@jcoreio/aws-ecr-utils 1.3.1 → 2.1.0

package/ImageManifestSchema.d.mts

@@ -0,0 +1,59 @@
+import z from 'zod';
+export declare const ImageManifestSchema: z.ZodObject<{
+  schemaVersion: z.ZodLiteral<2>;
+  mediaType: z.ZodString;
+  config: z.ZodObject<{
+    mediaType: z.ZodString;
+    size: z.ZodNumber;
+    digest: z.ZodString;
+  }, "strip", z.ZodTypeAny, {
+    mediaType: string;
+    size: number;
+    digest: string;
+  }, {
+    mediaType: string;
+    size: number;
+    digest: string;
+  }>;
+  layers: z.ZodArray<z.ZodObject<{
+    mediaType: z.ZodString;
+    size: z.ZodNumber;
+    digest: z.ZodString;
+  }, "strip", z.ZodTypeAny, {
+    mediaType: string;
+    size: number;
+    digest: string;
+  }, {
+    mediaType: string;
+    size: number;
+    digest: string;
+  }>, "many">;
+}, "strip", z.ZodTypeAny, {
+  mediaType: string;
+  schemaVersion: 2;
+  config: {
+    mediaType: string;
+    size: number;
+    digest: string;
+  };
+  layers: {
+    mediaType: string;
+    size: number;
+    digest: string;
+  }[];
+}, {
+  mediaType: string;
+  schemaVersion: 2;
+  config: {
+    mediaType: string;
+    size: number;
+    digest: string;
+  };
+  layers: {
+    mediaType: string;
+    size: number;
+    digest: string;
+  }[];
+}>;
+export type ImageManifestSchema = z.infer<typeof ImageManifestSchema>;
+//# sourceMappingURL=ImageManifestSchema.d.mts.map

package/ImageManifestSchema.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ImageManifestSchema.d.mts","names":["z","ImageManifestSchema","ZodObject","infer"],"sources":["src/ImageManifestSchema.ts"],"sourcesContent":[null],"mappings":"AAAA,OAAOA,CAAC,MAAM,KAAK;AAYnB,qBAAaC,mBAAmB,EAAAD,CAAA,CAAAE,SAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAK9B;AACF,OAAM,KAAMD,mBAAmB,GAAGD,CAAC,CAACG,KAAK,CAAC,OAAOF,mBAAmB,CAAC","ignoreList":[]}

package/ImageManifestSchema.d.ts

@@ -1,58 +1,59 @@
 import z from 'zod';
 export declare const ImageManifestSchema: z.ZodObject<{
-    schemaVersion: z.ZodLiteral<2>;
+  schemaVersion: z.ZodLiteral<2>;
+  mediaType: z.ZodString;
+  config: z.ZodObject<{
     mediaType: z.ZodString;
-    config: z.ZodObject<{
-        mediaType: z.ZodString;
-        size: z.ZodNumber;
-        digest: z.ZodString;
-    }, "strip", z.ZodTypeAny, {
-        mediaType: string;
-        size: number;
-        digest: string;
-    }, {
-        mediaType: string;
-        size: number;
-        digest: string;
-    }>;
-    layers: z.ZodArray<z.ZodObject<{
-        mediaType: z.ZodString;
-        size: z.ZodNumber;
-        digest: z.ZodString;
-    }, "strip", z.ZodTypeAny, {
-        mediaType: string;
-        size: number;
-        digest: string;
-    }, {
-        mediaType: string;
-        size: number;
-        digest: string;
-    }>, "many">;
+    size: z.ZodNumber;
+    digest: z.ZodString;
+  }, "strip", z.ZodTypeAny, {
+    mediaType: string;
+    size: number;
+    digest: string;
+  }, {
+    mediaType: string;
+    size: number;
+    digest: string;
+  }>;
+  layers: z.ZodArray<z.ZodObject<{
+    mediaType: z.ZodString;
+    size: z.ZodNumber;
+    digest: z.ZodString;
+  }, "strip", z.ZodTypeAny, {
+    mediaType: string;
+    size: number;
+    digest: string;
+  }, {
+    mediaType: string;
+    size: number;
+    digest: string;
+  }>, "many">;
 }, "strip", z.ZodTypeAny, {
+  mediaType: string;
+  schemaVersion: 2;
+  config: {
+    mediaType: string;
+    size: number;
+    digest: string;
+  };
+  layers: {
     mediaType: string;
-    schemaVersion: 2;
-    config: {
-        mediaType: string;
-        size: number;
-        digest: string;
-    };
-    layers: {
-        mediaType: string;
-        size: number;
-        digest: string;
-    }[];
+    size: number;
+    digest: string;
+  }[];
 }, {
+  mediaType: string;
+  schemaVersion: 2;
+  config: {
+    mediaType: string;
+    size: number;
+    digest: string;
+  };
+  layers: {
     mediaType: string;
-    schemaVersion: 2;
-    config: {
-        mediaType: string;
-        size: number;
-        digest: string;
-    };
-    layers: {
-        mediaType: string;
-        size: number;
-        digest: string;
-    }[];
+    size: number;
+    digest: string;
+  }[];
 }>;
 export type ImageManifestSchema = z.infer<typeof ImageManifestSchema>;
+//# sourceMappingURL=ImageManifestSchema.d.ts.map

