockServiceExists.mockReturnValue(true);
+            //And there are actions for the services
+            mockGetActionsForService.mockImplementation(service => {
+                if (service === 's3') {
+                    return ['GetObject', 'GetObjectTagging', 'PutObject', 'PutObjectTagging'];
+                }
+                if (service === 'ec2') {
+                    return ['RunInstances', 'TerminateInstances'];
+                }
+                return [];
+            });
+            //When expand is called with actionStrings
+            const result = (0, expand_1.expandIamActions)(actionStrings);
+            //Then result should be an array of expanded actions
+            expect(result.sort()).toEqual([
+                'ec2:RunInstances',
+                'ec2:TerminateInstances',
+                's3:GetObject',
+                's3:GetObjectTagging',
+            ]);
+        });
+    });
+    describe("distinct option", () => {
+        it('should return all values when distinct is false', () => {
+            //Given two action strings
+            const actionString = ['s3:Get*', 's3:*Object'];
+            //And s3 service exists
+            mockServiceExists.mockReturnValue(true);
+            //And there are matching actions
+            mockGetActionsForService.mockReturnValue(['GetObject', 'PutObject', 'GetOtherObject']);
+            //When expand is called with actionString and distinct is false
+            const result = (0, expand_1.expandIamActions)(actionString, { distinct: false });
+            //Then result should be an array of actions, even if they are duplicates
+            expect(result).toEqual(['s3:GetObject', 's3:GetOtherObject', 's3:GetObject', 's3:PutObject', 's3:GetOtherObject']);
+        });
+        it('should return only unique values when distinct is true, and maintain order', () => {
+            //Given two action strings
+            const actionString = ['s3:Get*', 's3:*Object'];
+            //And s3 service exists
+            mockServiceExists.mockReturnValue(true);
+            //And there are matching actions
+            mockGetActionsForService.mockReturnValue(['GetObject', 'PutObject', 'GetOtherObject']);
+            //When expand is called with actionStrings and distinct is true
+            const result = (0, expand_1.expandIamActions)(actionString, { distinct: true });
+            //Then result should be an array of unique actions
+            expect(result).toEqual(['s3:GetObject', 's3:GetOtherObject', 's3:PutObject']);
+        });
+    });
+    describe("sort option", () => {
+        it('should return values in the order they were expanded when sort is false', () => {
+            //Given two action strings
+            const actionString = ['s3:Get*', 'ec2:Describe*'];
+            //And s3 service exists
+            mockServiceExists.mockReturnValue(true);
+            //And there are matching actions
+            mockGetActionsForService.mockImplementation(service => {
+                if (service === 's3') {
+                    return ['GetObject', 'GetBucket'];
+                }
+                if (service === 'ec2') {
+                    return ['DescribeInstances', 'DescribeVolumes'];
+                }
+                return [];
+            });
+            //When expand is called with actionStrings and sort is false
+            const result = (0, expand_1.expandIamActions)(actionString, { sort: false });
+            //Then result should be an array of actions in the order they were expanded
+            expect(result).toEqual(['s3:GetObject', 's3:GetBucket', 'ec2:DescribeInstances', 'ec2:DescribeVolumes']);
+        });
+        it('should return values sorted when sort is true', () => {
+            //Given two action strings
+            const actionString = ['s3:Get*', 'ec2:Describe*'];
+            //And s3 service exists
+            mockServiceExists.mockReturnValue(true);
+            //And there are matching actions
+            mockGetActionsForService.mockImplementation(service => {
+                if (service === 's3') {
+                    return ['GetObject', 'GetBucket'];
+                }
+                if (service === 'ec2') {
+                    return ['DescribeInstances', 'DescribeVolumes'];
+                }
+                return [];
+            });
+            //When expand is called with actionStrings and sort is false
+            const result = (0, expand_1.expandIamActions)(actionString, { sort: true });
+            //Then result should be an array of actions in the order they were expanded
+            expect(result).toEqual(['ec2:DescribeInstances', 'ec2:DescribeVolumes', 's3:GetBucket', 's3:GetObject']);
+        });
+    });
+});
+//# sourceMappingURL=expand.test.js.map

