npm - @intentius/chant-lexicon-aws - Versions diffs - 0.0.8 → 0.0.10 - Mend

@intentius/chant-lexicon-aws 0.0.8 → 0.0.10

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (115) hide show

package/dist/integrity.json +25 -10
package/dist/manifest.json +1 -1
package/dist/meta.json +5743 -896
package/dist/rules/cf-refs.ts +99 -0
package/dist/rules/ext001.ts +30 -21
package/dist/rules/hardcoded-region.ts +1 -0
package/dist/rules/iam-wildcard.ts +1 -0
package/dist/rules/s3-encryption.ts +1 -0
package/dist/rules/waw016.ts +86 -0
package/dist/rules/waw017.ts +53 -0
package/dist/rules/waw018.ts +71 -0
package/dist/rules/waw019.ts +82 -0
package/dist/rules/waw020.ts +64 -0
package/dist/rules/waw021.ts +53 -0
package/dist/rules/waw022.ts +43 -0
package/dist/rules/waw023.ts +47 -0
package/dist/rules/waw024.ts +54 -0
package/dist/rules/waw025.ts +43 -0
package/dist/rules/waw026.ts +46 -0
package/dist/rules/waw027.ts +50 -0
package/dist/rules/waw028.ts +47 -0
package/dist/rules/waw029.ts +62 -0
package/dist/rules/waw030.ts +246 -0
package/dist/skills/chant-aws.md +388 -30
package/dist/types/index.d.ts +1552 -1528
package/package.json +2 -2
package/src/actions/actions.test.ts +75 -0
package/src/actions/dynamodb.ts +36 -0
package/src/actions/ecr.ts +9 -0
package/src/actions/ecs.ts +5 -0
package/src/actions/iam.ts +3 -0
package/src/actions/index.ts +9 -0
package/src/actions/lambda.ts +11 -0
package/src/actions/logs.ts +4 -0
package/src/actions/s3.ts +34 -0
package/src/actions/sns.ts +5 -0
package/src/actions/sqs.ts +15 -0
package/src/codegen/__snapshots__/snapshot.test.ts.snap +2 -2
package/src/codegen/docs-links.test.ts +143 -0
package/src/codegen/docs.ts +247 -132
package/src/codegen/generate-lexicon.ts +8 -0
package/src/codegen/generate-typescript.ts +25 -1
package/src/composites/composites.test.ts +442 -0
package/src/composites/fargate-alb.ts +253 -0
package/src/composites/index.ts +20 -0
package/src/composites/lambda-api.ts +20 -0
package/src/composites/lambda-dynamodb.ts +64 -0
package/src/composites/lambda-eventbridge.ts +36 -0
package/src/composites/lambda-function.ts +76 -0
package/src/composites/lambda-s3.ts +72 -0
package/src/composites/lambda-sns.ts +30 -0
package/src/composites/lambda-sqs.ts +44 -0
package/src/composites/scheduled-lambda.ts +37 -0
package/src/composites/vpc-default.ts +148 -0
package/src/default-tags.test.ts +38 -0
package/src/default-tags.ts +77 -0
package/src/generated/index.d.ts +1552 -1528
package/src/generated/lexicon-aws.json +5743 -896
package/src/import/roundtrip-fixtures.test.ts +1 -1
package/src/index.ts +21 -0
package/src/integration.test.ts +71 -0
package/src/intrinsics.ts +24 -13
package/src/lint/post-synth/cf-refs.ts +99 -0
package/src/lint/post-synth/ext001.test.ts +214 -31
package/src/lint/post-synth/ext001.ts +30 -21
package/src/lint/post-synth/waw013.test.ts +120 -0
package/src/lint/post-synth/waw014.test.ts +121 -0
package/src/lint/post-synth/waw015.test.ts +147 -0
package/src/lint/post-synth/waw016.test.ts +141 -0
package/src/lint/post-synth/waw016.ts +86 -0
package/src/lint/post-synth/waw017.test.ts +130 -0
package/src/lint/post-synth/waw017.ts +53 -0
package/src/lint/post-synth/waw018.test.ts +109 -0
package/src/lint/post-synth/waw018.ts +71 -0
package/src/lint/post-synth/waw019.test.ts +138 -0
package/src/lint/post-synth/waw019.ts +82 -0
package/src/lint/post-synth/waw020.test.ts +125 -0
package/src/lint/post-synth/waw020.ts +64 -0
package/src/lint/post-synth/waw021.test.ts +81 -0
package/src/lint/post-synth/waw021.ts +53 -0
package/src/lint/post-synth/waw022.test.ts +54 -0
package/src/lint/post-synth/waw022.ts +43 -0
package/src/lint/post-synth/waw023.test.ts +53 -0
package/src/lint/post-synth/waw023.ts +47 -0
package/src/lint/post-synth/waw024.test.ts +64 -0
package/src/lint/post-synth/waw024.ts +54 -0
package/src/lint/post-synth/waw025.test.ts +42 -0
package/src/lint/post-synth/waw025.ts +43 -0
package/src/lint/post-synth/waw026.test.ts +54 -0
package/src/lint/post-synth/waw026.ts +46 -0
package/src/lint/post-synth/waw027.test.ts +63 -0
package/src/lint/post-synth/waw027.ts +50 -0
package/src/lint/post-synth/waw028.test.ts +68 -0
package/src/lint/post-synth/waw028.ts +47 -0
package/src/lint/post-synth/waw029.test.ts +179 -0
package/src/lint/post-synth/waw029.ts +62 -0
package/src/lint/post-synth/waw030.test.ts +800 -0
package/src/lint/post-synth/waw030.ts +246 -0
package/src/lint/rules/hardcoded-region.ts +1 -0
package/src/lint/rules/iam-wildcard.ts +1 -0
package/src/lint/rules/s3-encryption.ts +1 -0
package/src/lsp/hover.ts +15 -0
package/src/nested-stack-integration.test.ts +100 -0
package/src/nested-stack.ts +1 -1
package/src/plugin.ts +468 -36
package/src/serializer.test.ts +330 -2
package/src/serializer.ts +62 -1
package/src/spec/fetch.ts +10 -0
package/src/spec/parse.test.ts +141 -0
package/src/spec/parse.ts +40 -0
package/src/taggable.ts +44 -0
package/src/testdata/nested-stacks/app.ts +26 -0
package/src/testdata/nested-stacks/network/outputs.ts +17 -0
package/src/testdata/nested-stacks/network/security.ts +17 -0
package/src/testdata/nested-stacks/network/vpc.ts +54 -0