package/ImageManifestSchema.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ImageManifestSchema.d.ts","names":["z","ImageManifestSchema","ZodObject","infer"],"sources":["src/ImageManifestSchema.ts"],"sourcesContent":[null],"mappings":"AAAA,OAAOA,CAAC,MAAM,KAAK;AAYnB,qBAAaC,mBAAmB,EAAAD,CAAA,CAAAE,SAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAK9B;AACF,OAAM,KAAMD,mBAAmB,GAAGD,CAAC,CAACG,KAAK,CAAC,OAAOF,mBAAmB,CAAC","ignoreList":[]}

package/ImageManifestSchema.js

@@ -19,4 +19,5 @@ var ImageManifestSchema = exports.ImageManifestSchema = _zod["default"].object({
   mediaType: _zod["default"].string(),
   config: LayerSchema,
   layers: _zod["default"].array(LayerSchema)
-});
+});
+//# sourceMappingURL=ImageManifestSchema.js.map

package/ImageManifestSchema.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ImageManifestSchema.js","names":["_zod","_interopRequireDefault","require","MediaType","z","string","min","Size","number","nonnegative","Digest","LayerSchema","object","mediaType","size","digest","ImageManifestSchema","exports","schemaVersion","literal","config","layers","array"],"sources":["src/ImageManifestSchema.ts"],"sourcesContent":[null],"mappings":";;;;;;;AAAA,IAAAA,IAAA,GAAAC,sBAAA,CAAAC,OAAA;AAEA,IAAMC,SAAS,GAAGC,eAAC,CAACC,MAAM,CAAC,CAAC,CAACC,GAAG,CAAC,CAAC,CAAC;AACnC,IAAMC,IAAI,GAAGH,eAAC,CAACI,MAAM,CAAC,CAAC,OAAI,CAAC,CAAC,CAACC,WAAW,CAAC,CAAC;AAC3C,IAAMC,MAAM,GAAGN,eAAC,CAACC,MAAM,CAAC,CAAC,CAACC,GAAG,CAAC,EAAE,CAAC;AAEjC,IAAMK,WAAW,GAAGP,eAAC,CAACQ,MAAM,CAAC;EAC3BC,SAAS,EAAEV,SAAS;EACpBW,IAAI,EAAEP,IAAI;EACVQ,MAAM,EAAEL;AACV,CAAC,CAAC;AAEK,IAAMM,mBAAmB,GAAAC,OAAA,CAAAD,mBAAA,GAAGZ,eAAC,CAACQ,MAAM,CAAC;EAC1CM,aAAa,EAAEd,eAAC,CAACe,OAAO,CAAC,CAAC,CAAC;EAC3BN,SAAS,EAAET,eAAC,CAACC,MAAM,CAAC,CAAC;EACrBe,MAAM,EAAET,WAAW;EACnBU,MAAM,EAAEjB,eAAC,CAACkB,KAAK,CAACX,WAAW;AAC7B,CAAC,CAAC","ignoreList":[]}

package/ImageManifestSchema.mjs

@@ -12,4 +12,5 @@ export const ImageManifestSchema = z.object({
   mediaType: z.string(),
   config: LayerSchema,
   layers: z.array(LayerSchema)
-});
+});
+//# sourceMappingURL=ImageManifestSchema.mjs.map

