@cloudsnorkel/cdk-github-runners 0.14.24 → 0.15.1

package/assets/setup.lambda/index.js

@@ -300,7 +300,7 @@ function isKeyOperator(operator) {
 function getValues(context, operator, key, modifier) {
   var value = context[key], result = [];
   if (isDefined(value) && value !== "") {
-    if (typeof value === "string" || typeof value === "number" || typeof value === "boolean") {
+    if (typeof value === "string" || typeof value === "number" || typeof value === "bigint" || typeof value === "boolean") {
       value = value.toString();
       if (modifier && modifier !== "*") {
         value = value.substring(0, parseInt(modifier, 10));
@@ -595,6 +595,115 @@ var require_fast_content_type_parse = __commonJS({
   }
 });
 
+// node_modules/json-with-bigint/json-with-bigint.js
+var intRegex, noiseValue, originalStringify, originalParse, customFormat, bigIntsStringify, noiseStringify, JSONStringify, featureCache, isContextSourceSupported, convertMarkedBigIntsReviver, JSONParseV2, MAX_INT, MAX_DIGITS, stringsOrLargeNumbers, noiseValueWithQuotes, JSONParse;
+var init_json_with_bigint = __esm({
+  "node_modules/json-with-bigint/json-with-bigint.js"() {
+    "use strict";
+    intRegex = /^-?\d+$/;
+    noiseValue = /^-?\d+n+$/;
+    originalStringify = JSON.stringify;
+    originalParse = JSON.parse;
+    customFormat = /^-?\d+n$/;
+    bigIntsStringify = /([\[:])?"(-?\d+)n"($|([\\n]|\s)*(\s|[\\n])*[,\}\]])/g;
+    noiseStringify = /([\[:])?("-?\d+n+)n("$|"([\\n]|\s)*(\s|[\\n])*[,\}\]])/g;
+    JSONStringify = (value, replacer, space) => {
+      if ("rawJSON" in JSON) {
+        return originalStringify(
+          value,
+          (key, value2) => {
+            if (typeof value2 === "bigint") return JSON.rawJSON(value2.toString());
+            if (typeof replacer === "function") return replacer(key, value2);
+            if (Array.isArray(replacer) && replacer.includes(key)) return value2;
+            return value2;
+          },
+          space
+        );
+      }
+      if (!value) return originalStringify(value, replacer, space);
+      const convertedToCustomJSON = originalStringify(
+        value,
+        (key, value2) => {
+          const isNoise = typeof value2 === "string" && noiseValue.test(value2);
+          if (isNoise) return value2.toString() + "n";
+          if (typeof value2 === "bigint") return value2.toString() + "n";
+          if (typeof replacer === "function") return replacer(key, value2);
+          if (Array.isArray(replacer) && replacer.includes(key)) return value2;
+          return value2;
+        },
+        space
+      );
+      const processedJSON = convertedToCustomJSON.replace(
+        bigIntsStringify,
+        "$1$2$3"
+      );
+      const denoisedJSON = processedJSON.replace(noiseStringify, "$1$2$3");
+      return denoisedJSON;
+    };
+    featureCache = /* @__PURE__ */ new Map();
+    isContextSourceSupported = () => {
+      const parseFingerprint = JSON.parse.toString();
+      if (featureCache.has(parseFingerprint)) {
+        return featureCache.get(parseFingerprint);
+      }
+      try {
+        const result = JSON.parse(
+          "1",
+          (_, __, context) => !!context?.source && context.source === "1"
+        );
+        featureCache.set(parseFingerprint, result);
+        return result;
+      } catch {
+        featureCache.set(parseFingerprint, false);
+        return false;
+      }
+    };
+    convertMarkedBigIntsReviver = (key, value, context, userReviver) => {
+      const isCustomFormatBigInt = typeof value === "string" && customFormat.test(value);
+      if (isCustomFormatBigInt) return BigInt(value.slice(0, -1));
+      const isNoiseValue = typeof value === "string" && noiseValue.test(value);
+      if (isNoiseValue) return value.slice(0, -1);