package/src/taggable.ts ADDED Viewed

@@ -0,0 +1,44 @@
+/**
+ * Shared taggable resource lookup — loads from the generated lexicon JSON.
+ *
+ * Lazy-loaded and cached for the lifetime of the process.
+ */
+import { readFileSync } from "fs";
+import { join } from "path";
+interface LexiconEntry {
+  kind: string;
+  resourceType: string;
+  tagging?: { taggable: boolean; tagOnCreate: boolean; tagUpdatable: boolean };
+  [key: string]: unknown;
+}
+let _cached: Set<string> | undefined;
+/**
+ * Load taggable resource types from the lexicon JSON.
+ * Result is cached after first call.
+ */
+export function loadTaggableResources(): Set<string> {
+  if (_cached) return _cached;
+  const set = new Set<string>();
+  try {
+    const pkgDir = join(__dirname, "..");
+    const lexiconPath = join(pkgDir, "src", "generated", "lexicon-aws.json");
+    const content = readFileSync(lexiconPath, "utf-8");
+    const data = JSON.parse(content) as Record<string, LexiconEntry>;
+    for (const [_name, entry] of Object.entries(data)) {
+      if (entry.kind === "resource" && entry.resourceType && entry.tagging?.taggable) {
+        set.add(entry.resourceType);
+      }
+    }
+  } catch {
+    // Lexicon not available — skip
+  }
+  _cached = set;
+  return set;
+}