package/ImageManifestSchema.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"ImageManifestSchema.mjs","names":["z","MediaType","string","min","Size","number","int","nonnegative","Digest","LayerSchema","object","mediaType","size","digest","ImageManifestSchema","schemaVersion","literal","config","layers","array"],"sources":["src/ImageManifestSchema.ts"],"sourcesContent":[null],"mappings":"AAAA,OAAOA,CAAC,MAAM,KAAK;AAEnB,MAAMC,SAAS,GAAGD,CAAC,CAACE,MAAM,CAAC,CAAC,CAACC,GAAG,CAAC,CAAC,CAAC;AACnC,MAAMC,IAAI,GAAGJ,CAAC,CAACK,MAAM,CAAC,CAAC,CAACC,GAAG,CAAC,CAAC,CAACC,WAAW,CAAC,CAAC;AAC3C,MAAMC,MAAM,GAAGR,CAAC,CAACE,MAAM,CAAC,CAAC,CAACC,GAAG,CAAC,EAAE,CAAC;AAEjC,MAAMM,WAAW,GAAGT,CAAC,CAACU,MAAM,CAAC;EAC3BC,SAAS,EAAEV,SAAS;EACpBW,IAAI,EAAER,IAAI;EACVS,MAAM,EAAEL;AACV,CAAC,CAAC;AAEF,OAAO,MAAMM,mBAAmB,GAAGd,CAAC,CAACU,MAAM,CAAC;EAC1CK,aAAa,EAAEf,CAAC,CAACgB,OAAO,CAAC,CAAC,CAAC;EAC3BL,SAAS,EAAEX,CAAC,CAACE,MAAM,CAAC,CAAC;EACrBe,MAAM,EAAER,WAAW;EACnBS,MAAM,EAAElB,CAAC,CAACmB,KAAK,CAACV,WAAW;AAC7B,CAAC,CAAC","ignoreList":[]}

package/checkECRImageAccess.d.mts

@@ -0,0 +1,25 @@
+import { ECRClient, ECRClientConfig } from '@aws-sdk/client-ecr';
+export default function checkECRImageAccess({
+  ecr,
+  awsConfig,
+  repoAccountAwsConfig,
+  imageUri,
+  log
+}: {
+  ecr?: ECRClient;
+  awsConfig?: ECRClientConfig;
+  /**
+   * Config for the AWS account containing the ECR repository.
+   * Optional; if given, will prompt to add/update the policy on the
+   * ECR repository, if access checks failed and the terminal is
+   * interactive.
+   */
+  repoAccountAwsConfig?: ECRClientConfig;
+  imageUri: string;
+  log?: {
+    info: (...args: any[]) => void;
+    warn: (...args: any[]) => void;
+    error: (...args: any[]) => void;
+  };
+}): Promise<boolean>;
+//# sourceMappingURL=checkECRImageAccess.d.mts.map

package/checkECRImageAccess.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"checkECRImageAccess.d.mts","names":["ECRClient","ECRClientConfig","checkECRImageAccess","ecr","awsConfig","repoAccountAwsConfig","imageUri","log","info","args","warn","error","Promise"],"sources":["src/checkECRImageAccess.ts"],"sourcesContent":[null],"mappings":"AAAA,SAGEA,SAAS,EACTC,eAAe,QAIV,qBAAqB;AAQ5B,wBAA8BC,mBAAmBA,CAAC;EAChDC,GAAG;EACHC,SAAS;EACTC,oBAAoB;EACpBC,QAAQ;EACRC;CACD,EAAE;EACDJ,GAAG,CAAC,EAAEH,SAAS;EACfI,SAAS,CAAC,EAAEH,eAAe;EAC3B;;;;;;EAMAI,oBAAoB,CAAC,EAAEJ,eAAe;EACtCK,QAAQ,EAAE,MAAM;EAChBC,GAAG,CAAC,EAAE;IACJC,IAAI,EAAE,CAAC,GAAGC,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI;IAC9BC,IAAI,EAAE,CAAC,GAAGD,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI;IAC9BE,KAAK,EAAE,CAAC,GAAGF,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI;GAChC;CACF,GAAGG,OAAO,CAAC,OAAO,CAAC","ignoreList":[]}

package/checkECRImageAccess.d.ts

@@ -1,18 +1,26 @@
-import AWS from 'aws-sdk';
-export default function checkECRImageAccess({ ecr, awsConfig, repoAccountAwsConfig, imageUri, log, }: {
-    ecr?: AWS.ECR;
-    awsConfig?: AWS.ConfigurationOptions;
-    /**
-     * Config for the AWS account containing the ECR repository.
-     * Optional; if given, will prompt to add/update the policy on the
-     * ECR repository, if access checks failed and the terminal is
-     * interactive.
-     */
-    repoAccountAwsConfig?: AWS.ConfigurationOptions;
-    imageUri: string;
-    log?: {
-        info: (...args: any[]) => void;
-        warn: (...args: any[]) => void;
-        error: (...args: any[]) => void;
-    };
+import { ECRClient, ECRClientConfig } from '@aws-sdk/client-ecr';
+declare function checkECRImageAccess({
+  ecr,
+  awsConfig,
+  repoAccountAwsConfig,
+  imageUri,
+  log
+}: {
+  ecr?: ECRClient;
+  awsConfig?: ECRClientConfig;
+  /**
+   * Config for the AWS account containing the ECR repository.
+   * Optional; if given, will prompt to add/update the policy on the
+   * ECR repository, if access checks failed and the terminal is
+   * interactive.
+   */
+  repoAccountAwsConfig?: ECRClientConfig;
+  imageUri: string;
+  log?: {
+    info: (...args: any[]) => void;
+    warn: (...args: any[]) => void;
+    error: (...args: any[]) => void;
+  };
 }): Promise<boolean>;
+export = checkECRImageAccess;
+//# sourceMappingURL=checkECRImageAccess.d.ts.map