package/dist/expand.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"expand.test.js","sourceRoot":"","sources":["../src/expand.test.ts"],"names":[],"mappings":";;AAAA,qCAA2C;AAE3C,sDAA6F;AAC7F,IAAI,CAAC,IAAI,CAAC,yBAAyB,CAAC,CAAA;AACpC,MAAM,wBAAwB,GAAG,+BAAwE,CAAA;AACzG,MAAM,iBAAiB,GAAG,wBAA0D,CAAA;AACpF,MAAM,kBAAkB,GAAG,yBAA4D,CAAA;AAEvF,UAAU,CAAC,GAAG,EAAE;IACd,IAAI,CAAC,aAAa,EAAE,CAAA;AACtB,CAAC,CAAC,CAAA;AAEF,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;IACtB,EAAE,CAAC,wDAAwD,EAAE,GAAG,EAAE;QAChE,4BAA4B;QAC5B,MAAM,YAAY,GAAG,IAAI,CAAA;QACzB,yCAAyC;QACzC,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAmB,CAAC,CAAA;QACpD,sCAAsC;QACtC,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC,CAAA;IAC5B,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,uEAAuE,EAAE,GAAG,EAAE;QAC/E,2BAA2B;QAC3B,MAAM,YAAY,GAAG,GAAG,CAAA;QACxB,yCAAyC;QACzC,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAY,CAAC,CAAA;QAC7C,2BAA2B;QAC3B,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,CAAC,GAAG,CAAC,CAAC,CAAA;IAC/B,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,+FAA+F,EAAE,GAAG,EAAE;QACvG,2BAA2B;QAC3B,MAAM,YAAY,GAAG,GAAG,CAAA;QACxB,2BAA2B;QAC3B,MAAM,OAAO,GAAG,EAAE,aAAa,EAAE,IAAI,EAAE,CAAA;QACvC,wBAAwB;QACxB,kBAAkB,CAAC,eAAe,CAAC,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC,CAAA;QAEjD,wCAAwC;QACxC,wBAAwB,CAAC,kBAAkB,CAAC,OAAO,CAAC,EAAE;YACpD,IAAG,OAAO,KAAK,IAAI,EAAE,CAAC;gBACpB,OAAO,CAAC,SAAS,EAAE,SAAS,CAAC,CAAA;YAC/B,CAAC;YACD,IAAG,OAAO,KAAK,KAAK,EAAE,CAAC;gBACrB,OAAO,CAAC,SAAS,EAAE,SAAS,CAAC,CAAA;YAC/B,CAAC;YACD,OAAO,EAAE,CAAA;QACX,CAAC,CAAC,CAAA;QAEF,qDAAqD;QACrD,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAY,EAAE,OAAO,CAAC,CAAA;QACtD,gEAAgE;QAChE,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC,OAAO,CAAC;YAC5B,aAAa;YACb,aAAa;YACb,YAAY;YACZ,YAAY;SACb,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,yEAAyE,EAAE,GAAG,EAAE;QACjF,sCAAsC;QACtC,MAAM,YAAY,GAAG,SAAS,CAAA;QAC9B,uBAAuB;QACvB,iBAAiB,CAAC,kBAAkB,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,IAAI,CAAC,CAAA;QACvD,gCAAgC;QAChC,wBAAwB,CAAC,eAAe,CAAC,CAAC,WAAW,CAAC,CAAC,CAAA;QAEvD,yCAAyC;QACzC,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAY,CAAC,CAAA;QAE7C,sDAAsD;QACtD,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,CAAC,cAAc,CAAC,CAAC,CAAA;IAC1C,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,0EAA0E,EAAE,GAAG,EAAE;QAClF,0CAA0C;QAC1C,MAAM,YAAY,GAAG,cAAc,CAAA;QACnC,kCAAkC;QAClC,iBAAiB,CAAC,eAAe,CAAC,IAAI,CAAC,CAAA;QACvC,wBAAwB,CAAC,eAAe,CAAC,CAAC,WAAW,CAAC,CAAC,CAAA;QAEvD,yCAAyC;QACzC,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAY,CAAC,CAAA;QAE7C,sDAAsD;QACtD,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,CAAC,YAAY,CAAC,CAAC,CAAA;IACxC,CAAC,CAAC,CAAA;IAEF,QAAQ,CAAC,gDAAgD,EAAE,GAAG,EAAE;QAC9D,EAAE,CAAC,8FAA8F,EAAE,GAAG,EAAE;YACtG,2CAA2C;YAC3C,MAAM,YAAY,GAAG,qBAAqB,CAAA;YAC1C,mCAAmC;YACnC,MAAM,OAAO,GAAG,EAAE,oBAAoB,EAAE,KAAK,EAAE,CAAA;YAE/C,yCAAyC;YACzC,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAY,EAAE,OAAO,CAAC,CAAA;YAEtD,sCAAsC;YACtC,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC,CAAA;QAC5B,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,6FAA6F,EAAE,GAAG,EAAE;YACrG,6BAA6B;YAC7B,MAAM,YAAY,GAAG,cAAc,CAAA;YACnC,mCAAmC;YACnC,MAAM,OAAO,GAAG,EAAE,oBAAoB,EAAE,KAAK,EAAE,CAAA;YAE/C,yCAAyC;YACzC,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAY,EAAE,OAAO,CAAC,CAAA;YAEtD,sCAAsC;YACtC,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC,CAAA;QAC5B,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,sFAAsF,EAAE,GAAG,EAAE;YAC9F,2CAA2C;YAC3C,MAAM,YAAY,GAAG,qBAAqB,CAAA;YAC1C,kCAAkC;YAClC,MAAM,OAAO,GAAG,EAAE,oBAAoB,EAAE,IAAI,EAAE,CAAA;YAE9C,yCAAyC;YACzC,gCAAgC;YAChC,MAAM,CAAC,GAAG,EAAE,CAAC,IAAA,yBAAgB,EAAC,YAAY,EAAE,OAAO,CAAC,CAAC,CAAC,YAAY,CAAC,uBAAuB,CAAC,CAAA;QAC7F,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,qFAAqF,EAAE,GAAG,EAAE;YAC7F,6BAA6B;YAC7B,MAAM,YAAY,GAAG,cAAc,CAAA;YACnC,kCAAkC;YAClC,MAAM,OAAO,GAAG,EAAE,oBAAoB,EAAE,IAAI,EAAE,CAAA;YAE9C,yCAAyC;YACzC,gCAAgC;YAChC,MAAM,CAAC,GAAG,EAAE,CAAC,IAAA,yBAAgB,EAAC,YAAY,EAAE,OAAO,CAAC,CAAC,CAAC,YAAY,CAAC,uBAAuB,CAAC,CAAA;QAC7F,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,QAAQ,CAAC,sDAAsD,EAAE,GAAG,EAAE;QACpE,EAAE,CAAC,kEAAkE,EAAE,GAAG,EAAE;YAC1E,2DAA2D;YAC3D,MAAM,YAAY,GAAG,iBAAiB,CAAA;YACtC,oCAAoC;YACpC,MAAM,OAAO,GAAG,EAAE,qBAAqB,EAAE,KAAK,EAAE,CAAA;YAEhD,yCAAyC;YACzC,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAY,EAAE,OAAO,CAAC,CAAA;YAEtD,sCAAsC;YACtC,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC,CAAA;QAC5B,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,0DAA0D,EAAE,GAAG,EAAE;YAClE,2DAA2D;YAC3D,MAAM,YAAY,GAAG,iBAAiB,CAAA;YACtC,mCAAmC;YACnC,MAAM,OAAO,GAAG,EAAE,qBAAqB,EAAE,IAAI,EAAE,CAAA;YAE/C,yCAAyC;YACzC,gCAAgC;YAChC,MAAM,CAAC,GAAG,EAAE,CAAC,IAAA,yBAAgB