+      if (typeof userReviver !== "function") return value;
+      return userReviver(key, value, context);
+    };
+    JSONParseV2 = (text, reviver) => {
+      return JSON.parse(text, (key, value, context) => {
+        const isBigNumber = typeof value === "number" && (value > Number.MAX_SAFE_INTEGER || value < Number.MIN_SAFE_INTEGER);
+        const isInt = context && intRegex.test(context.source);
+        const isBigInt = isBigNumber && isInt;
+        if (isBigInt) return BigInt(context.source);
+        if (typeof reviver !== "function") return value;
+        return reviver(key, value, context);
+      });
+    };
+    MAX_INT = Number.MAX_SAFE_INTEGER.toString();
+    MAX_DIGITS = MAX_INT.length;
+    stringsOrLargeNumbers = /"(?:\\.|[^"])*"|-?(0|[1-9][0-9]*)(\.[0-9]+)?([eE][+-]?[0-9]+)?/g;
+    noiseValueWithQuotes = /^"-?\d+n+"$/;
+    JSONParse = (text, reviver) => {
+      if (!text) return originalParse(text, reviver);
+      if (isContextSourceSupported()) return JSONParseV2(text, reviver);
+      const serializedData = text.replace(
+        stringsOrLargeNumbers,
+        (text2, digits, fractional, exponential) => {
+          const isString = text2[0] === '"';
+          const isNoise = isString && noiseValueWithQuotes.test(text2);
+          if (isNoise) return text2.substring(0, text2.length - 1) + 'n"';
+          const isFractionalOrExponential = fractional || exponential;
+          const isLessThanMaxSafeInt = digits && (digits.length < MAX_DIGITS || digits.length === MAX_DIGITS && digits <= MAX_INT);
+          if (isString || isFractionalOrExponential || isLessThanMaxSafeInt)
+            return text2;
+          return '"' + text2 + 'n"';
+        }
+      );
+      return originalParse(
+        serializedData,
+        (key, value, context) => convertMarkedBigIntsReviver(key, value, context, reviver)
+      );
+    };
+  }
+});
+
 // node_modules/@octokit/request-error/dist-src/index.js
 var RequestError;
 var init_dist_src = __esm({
@@ -658,7 +767,7 @@ async function fetchWrapper(requestOptions) {
   }
   const log = requestOptions.request?.log || console;
   const parseSuccessResponseBody = requestOptions.request?.parseSuccessResponseBody !== false;
-  const body = isPlainObject2(requestOptions.body) || Array.isArray(requestOptions.body) ? JSON.stringify(requestOptions.body) : requestOptions.body;
+  const body = isPlainObject2(requestOptions.body) || Array.isArray(requestOptions.body) ? JSONStringify(requestOptions.body) : requestOptions.body;
   const requestHeaders = Object.fromEntries(
     Object.entries(requestOptions.headers).map(([name, value]) => [
       name,
@@ -757,7 +866,7 @@ async function getResponseData(response2) {
     let text = "";
     try {
       text = await response2.text();
-      return JSON.parse(text);
+      return JSONParse(text);
     } catch (err) {
       return text;
     }
@@ -816,8 +925,9 @@ var init_dist_bundle2 = __esm({
     init_dist_bundle();
     init_universal_user_agent();
     import_fast_content_type_parse = __toESM(require_fast_content_type_parse(), 1);
+    init_json_with_bigint();
     init_dist_src();
-    VERSION2 = "10.0.7";
+    VERSION2 = "10.0.8";
     defaults_default = {
       headers: {
         "user-agent": `octokit-request.js/${VERSION2} ${getUserAgent()}`
@@ -3816,11 +3926,11 @@ var import_client_secrets_manager = require("@aws-sdk/client-secrets-manager");
 var sm = new import_client_secrets_manager.SecretsManagerClient();
 async function getSecretValue(arn) {
   if (!arn) {
-    throw new Error("Missing secret ARN");
+    throw new Error("Missing secret ARN. Check the Lambda configuration and required environment variables.");
   }
   const secret = await sm.send(new import_client_secrets_manager.GetSecretValueCommand({ SecretId: arn }));
