@devramps/cli 0.1.25 → 0.1.26

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (2) hide show
  1. package/dist/index.js +6 -6
  2. package/package.json +1 -1
package/dist/index.js CHANGED
@@ -2141,7 +2141,7 @@ function buildOrgRolePolicies(orgSlug) {
2141
2141
  // src/templates/pipeline-stack.ts
2142
2142
  function generatePipelineStackTemplate(options) {
2143
2143
  const { pipelineSlug, cicdAccountId, dockerArtifacts, bundleArtifacts, stageAccountIds } = options;
2144
- const allAccountIds = [.../* @__PURE__ */ new Set([cicdAccountId, ...stageAccountIds])];
2144
+ const crossAccountIds = stageAccountIds.filter((id) => id !== cicdAccountId);
2145
2145
  const template = createBaseTemplate(`DevRamps Pipeline Stack for ${pipelineSlug}`);
2146
2146
  const ecrOutputs = {};
2147
2147
  const s3Outputs = {};
@@ -2157,7 +2157,7 @@ function generatePipelineStackTemplate(options) {
2157
2157
  { Key: "ArtifactType", Value: artifact.type }
2158
2158
  ]
2159
2159
  );
2160
- if (stageAccountIds.length > 0) {
2160
+ if (crossAccountIds.length > 0) {
2161
2161
  template.Resources[resourceId].Properties.RepositoryPolicyText = {
2162
2162
  Version: "2012-10-17",
2163
2163
  Statement: [
@@ -2165,7 +2165,7 @@ function generatePipelineStackTemplate(options) {
2165
2165
  Sid: "AllowStageAccountPull",
2166
2166
  Effect: "Allow",
2167
2167
  Principal: {
2168
- AWS: allAccountIds.map((id) => `arn:aws:iam::${id}:root`)
2168
+ AWS: crossAccountIds.map((id) => `arn:aws:iam::${id}:root`)
2169
2169
  },
2170
2170
  Action: [
2171
2171
  "ecr:GetDownloadUrlForLayer",
@@ -2190,7 +2190,7 @@ function generatePipelineStackTemplate(options) {
2190
2190
  { Key: "ArtifactType", Value: artifact.type }
2191
2191
  ]
2192
2192
  );
2193
- if (stageAccountIds.length > 0) {
2193
+ if (crossAccountIds.length > 0) {
2194
2194
  const policyResourceId = sanitizeResourceId(`BucketPolicy${artifactId}`);
2195
2195
  template.Resources[policyResourceId] = {
2196
2196
  Type: "AWS::S3::BucketPolicy",
@@ -2203,7 +2203,7 @@ function generatePipelineStackTemplate(options) {
2203
2203
  Sid: "AllowStageAccountRead",
2204
2204
  Effect: "Allow",
2205
2205
  Principal: {
2206
- AWS: allAccountIds.map((id) => `arn:aws:iam::${id}:root`)
2206
+ AWS: crossAccountIds.map((id) => `arn:aws:iam::${id}:root`)
2207
2207
  },
2208
2208
  Action: [
2209
2209
  "s3:GetObject",
@@ -2215,7 +2215,7 @@ function generatePipelineStackTemplate(options) {
2215
2215
  Sid: "AllowStageAccountList",
2216
2216
  Effect: "Allow",
2217
2217
  Principal: {
2218
- AWS: allAccountIds.map((id) => `arn:aws:iam::${id}:root`)
2218
+ AWS: crossAccountIds.map((id) => `arn:aws:iam::${id}:root`)
2219
2219
  },
2220
2220
  Action: "s3:ListBucket",
2221
2221
  Resource: `arn:aws:s3:::${bucketName}`
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@devramps/cli",
3
- "version": "0.1.25",
3
+ "version": "0.1.26",
4
4
  "description": "DevRamps CLI - Bootstrap AWS infrastructure for CI/CD pipelines",
5
5
  "main": "dist/index.js",
6
6
  "bin": {