,EAAC,YAAY,EAAE,OAAO,CAAC,CAAC,CAAC,YAAY,CAAC,mBAAmB,CAAC,CAAA;QACzF,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,QAAQ,CAAC,0DAA0D,EAAE,GAAG,EAAE;QACxE,EAAE,CAAC,0EAA0E,EAAE,GAAG,EAAE;YAClF,8BAA8B;YAC9B,MAAM,YAAY,GAAG,MAAM,CAAA;YAC3B,mCAAmC;YACnC,MAAM,OAAO,GAAG,EAAE,oBAAoB,EAAE,KAAK,EAAE,CAAA;YAC/C,uBAAuB;YACvB,iBAAiB,CAAC,eAAe,CAAC,IAAI,CAAC,CAAA;YACvC,gCAAgC;YAChC,wBAAwB,CAAC,eAAe,CAAC,CAAC,WAAW,EAAE,WAAW,CAAC,CAAC,CAAA;YAEpE,yCAAyC;YACzC,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAY,EAAE,OAAO,CAAC,CAAA;YAEtD,yDAAyD;YACzD,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,CAAC,YAAY,CAAC,CAAC,CAAA;QACxC,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,8DAA8D,EAAE,GAAG,EAAE;YACtE,8BAA8B;YAC9B,MAAM,YAAY,GAAG,MAAM,CAAA;YAC3B,kCAAkC;YAClC,MAAM,OAAO,GAAG,EAAE,oBAAoB,EAAE,IAAI,EAAE,CAAA;YAC9C,uBAAuB;YACvB,iBAAiB,CAAC,eAAe,CAAC,IAAI,CAAC,CAAA;YACvC,gCAAgC;YAChC,wBAAwB,CAAC,eAAe,CAAC,CAAC,WAAW,EAAE,WAAW,CAAC,CAAC,CAAA;YAEpE,yCAAyC;YACzC,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAY,EAAE,OAAO,CAAC,CAAA;YAEtD,2CAA2C;YAC3C,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC;gBACrB,cAAc;gBACd,cAAc;aACf,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAGF,QAAQ,CAAC,2CAA2C,EAAE,GAAG,EAAE;QACzD,EAAE,CAAC,+CAA+C,EAAE,GAAG,EAAE;YACvD,iCAAiC;YACjC,MAAM,YAAY,GAAG,SAAS,CAAA;YAC9B,uBAAuB;YACvB,iBAAiB,CAAC,eAAe,CAAC,IAAI,CAAC,CAAA;YACvC,gCAAgC;YAChC,wBAAwB,CAAC,eAAe,CAAC;gBACvC,WAAW;gBACX,cAAc;gBACd,kBAAkB;gBAClB,kBAAkB;gBAClB,WAAW;gBACX,cAAc;gBACd,uBAAuB;aACxB,CAAC,CAAA;YAEF,yCAAyC;YACzC,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAY,CAAC,CAAA;YAC7C,2CAA2C;YAC3C,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC;gBACrB,cAAc;gBACd,iBAAiB;gBACjB,qBAAqB;gBACrB,qBAAqB;aACtB,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,qDAAqD,EAAE,GAAG,EAAE;YAC7D,oCAAoC;YACpC,MAAM,YAAY,GAAG,YAAY,CAAA;YACjC,uBAAuB;YACvB,iBAAiB,CAAC,eAAe,CAAC,IAAI,CAAC,CAAA;YACvC,gCAAgC;YAChC,wBAAwB,CAAC,eAAe,CAAC;gBACvC,WAAW;gBACX,cAAc;gBACd,kBAAkB;gBAClB,kBAAkB;gBAClB,WAAW;gBACX,cAAc;gBACd,uBAAuB;aACxB,CAAC,CAAA;YAEF,yCAAyC;YACzC,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAY,CAAC,CAAA;YAC7C,2CAA2C;YAC3C,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC;gBACrB,cAAc;gBACd,cAAc;aACf,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,kDAAkD,EAAE,GAAG,EAAE;YAC1D,wCAAwC;YACxC,MAAM,YAAY,GAAG,gBAAgB,CAAA;YACrC,uBAAuB;YACvB,iBAAiB,CAAC,eAAe,CAAC,IAAI,CAAC,CAAA;YACvC,gCAAgC;YAChC,wBAAwB,CAAC,eAAe,CAAC;gBACvC,WAAW;gBACX,cAAc;gBACd,kBAAkB;gBAClB,kBAAkB;gBAClB,kBAAkB;gBAClB,WAAW;gBACX,cAAc;gBACd,uBAAuB;aACxB,CAAC,CAAA;YAEF,yCAAyC;YACzC,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAY,CAAC,CAAA;YAC7C,2CAA2C;YAC3C,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC;gBACrB,qBAAqB;gBACrB,qBAAqB;aACtB,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,kCAAkC,EAAE,GAAG,EAAE;YAC1C,yCAAyC;YACzC,MAAM,YAAY,GAAG,iBAAiB,CAAA;YACtC,uBAAuB;YACvB,iBAAiB,CAAC,eAAe,CAAC,IAAI,CAAC,CAAA;YACvC,gCAAgC;YAChC,wBAAwB,CAAC,eAAe,CAAC;gBACvC,WAAW;gBACX,cAAc;gBACd,kBAAkB;gBAClB,kBAAkB;gBAClB,YAAY;gBACZ,kBAAkB;gBAClB,8BAA8B;gBAC9B,WAAW;gBACX,cAAc;gBACd,uBAAuB;aACxB,CAAC,CAAA;YAEF,yCAAyC;YACzC,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAY,CAAC,CAAA;YAC7C,2CAA2C;YAC3C,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC;gBACrB,qBAAqB;gBACrB,qBAAqB;gBACrB,eAAe;gBACf,iCAAiC;aAClC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,QAAQ,CAAC,gCAAgC,EAAE,GAAG,EAAE;QAC9C,EAAE,CAAC,mEAAmE,EAAE,GAAG,EAAE;YAC3E,uCAAuC;YACvC,MAAM,aAAa,GAAa,EAAE,CAAA;YAElC,0CAA0C;YAC1C,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,aAAa,CAAC,CAAA;YAE9C,sCAAsC;YACtC,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC,CAAA;QAC5B,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,6FAA6F,EAAE,GAAG,EAAE;YACrG,mDAAmD;YACnD,MAAM,aAAa,GAAG;gBACpB,SAAS;gBACT,gBAAgB;aACjB,CAAA;YACD,+BAA+B;YAC/B,iBAAiB,CAAC,eAAe,CAAC,IAAI,CAAC,CAAA;YACvC,wCAAwC;YACxC,wBAAwB,CAAC,kBAAkB,CAAC,OAAO,CAAC,EAAE;gBACpD,IAAG,OAAO,KAAK,IAAI,EAAE,CAAC;oBACpB,OAAO,CAAC,WAAW,EAAE,kBAAkB,EAAE,WAAW,EAAE,kBAAkB,CAAC,CAAA;gBAC3E,CAAC;gBACD,IAAG,OAAO,KAAK,KAAK,EAAE,CAAC;oBACrB,OAAO,CAAC,cAAc,EAAE,oBAAoB,CAAC,CAAA;gBAC/C,CAAC;gBACD,OAAO,EAAE,CAAA;YACX,CAAC,CAAC,CAAA;YAEF,0CAA0C;YAC1C,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,aAAa,CAAC,CAAA;YAE9C,oDAAoD;YACpD,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC,OAAO,CAAC;gBAC5B,kBAAkB;gBAClB,wBAAwB;gBACxB,cAAc;gBACd,qBAAqB;aACtB,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,QAAQ,CAAC,iBAAiB,EAAE,GAAG,EAAE;QAC/B,EAAE,CAAC,iDAAiD,EAAE,GAAG,EAAE;YACzD,0BAA0B;YAC1B,MAAM,YAAY,GAAG,CAAC,SAAS,EAAC,YAAY,CAAC,CAAA;YAC7C,uBAAuB;YACvB,iBAAiB,CAAC,eAAe,CAAC,IAAI,CAAC,CAAA;YACvC,gCAAgC;YAChC,wBAAwB,CAAC,eAAe,CAAC,CAAC,WAAW,EAAE,WAAW,EAAE,gBAAgB,CAAC,CAAC,CAAA;YAEtF,+DAA+D;YAC/D,