   if (!secret.SecretString) {
-    throw new Error(`No SecretString in ${arn}`);
+    throw new Error("Secrets Manager getSecretValue returned no SecretString. This often indicates that the secret was stored as binary data (SecretBinary) instead of a string. Ensure the secret is stored in SecretString or update the code to handle SecretBinary.");
   }
   return secret.SecretString;
 }
@@ -3829,7 +3939,7 @@ async function getSecretJsonValue(arn) {
 }
 async function updateSecretValue(arn, value) {
   if (!arn) {
-    throw new Error("Missing secret ARN");
+    throw new Error("Missing secret ARN. Check the Lambda configuration and required environment variables.");
   }
   await sm.send(new import_client_secrets_manager.UpdateSecretCommand({ SecretId: arn, SecretString: value }));
 }
@@ -3977,7 +4087,7 @@ async function handler2(event) {
   } catch (e) {
     console.error({
       notice: "Setup handler failed",
-      error: `${e}`
+      error: e
     });
     return response(500, `<b>Error:</b> ${e}`);
   }

package/assets/status.lambda/index.js

@@ -300,7 +300,7 @@ function isKeyOperator(operator) {
 function getValues(context, operator, key, modifier) {
   var value = context[key], result = [];
   if (isDefined(value) && value !== "") {
-    if (typeof value === "string" || typeof value === "number" || typeof value === "boolean") {
+    if (typeof value === "string" || typeof value === "number" || typeof value === "bigint" || typeof value === "boolean") {
       value = value.toString();
       if (modifier && modifier !== "*") {
         value = value.substring(0, parseInt(modifier, 10));
@@ -595,6 +595,115 @@ var require_fast_content_type_parse = __commonJS({
   }
 });
 
+// node_modules/json-with-bigint/json-with-bigint.js
+var intRegex, noiseValue, originalStringify, originalParse, customFormat, bigIntsStringify, noiseStringify, JSONStringify, featureCache, isContextSourceSupported, convertMarkedBigIntsReviver, JSONParseV2, MAX_INT, MAX_DIGITS, stringsOrLargeNumbers, noiseValueWithQuotes, JSONParse;
+var init_json_with_bigint = __esm({
+  "node_modules/json-with-bigint/json-with-bigint.js"() {
+    "use strict";
+    intRegex = /^-?\d+$/;
+    noiseValue = /^-?\d+n+$/;
+    originalStringify = JSON.stringify;
+    originalParse = JSON.parse;
+    customFormat = /^-?\d+n$/;
+    bigIntsStringify = /([\[:])?"(-?\d+)n"($|([\\n]|\s)*(\s|[\\n])*[,\}\]])/g;
+    noiseStringify = /([\[:])?("-?\d+n+)n("$|"([\\n]|\s)*(\s|[\\n])*[,\}\]])/g;
+    JSONStringify = (value, replacer, space) => {
+      if ("rawJSON" in JSON) {
+        return originalStringify(
+          value,
+          (key, value2) => {
+            if (typeof value2 === "bigint") return JSON.rawJSON(value2.toString());
+            if (typeof replacer === "function") return replacer(key, value2);
+            if (Array.isArray(replacer) && replacer.includes(key)) return value2;
+            return value2;
+          },
+          space
+        );
+      }
+      if (!value) return originalStringify(value, replacer, space);
+      const convertedToCustomJSON = originalStringify(
+        value,
+        (key, value2) => {
+          const isNoise = typeof value2 === "string" && noiseValue.test(value2);
+          if (isNoise) return value2.toString() + "n";
+          if (typeof value2 === "bigint") return value2.toString() + "n";
+          if (typeof replacer === "function") return replacer(key, value2);
+          if (Array.isArray(replacer) && replacer.includes(key)) return value2;
+          return value2;
+        },
+        space
+      );
+      const processedJSON = convertedToCustomJSON.replace(
+        bigIntsStringify,
+        "$1$2$3"
+      );