package/checkECRImageAccess.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"checkECRImageAccess.d.ts","names":["ECRClient","ECRClientConfig","checkECRImageAccess","ecr","awsConfig","repoAccountAwsConfig","imageUri","log","info","args","warn","error","Promise"],"sources":["src/checkECRImageAccess.ts"],"sourcesContent":[null],"mappings":"AAAA,SAGEA,SAAS,EACTC,eAAe,QAIV,qBAAqB;AAQ5B,iBAA8BC,mBAAmBA,CAAC;EAChDC,GAAG;EACHC,SAAS;EACTC,oBAAoB;EACpBC,QAAQ;EACRC;CACD,EAAE;EACDJ,GAAG,CAAC,EAAEH,SAAS;EACfI,SAAS,CAAC,EAAEH,eAAe;EAC3B;;;;;;EAMAI,oBAAoB,CAAC,EAAEJ,eAAe;EACtCK,QAAQ,EAAE,MAAM;EAChBC,GAAG,CAAC,EAAE;IACJC,IAAI,EAAE,CAAC,GAAGC,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI;IAC9BC,IAAI,EAAE,CAAC,GAAGD,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI;IAC9BE,KAAK,EAAE,CAAC,GAAGF,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI;GAChC;CACF,GAAGG,OAAO,CAAC,OAAO,CAAC;AA0JnB,SAAAV,mBAAA","ignoreList":[]}