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAY,EAAE,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,CAAA;YAElE,wEAAwE;YACxE,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,CAAC,cAAc,EAAE,mBAAmB,EAAE,cAAc,EAAE,cAAc,EAAE,mBAAmB,CAAC,CAAC,CAAA;QACpH,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,4EAA4E,EAAE,GAAG,EAAE;YACpF,0BAA0B;YAC1B,MAAM,YAAY,GAAG,CAAC,SAAS,EAAC,YAAY,CAAC,CAAA;YAC7C,uBAAuB;YACvB,iBAAiB,CAAC,eAAe,CAAC,IAAI,CAAC,CAAA;YACvC,gCAAgC;YAChC,wBAAwB,CAAC,eAAe,CAAC,CAAC,WAAW,EAAE,WAAW,EAAE,gBAAgB,CAAC,CAAC,CAAA;YAEtF,+DAA+D;YAC/D,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAY,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAA;YACjE,kDAAkD;YAClD,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,CAAC,cAAc,EAAE,mBAAmB,EAAE,cAAc,CAAC,CAAC,CAAA;QAC/E,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,QAAQ,CAAC,aAAa,EAAE,GAAG,EAAE;QAC3B,EAAE,CAAC,yEAAyE,EAAE,GAAG,EAAE;YACjF,0BAA0B;YAC1B,MAAM,YAAY,GAAG,CAAC,SAAS,EAAC,eAAe,CAAC,CAAA;YAChD,uBAAuB;YACvB,iBAAiB,CAAC,eAAe,CAAC,IAAI,CAAC,CAAA;YACvC,gCAAgC;YAChC,wBAAwB,CAAC,kBAAkB,CAAC,OAAO,CAAC,EAAE;gBACpD,IAAG,OAAO,KAAK,IAAI,EAAE,CAAC;oBACpB,OAAO,CAAC,WAAW,EAAE,WAAW,CAAC,CAAA;gBACnC,CAAC;gBACD,IAAG,OAAO,KAAK,KAAK,EAAE,CAAC;oBACrB,OAAO,CAAC,mBAAmB,EAAE,iBAAiB,CAAC,CAAA;gBACjD,CAAC;gBACD,OAAO,EAAE,CAAA;YACX,CAAC,CAAC,CAAA;YAEF,4DAA4D;YAC5D,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAY,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAA;YAC9D,2EAA2E;YAC3E,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,CAAC,cAAc,EAAE,cAAc,EAAE,uBAAuB,EAAE,qBAAqB,CAAC,CAAC,CAAA;QAC1G,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,+CAA+C,EAAE,GAAG,EAAE;YACvD,0BAA0B;YAC1B,MAAM,YAAY,GAAG,CAAC,SAAS,EAAC,eAAe,CAAC,CAAA;YAChD,uBAAuB;YACvB,iBAAiB,CAAC,eAAe,CAAC,IAAI,CAAC,CAAA;YACvC,gCAAgC;YAChC,wBAAwB,CAAC,kBAAkB,CAAC,OAAO,CAAC,EAAE;gBACpD,IAAG,OAAO,KAAK,IAAI,EAAE,CAAC;oBACpB,OAAO,CAAC,WAAW,EAAE,WAAW,CAAC,CAAA;gBACnC,CAAC;gBACD,IAAG,OAAO,KAAK,KAAK,EAAE,CAAC;oBACrB,OAAO,CAAC,mBAAmB,EAAE,iBAAiB,CAAC,CAAA;gBACjD,CAAC;gBACD,OAAO,EAAE,CAAA;YACX,CAAC,CAAC,CAAA;YAEF,4DAA4D;YAC5D,MAAM,MAAM,GAAG,IAAA,yBAAgB,EAAC,YAAY,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC,CAAA;YAC7D,2EAA2E;YAC3E,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,CAAC,uBAAuB,EAAE,qBAAqB,EAAE,cAAc,EAAE,cAAc,CAAC,CAAC,CAAA;QAC1G,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;AAGJ,CAAC,CAAC,CAAA"}