+      const denoisedJSON = processedJSON.replace(noiseStringify, "$1$2$3");
+      return denoisedJSON;
+    };
+    featureCache = /* @__PURE__ */ new Map();
+    isContextSourceSupported = () => {
+      const parseFingerprint = JSON.parse.toString();
+      if (featureCache.has(parseFingerprint)) {
+        return featureCache.get(parseFingerprint);
+      }
+      try {
+        const result = JSON.parse(
+          "1",
+          (_, __, context) => !!context?.source && context.source === "1"
+        );
+        featureCache.set(parseFingerprint, result);
+        return result;
+      } catch {
+        featureCache.set(parseFingerprint, false);
+        return false;
+      }
+    };
+    convertMarkedBigIntsReviver = (key, value, context, userReviver) => {
+      const isCustomFormatBigInt = typeof value === "string" && customFormat.test(value);
+      if (isCustomFormatBigInt) return BigInt(value.slice(0, -1));
+      const isNoiseValue = typeof value === "string" && noiseValue.test(value);
+      if (isNoiseValue) return value.slice(0, -1);
+      if (typeof userReviver !== "function") return value;
+      return userReviver(key, value, context);
+    };
+    JSONParseV2 = (text, reviver) => {
+      return JSON.parse(text, (key, value, context) => {
+        const isBigNumber = typeof value === "number" && (value > Number.MAX_SAFE_INTEGER || value < Number.MIN_SAFE_INTEGER);
+        const isInt = context && intRegex.test(context.source);
+        const isBigInt = isBigNumber && isInt;
+        if (isBigInt) return BigInt(context.source);
+        if (typeof reviver !== "function") return value;
+        return reviver(key, value, context);
+      });
+    };
+    MAX_INT = Number.MAX_SAFE_INTEGER.toString();
+    MAX_DIGITS = MAX_INT.length;
+    stringsOrLargeNumbers = /"(?:\\.|[^"])*"|-?(0|[1-9][0-9]*)(\.[0-9]+)?([eE][+-]?[0-9]+)?/g;
+    noiseValueWithQuotes = /^"-?\d+n+"$/;
+    JSONParse = (text, reviver) => {
+      if (!text) return originalParse(text, reviver);
+      if (isContextSourceSupported()) return JSONParseV2(text, reviver);
+      const serializedData = text.replace(
+        stringsOrLargeNumbers,
+        (text2, digits, fractional, exponential) => {
+          const isString = text2[0] === '"';
+          const isNoise = isString && noiseValueWithQuotes.test(text2);
+          if (isNoise) return text2.substring(0, text2.length - 1) + 'n"';
+          const isFractionalOrExponential = fractional || exponential;
+          const isLessThanMaxSafeInt = digits && (digits.length < MAX_DIGITS || digits.length === MAX_DIGITS && digits <= MAX_INT);
+          if (isString || isFractionalOrExponential || isLessThanMaxSafeInt)
+            return text2;
+          return '"' + text2 + 'n"';
+        }
+      );
+      return originalParse(
+        serializedData,
+        (key, value, context) => convertMarkedBigIntsReviver(key, value, context, reviver)
+      );
+    };
+  }
+});
+
 // node_modules/@octokit/request-error/dist-src/index.js
 var RequestError;
 var init_dist_src = __esm({
@@ -658,7 +767,7 @@ async function fetchWrapper(requestOptions) {
   }
   const log = requestOptions.request?.log || console;
   const parseSuccessResponseBody = requestOptions.request?.parseSuccessResponseBody !== false;
-  const body = isPlainObject2(requestOptions.body) || Array.isArray(requestOptions.body) ? JSON.stringify(requestOptions.body) : requestOptions.body;
+  const body = isPlainObject2(requestOptions.body) || Array.isArray(requestOptions.body) ? JSONStringify(requestOptions.body) : requestOptions.body;
   const requestHeaders = Object.fromEntries(
     Object.entries(requestOptions.headers).map(([name, value]) => [
       name,
@@ -757,7 +866,7 @@ async function getResponseData(response) {