package/src/testdata/nested-stacks/app.ts ADDED Viewed

@@ -0,0 +1,26 @@
+/**
+ * App layer — Lambda function in the parent template that references
+ * the network nested stack's outputs via cross-stack references
+ */
+import { Function, Sub, AWS, Ref, nestedStack } from "@intentius/chant-lexicon-aws";
+// nestedStack() references a child project directory
+const network = nestedStack("network", import.meta.dirname + "/network", {
+  parameters: { Environment: "prod" },
+});
+export const handler = new Function({
+  FunctionName: Sub`${AWS.StackName}-handler`,
+  Runtime: "nodejs20.x",
+  Handler: "index.handler",
+  Role: Ref("LambdaExecutionRole"),
+  Code: { ZipFile: "exports.handler = async () => ({ statusCode: 200 });" },
+  VpcConfig: {
+    SubnetIds: [network.outputs.subnetId],
+    SecurityGroupIds: [network.outputs.lambdaSgId],
+  },
+});
+// Re-export so discovery picks it up as an entity
+export { network };

package/src/testdata/nested-stacks/network/outputs.ts ADDED Viewed

@@ -0,0 +1,17 @@
+/**
+ * Cross-stack outputs — values the parent can reference
+ */
+import { stackOutput } from "@intentius/chant";
+import { vpc, subnet } from "./vpc";
+import { lambdaSg } from "./security";
+export const vpcId = stackOutput(vpc.VpcId, {
+  description: "VPC ID",
+});
+export const subnetId = stackOutput(subnet.SubnetId, {
+  description: "Public subnet ID",
+});
+export const lambdaSgId = stackOutput(lambdaSg.GroupId, {
+  description: "Lambda security group ID",
+});

package/src/testdata/nested-stacks/network/security.ts ADDED Viewed

@@ -0,0 +1,17 @@
+/**
+ * Security group for the Lambda function in the parent stack
+ */
+import { SecurityGroup, Sub, AWS } from "@intentius/chant-lexicon-aws";
+import { vpc } from "./vpc";
+export const lambdaSg = new SecurityGroup({
+  GroupDescription: Sub`${AWS.StackName} Lambda security group`,
+  VpcId: vpc.VpcId,
+  SecurityGroupEgress: [{
+    IpProtocol: "-1",
+    CidrIp: "0.0.0.0/0",
+    Description: "Allow all outbound",
+  }],
+  Tags: [{ Key: "Name", Value: Sub`${AWS.StackName}-lambda-sg` }],
+});

package/src/testdata/nested-stacks/network/vpc.ts ADDED Viewed

@@ -0,0 +1,54 @@
+/**
+ * Network resources — VPC, subnet, internet gateway, and routing
+ */
+import {
+  Vpc,
+  Subnet,
+  InternetGateway,
+  VPCGatewayAttachment,
+  RouteTable,
+  EC2Route,
+  SubnetRouteTableAssociation,
+  Sub,
+  AWS,
+} from "@intentius/chant-lexicon-aws";
+export const vpc = new Vpc({
+  CidrBlock: "10.0.0.0/16",
+  EnableDnsSupport: true,
+  EnableDnsHostnames: true,
+  Tags: [{ Key: "Name", Value: Sub`${AWS.StackName}-vpc` }],
+});
+export const subnet = new Subnet({
+  VpcId: vpc.VpcId,
+  CidrBlock: "10.0.1.0/24",
+  MapPublicIpOnLaunch: true,
+  Tags: [{ Key: "Name", Value: Sub`${AWS.StackName}-public` }],
+});
+export const igw = new InternetGateway({
+  Tags: [{ Key: "Name", Value: Sub`${AWS.StackName}-igw` }],
+});
+export const igwAttachment = new VPCGatewayAttachment({
+  VpcId: vpc.VpcId,
+  InternetGatewayId: igw.InternetGatewayId,
+});
+export const routeTable = new RouteTable({
+  VpcId: vpc.VpcId,
+  Tags: [{ Key: "Name", Value: Sub`${AWS.StackName}-public-rt` }],
+});
+export const defaultRoute = new EC2Route({
+  RouteTableId: routeTable.RouteTableId,
+  DestinationCidrBlock: "0.0.0.0/0",
+  GatewayId: igw.InternetGatewayId,
+});
+export const subnetRouteTableAssoc = new SubnetRouteTableAssociation({
+  SubnetId: subnet.SubnetId,
+  RouteTableId: routeTable.RouteTableId,
+});