package/dist/index.d.ts

@@ -0,0 +1,2 @@
+export * from './expand';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,UAAU,CAAC"}

package/dist/index.js

@@ -0,0 +1,18 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./expand"), exports);
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,2CAAyB"}

package/dist/stdin.d.ts

@@ -0,0 +1,7 @@
+/**
+ * Read from stdin until the stream ends, timeout, or an error occurs
+ *
+ * @returns the string input from stdin
+ */
+export declare function readStdin(readWait: number | undefined): Promise<string>;
+//# sourceMappingURL=stdin.d.ts.map

package/dist/stdin.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"stdin.d.ts","sourceRoot":"","sources":["../src/stdin.ts"],"names":[],"mappings":"AACA;;;;GAIG;AACH,wBAAsB,SAAS,CAAC,QAAQ,EAAE,MAAM,GAAG,SAAS,GAAG,OAAO,CAAC,MAAM,CAAC,CA4B7E"}

package/dist/stdin.js

@@ -0,0 +1,35 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.readStdin = readStdin;
+const process_1 = require("process");
+/**
+ * Read from stdin until the stream ends, timeout, or an error occurs
+ *
+ * @returns the string input from stdin
+ */
+async function readStdin(readWait) {
+    return new Promise((resolve, reject) => {
+        // If the input is not a TTY, we are most likely receiving data from a pipe.
+        const definitelyReceivingData = !process.stdin.isTTY;
+        if (!readWait || readWait <= 0) {
+            readWait = definitelyReceivingData ? 10_000 : 20;
+        }
+        let data = '';
+        setTimeout(() => {
+            if (data.length === 0) {
+                resolve(data);
+            }
+        }, readWait);
+        process_1.stdin.on('data', (chunk) => {
+            data += chunk;
+        });
+        process_1.stdin.on('end', () => {
+            console.log('end');
+            resolve(data);
+        });
+        process_1.stdin.on('error', (err) => {
+            reject(err);
+        });
+    });
+}
+//# sourceMappingURL=stdin.js.map

package/dist/stdin.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"stdin.js","sourceRoot":"","sources":["../src/stdin.ts"],"names":[],"mappings":";;AAMA,8BA4BC;AAlCD,qCAAgC;AAChC;;;;GAIG;AACI,KAAK,UAAU,SAAS,CAAC,QAA4B;IAC1D,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,4EAA4E;QAC5E,MAAM,uBAAuB,GAAG,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAA;QACpD,IAAG,CAAC,QAAQ,IAAI,QAAQ,IAAI,CAAC,EAAE,CAAC;YAC9B,QAAQ,GAAG,uBAAuB,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAA;QAClD,CAAC;QAED,IAAI,IAAI,GAAG,EAAE,CAAC;QACd,UAAU,CAAC,GAAG,EAAE;YACd,IAAG,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACrB,OAAO,CAAC,IAAI,CAAC,CAAA;YACf,CAAC;QACH,CAAC,EAAE,QAAQ,CAAC,CAAA;QAEZ,eAAK,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAK,EAAE,EAAE;YACzB,IAAI,IAAI,KAAK,CAAC;QAChB,CAAC,CAAC,CAAC;QAEH,eAAK,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE;YACnB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,CAAA;YAClB,OAAO,CAAC,IAAI,CAAC,CAAC;QAChB,CAAC,CAAC,CAAC;QAEH,eAAK,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;YACxB,MAAM,CAAC,GAAG,CAAC,CAAC;QACd,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC"}

package/package.json

@@ -0,0 +1,33 @@
+{
+  "name": "@cloud-copilot/iam-expand",
+  "version": "0.1.0",
+  "description": "Expand AWS IAM Actions with Wildcards",
+  "repository": "github:cloud-copilot/iam-expand",
+  "exports": {
+    ".": {
+      "import": "./dist/esm/index.js",
+      "require": "./dist/cjs/index.js"
+    }
+  },
+  "bin": {
+    "iam-expand": "./dist/cjs/cli.js"
+  },
+  "scripts": {
+    "build": "npx tsc -p tsconfig.cjs.json && npx tsc -p tsconfig.esm.json && ./postbuild.sh",
+    "test": "npx vitest --run"
+  },
+  "keywords": [
+    "AWS",
+    "IAM"
+  ],
+  "author": "David Kerber <dave@cloudcopilot.io>",
+  "license": "GPL-3.0-or-later",
+  "devDependencies": {
+    "@types/node": "^22.5.0",
+    "typescript": "^5.5.4",
+    "vitest": "^2.0.5"
+  },
+  "peerDependencies": {
+    "@cloud-copilot/iam-data": ">=0.2.0 <1.0.0"
+  }
+}