     let text = "";
     try {
       text = await response.text();
-      return JSON.parse(text);
+      return JSONParse(text);
     } catch (err) {
       return text;
     }
@@ -816,8 +925,9 @@ var init_dist_bundle2 = __esm({
     init_dist_bundle();
     init_universal_user_agent();
     import_fast_content_type_parse = __toESM(require_fast_content_type_parse(), 1);
+    init_json_with_bigint();
     init_dist_src();
-    VERSION2 = "10.0.7";
+    VERSION2 = "10.0.8";
     defaults_default = {
       headers: {
         "user-agent": `octokit-request.js/${VERSION2} ${getUserAgent()}`
@@ -2391,6 +2501,8 @@ function requiresAppAuth(url) {
 }
 function isNotTimeSkewError(error) {
   return !(error.message.match(
+    /'Expiration time' claim \('exp'\) is too far in the future/
+  ) || error.message.match(
     /'Expiration time' claim \('exp'\) must be a numeric value representing the future time at which the assertion expires/
   ) || error.message.match(
     /'Issued at' claim \('iat'\) must be an Integer representing the time that the assertion was issued/
@@ -2552,11 +2664,12 @@ var init_dist_node = __esm({
       "/marketplace_listing/stubbed/plans/{plan_id}/accounts",
       "/orgs/{org}/installation",
       "/repos/{owner}/{repo}/installation",
-      "/users/{username}/installation"
+      "/users/{username}/installation",
+      "/enterprises/{enterprise}/installation"
     ];
     REGEX = routeMatcher(PATHS);
     FIVE_SECONDS_IN_MS = 5 * 1e3;
-    VERSION8 = "8.1.2";
+    VERSION8 = "8.2.0";
   }
 });
 
@@ -2576,11 +2689,11 @@ var import_client_secrets_manager = require("@aws-sdk/client-secrets-manager");
 var sm = new import_client_secrets_manager.SecretsManagerClient();
 async function getSecretValue(arn) {
   if (!arn) {
-    throw new Error("Missing secret ARN");
+    throw new Error("Missing secret ARN. Check the Lambda configuration and required environment variables.");
   }
   const secret = await sm.send(new import_client_secrets_manager.GetSecretValueCommand({ SecretId: arn }));
   if (!secret.SecretString) {
-    throw new Error(`No SecretString in ${arn}`);
+    throw new Error("Secrets Manager getSecretValue returned no SecretString. This often indicates that the secret was stored as binary data (SecretBinary) instead of a string. Ensure the secret is stored in SecretString or update the code to handle SecretBinary.");
   }
   return secret.SecretString;
 }

package/assets/token-retriever.lambda/index.js

@@ -300,7 +300,7 @@ function isKeyOperator(operator) {
 function getValues(context, operator, key, modifier) {
   var value = context[key], result = [];
   if (isDefined(value) && value !== "") {
-    if (typeof value === "string" || typeof value === "number" || typeof value === "boolean") {
+    if (typeof value === "string" || typeof value === "number" || typeof value === "bigint" || typeof value === "boolean") {
       value = value.toString();
       if (modifier && modifier !== "*") {
         value = value.substring(0, parseInt(modifier, 10));
@@ -595,6 +595,115 @@ var require_fast_content_type_parse = __commonJS({
   }
 });
 
+// node_modules/json-with-bigint/json-with-bigint.js
+var intRegex, noiseValue, originalStringify, originalParse, customFormat, bigIntsStringify, noiseStringify, JSONStringify, featureCache, isContextSourceSupported, convertMarkedBigIntsReviver, JSONParseV2, MAX_INT, MAX_DIGITS, stringsOrLargeNumbers, noiseValueWithQuotes, JSONParse;
+var init_json_with_bigint = __esm({
+  "node_modules/json-with-bigint/json-with-bigint.js"() {
+    "use strict";
+    intRegex = /^-?\d+$/;
+    noiseValue = /^-?\d+n+$/;
+    originalStringify = JSON.stringify;
+    originalParse = JSON.parse;
+    customFormat = /^-?\d+n$/;
+    bigIntsStringify = /([\[:])?"(-?\d+)n"($|([\\n]|\s)*(\s|[\\n])*[,\}\]])/g;
+    noiseStringify = /([\[:])?("-?\d+n+)n("$|"([\\n]|\s)*(\s|[\\n])*[,\}\]])/g;
+    JSONStringify = (value, replacer, space) => {
+      if ("rawJSON" in JSON) {
+        return originalStringify(
+          value,
+          (key, value2) => {
+            if (typeof value2 === "bigint") return JSON.rawJSON(value2.toString());
+            if (typeof replacer === "function") return replacer(key, value2);
+            if (Array.isArray(replacer) && replacer.includes(key)) return value2;
+            return value2;
+          },
+          space
+        );
+      }
+      if (!value) return originalStringify(value, replacer, space);
+      const convertedToCustomJSON = originalStringify(
+        value,
+        (key, value2) => {
+          const isNoise = typeof value2 === "string" && noiseValue.test(value2);
+          if (isNoise) return value2.toString() + "n";
+          if (typeof value2 === "bigint") return value2.toString() + "n";
+          if (typeof replacer === "function") return replacer(key, value2);
+          if (Array.isArray(replacer) && replacer.includes(key)) return value2;
+          return value2;
+        },
+        space
+      );
+      const processedJSON = convertedToCustomJSON.replace(
+        bigIntsStringify,
+        "$1$2$3"
+      );
+      const denoisedJSON = processedJSON.replace(noiseStringify, "$1$2$3");
+      return denoisedJSON;
+    };
+    featureCache = /* @__PURE__ */ new Map();
+    isContextSourceSupported = () => {
+      const parseFingerprint = JSON.parse.toString();
+      if (featureCache.has(parseFingerprint)) {
+        return featureCache.get(parseFingerprint);
+      }
+      try {
+        const result = JSON.parse(
+          "1",
+          (_, __, context) => !!context?.source && context.source === "1"
+        );
+        featureCache.set(parseFingerprint, result);
+        return result;
+      } catch {
+        featureCache.set(parseFingerprint, false);
+        return false;
+      }
+    };
+    convertMarkedBigIntsReviver = (key, value, context, userReviver) => {
+      const isCustomFormatBigInt = typeof value === "string" && customFormat.test(value);
+      if (isCustomFormatBigInt) return BigInt(value.slice(0, -1));
+      const isNoiseValue = typeof value === "string" && noiseValue.test(value);
+      if (isNoiseValue) return value.slice(0, -1);
+      if (typeof userReviver !== "function") return value;
+      return userReviver(key, value, context);
+    };
+    JSONParseV2 = (text, reviver) => {
+      return JSON.parse(text, (key, value, context) => {
+        const isBigNumber = typeof value === "number" && (value > Number.MAX_SAFE_INTEGER || value < Number.MIN_SAFE_INTEGER);
+        const isInt = context && intRegex.test(context.source);
+        const isBigInt = isBigNumber && isInt;
+        if (isBigInt) return BigInt(context.source);
+        if (typeof reviver !== "function") return value;
+        return reviver(key, value, context);
+      });
+    };
+    MAX_INT = Number.MAX_SAFE_INTEGER.toString();
+    MAX_DIGITS = MAX_INT.length;
+    stringsOrLargeNumbers = /"(?:\\.|[^"])*"|-?(0|[1-9][0-9]*)(\.[0-9]+)?([eE][+-]?[0-9]+)?/g;
+    noiseValueWithQuotes = /^"-?\d+n+"$/;
+    JSONParse = (text, reviver) => {
+      if (!text) return originalParse(text, reviver);
+      if (isContextSourceSupported()) return JSONParseV2(text, reviver);
+      const serializedData = text.replace(
+        stringsOrLargeNumbers,
+        (text2, digits, fractional, exponential) => {
+          const isString = text2[0] === '"';
+          const isNoise = isString && noiseValueWithQuotes.test(text2);
+          if (isNoise) return text2.substring(0, text2.length - 1) + 'n"';