package/postbuild.sh

@@ -0,0 +1,13 @@
+cat >dist/cjs/package.json <<!EOF
+{
+    "type": "commonjs"
+}
+!EOF
+
+cat >dist/esm/package.json <<!EOF
+{
+    "type": "module"
+}
+!EOF
+
+chmod +x dist/**/cli.js

package/src/cli.ts

@@ -0,0 +1,82 @@
+#!/usr/bin/env node
+
+import { iamDataVersion } from "@cloud-copilot/iam-data";
+import { convertOptions, parseStdInActions } from "./cli_utils.js";
+import { expandIamActions, ExpandIamActionsOptions } from "./expand.js";
+
+const commandName = 'iam-expand'
+
+function expandAndPrint(actionStrings: string[], options: Partial<ExpandIamActionsOptions>) {
+  try {
+    const result = expandIamActions(actionStrings, options)
+    for (const action of result) {
+      console.log(action)
+    }
+  } catch (e: any) {
+    console.error(e.message)
+    process.exit(1)
+  }
+}
+
+function printUsage() {
+  console.log('No arguments provided or input from stdin.')
+  console.log('Usage:')
+  console.log(`  ${commandName} [options] [action1] [action2] ...`)
+  console.log(`  <input from stdout> | ${commandName} [options]`)
+  console.log('Action Expanding Options:')
+  console.log('  --distinct: Remove duplicate actions')
+  console.log('  --sort: Sort the actions')
+  console.log('  --expand-asterik: Expand the * action to all actions')
+  console.log('  --expand-service-asterik: Expand service:* to all actions for that service')
+  console.log('  --error-on-missing-service: Throw an error if a service is not found')
+  console.log('  --error-on-invalid-format: Throw an error if the action string is not in the correct format')
+  console.log('  --invalid-action-behavior: What to do when an invalid action is encountered:')
+  console.log('    --invalid-action-behavior=remove: Remove the invalid action')
+  console.log('    --invalid-action-behavior=include: Include the invalid action')
+  console.log('    --invalid-action-behavior=error: Throw an error if an invalid action is encountered')
+  console.log('CLI Behavior Options:')
+  console.log('  --show-data-version: Print the version of the iam-data package being used and exit')
+  console.log('  --read-wait-time: Millisenconds to wait for input from stdin before timing out.')
+  console.log('                    Example: --read-wait-time=10_000')
+  process.exit(1)
+}
+
+const args = process.argv.slice(2); // Ignore the first two elements
+const actionStrings: string[] = []
+const optionStrings: string[] = []
+
+for (const arg of args) {
+  if(arg.startsWith('--')) {
+    optionStrings.push(arg)
+  } else {
+    actionStrings.push(arg)
+  }
+}
+
+async function run() {
+  const options = convertOptions(optionStrings)
+  if(options.showDataVersion) {
+    console.log(`@cloud-copilot/iam-data version: ${iamDataVersion()}`)
+    return
+  }
+
+  if(actionStrings.length === 0) {
+    const otherActions = await parseStdInActions(options)
+    if(otherActions.length > 0 && options.expandAsterik) {
+      console.warn('Notice: --expand-asterik is not supported when reading from stdin, ignoring.')
+    }
+    actionStrings.push(...otherActions)
+  }
+
+  if(actionStrings.length > 0) {
+    expandAndPrint(actionStrings, options)
+    return
+  }
+
+  printUsage()
+}
+
+run().catch((e) => {
+  console.error(e)
+  process.exit(1)
+}).then(() => process.exit(0)).finally(() => {})