+          const isFractionalOrExponential = fractional || exponential;
+          const isLessThanMaxSafeInt = digits && (digits.length < MAX_DIGITS || digits.length === MAX_DIGITS && digits <= MAX_INT);
+          if (isString || isFractionalOrExponential || isLessThanMaxSafeInt)
+            return text2;
+          return '"' + text2 + 'n"';
+        }
+      );
+      return originalParse(
+        serializedData,
+        (key, value, context) => convertMarkedBigIntsReviver(key, value, context, reviver)
+      );
+    };
+  }
+});
+
 // node_modules/@octokit/request-error/dist-src/index.js
 var RequestError;
 var init_dist_src = __esm({
@@ -658,7 +767,7 @@ async function fetchWrapper(requestOptions) {
   }
   const log = requestOptions.request?.log || console;
   const parseSuccessResponseBody = requestOptions.request?.parseSuccessResponseBody !== false;
-  const body = isPlainObject2(requestOptions.body) || Array.isArray(requestOptions.body) ? JSON.stringify(requestOptions.body) : requestOptions.body;
+  const body = isPlainObject2(requestOptions.body) || Array.isArray(requestOptions.body) ? JSONStringify(requestOptions.body) : requestOptions.body;
   const requestHeaders = Object.fromEntries(
     Object.entries(requestOptions.headers).map(([name, value]) => [
       name,
@@ -757,7 +866,7 @@ async function getResponseData(response) {
     let text = "";
     try {
       text = await response.text();
-      return JSON.parse(text);
+      return JSONParse(text);
     } catch (err) {
       return text;
     }
@@ -816,8 +925,9 @@ var init_dist_bundle2 = __esm({
     init_dist_bundle();
     init_universal_user_agent();
     import_fast_content_type_parse = __toESM(require_fast_content_type_parse(), 1);
+    init_json_with_bigint();
     init_dist_src();
-    VERSION2 = "10.0.7";
+    VERSION2 = "10.0.8";
     defaults_default = {
       headers: {
         "user-agent": `octokit-request.js/${VERSION2} ${getUserAgent()}`
@@ -5040,6 +5150,8 @@ function requiresAppAuth(url) {
 }
 function isNotTimeSkewError(error) {
   return !(error.message.match(
+    /'Expiration time' claim \('exp'\) is too far in the future/
+  ) || error.message.match(
     /'Expiration time' claim \('exp'\) must be a numeric value representing the future time at which the assertion expires/
   ) || error.message.match(
     /'Issued at' claim \('iat'\) must be an Integer representing the time that the assertion was issued/
@@ -5201,11 +5313,12 @@ var init_dist_node = __esm({
       "/marketplace_listing/stubbed/plans/{plan_id}/accounts",
       "/orgs/{org}/installation",
       "/repos/{owner}/{repo}/installation",
-      "/users/{username}/installation"
+      "/users/{username}/installation",
+      "/enterprises/{enterprise}/installation"
     ];
     REGEX = routeMatcher(PATHS);
     FIVE_SECONDS_IN_MS = 5 * 1e3;
-    VERSION12 = "8.1.2";
+    VERSION12 = "8.2.0";
   }
 });
 
@@ -5224,11 +5337,11 @@ var import_client_secrets_manager = require("@aws-sdk/client-secrets-manager");
 var sm = new import_client_secrets_manager.SecretsManagerClient();
 async function getSecretValue(arn) {
   if (!arn) {
-    throw new Error("Missing secret ARN");
+    throw new Error("Missing secret ARN. Check the Lambda configuration and required environment variables.");
   }
   const secret = await sm.send(new import_client_secrets_manager.GetSecretValueCommand({ SecretId: arn }));
   if (!secret.SecretString) {
-    throw new Error(`No SecretString in ${arn}`);
+    throw new Error("Secrets Manager getSecretValue returned no SecretString. This often indicates that the secret was stored as binary data (SecretBinary) instead of a string. Ensure the secret is stored in SecretString or update the code to handle SecretBinary.");
   }
   return secret.SecretString;
 }