package/checkECRImageAccess.js

@@ -6,11 +6,12 @@ Object.defineProperty(exports, "__esModule", {
 });
 exports["default"] = checkECRImageAccess;
 var _regenerator = _interopRequireDefault(require("@babel/runtime/regenerator"));
+var _typeof2 = _interopRequireDefault(require("@babel/runtime/helpers/typeof"));
 var _toConsumableArray2 = _interopRequireDefault(require("@babel/runtime/helpers/toConsumableArray"));
-var _slicedToArray2 = _interopRequireDefault(require("@babel/runtime/helpers/slicedToArray"));
 var _defineProperty2 = _interopRequireDefault(require("@babel/runtime/helpers/defineProperty"));
 var _asyncToGenerator2 = _interopRequireDefault(require("@babel/runtime/helpers/asyncToGenerator"));
-var _awsSdk = _interopRequireDefault(require("aws-sdk"));
+var _clientEcr = require("@aws-sdk/client-ecr");
+var _clientSts = require("@aws-sdk/client-sts");
 var _parseECRImageUri2 = _interopRequireDefault(require("./parseECRImageUri.js"));
 var _ImageManifestSchema = require("./ImageManifestSchema.js");
 var _isInteractive = _interopRequireDefault(require("is-interactive"));
@@ -22,67 +23,65 @@ function checkECRImageAccess(_x) {
   return _checkECRImageAccess.apply(this, arguments);
 }
 function _checkECRImageAccess() {
-  _checkECRImageAccess = (0, _asyncToGenerator2["default"])( /*#__PURE__*/_regenerator["default"].mark(function _callee(_ref) {
-    var ecr, awsConfig, repoAccountAwsConfig, imageUri, _ref$log, log, _parseECRImageUri, registryId, region, repositoryName, imageTag, _yield$ecr$batchGetIm, _yield$ecr$batchGetIm2, _yield$ecr$batchGetIm3, _yield$ecr$batchGetIm4, image, imageManifest, _ImageManifestSchema$, config, layers, Action, _yield$AWS$STS$getCal, Account, _yield$inquirer$promp, update, srcEcr, _yield$srcEcr$getRepo, policyText, policy;
-    return _regenerator["default"].wrap(function _callee$(_context) {
+  _checkECRImageAccess = (0, _asyncToGenerator2["default"])(/*#__PURE__*/_regenerator["default"].mark(function _callee(_ref) {
+    var ecr, awsConfig, repoAccountAwsConfig, imageUri, _ref$log, log, _parseECRImageUri, registryId, region, repositoryName, imageTag, _images$, _yield$ecr$send, _yield$ecr$send$image, images, imageManifest, _ImageManifestSchema$, config, layers, Action, _yield$STSClient$send, Account, _yield$inquirer$promp, update, srcEcr, _yield$srcEcr$send$ca, policyText, policy, _t;
+    return _regenerator["default"].wrap(function (_context) {
       while (1) switch (_context.prev = _context.next) {
         case 0:
           ecr = _ref.ecr, awsConfig = _ref.awsConfig, repoAccountAwsConfig = _ref.repoAccountAwsConfig, imageUri = _ref.imageUri, _ref$log = _ref.log, log = _ref$log === void 0 ? console : _ref$log;
           log.error('checking access to ECR image:', imageUri, '...');
           _parseECRImageUri = (0, _parseECRImageUri2["default"])(imageUri), registryId = _parseECRImageUri.registryId, region = _parseECRImageUri.region, repositoryName = _parseECRImageUri.repositoryName, imageTag = _parseECRImageUri.imageTag;
-          if (!ecr) ecr = new _awsSdk["default"].ECR(_objectSpread(_objectSpread({}, awsConfig), {}, {
+          if (!ecr) ecr = new _clientEcr.ECRClient(_objectSpread(_objectSpread({}, awsConfig), {}, {
             region: region
           }));
-          _context.prev = 4;
-          _context.next = 7;
-          return ecr.batchGetImage({
+          _context.prev = 1;
+          _context.next = 2;
+          return ecr.send(new _clientEcr.BatchGetImageCommand({
             registryId: registryId,
             repositoryName: repositoryName,
             imageIds: [{
               imageTag: imageTag
             }]
-          }).promise();
-        case 7:
-          _yield$ecr$batchGetIm = _context.sent;
-          _yield$ecr$batchGetIm2 = _yield$ecr$batchGetIm.images;
-          _yield$ecr$batchGetIm3 = _yield$ecr$batchGetIm2 === void 0 ? [] : _yield$ecr$batchGetIm2;
-          _yield$ecr$batchGetIm4 = (0, _slicedToArray2["default"])(_yield$ecr$batchGetIm3, 1);
-          image = _yield$ecr$batchGetIm4[0];
-          imageManifest = image === null || image === void 0 ? void 0 : image.imageManifest;
+          }));
+        case 2:
+          _yield$ecr$send = _context.sent;
+          _yield$ecr$send$image = _yield$ecr$send.images;
+          images = _yield$ecr$send$image === void 0 ? [] : _yield$ecr$send$image;
+          imageManifest = (_images$ = images[0]) === null || _images$ === void 0 ? void 0 : _images$.imageManifest;
           if (imageManifest) {
-            _context.next = 15;
+            _context.next = 3;
             break;
           }
           throw new Error("imageManifest not found for: ".concat(imageUri));
-        case 15:
+        case 3:
           _ImageManifestSchema$ = _ImageManifestSchema.ImageManifestSchema.parse(JSON.parse(imageManifest)), config = _ImageManifestSchema$.config, layers = _ImageManifestSchema$.layers;
-          _context.next = 18;
-          return ecr.batchCheckLayerAvailability({
+          _context.next = 4;
+          return ecr.send(new _clientEcr.BatchCheckLayerAvailabilityCommand({
             registryId: registryId,
             repositoryName: repositoryName,
             layerDigests: [config.digest].concat((0, _toConsumableArray2["default"])(layers.map(function (l) {
               return l.digest;
             })))
-          }).promise();
-        case 18:
-          _context.next = 20;
-          return ecr.getDownloadUrlForLayer({
+          }));
+        case 4:
+          _context.next = 5;
+          return ecr.send(new _clientEcr.GetDownloadUrlForLayerCommand({
             registryId: registryId,
             repositoryName: repositoryName,
             layerDigest: layers[0].digest
-          }).promise();
-        case 20:
+          }));
+        case 5:
           log.error("ECR image is accessible: ".concat(imageUri));
           return _context.abrupt("return", true);
-        case 24:
-          _context.prev = 24;
-          _context.t0 = _context["catch"](4);
-          if (!(!(_context.t0 instanceof Error) || _context.t0.name !== 'AccessDeniedException')) {
-            _context.next = 28;
+        case 6:
+          _context.prev = 6;
+          _t = _context["catch"](1);
+          if (!(!(_t instanceof Error) || _t.name !== 'AccessDeniedException')) {
+            _context.next = 7;
             break;
           }
-          throw _context.t0;
-        case 28:
+          throw _t;
+        case 7:
           log.error("Unable to access ECR image: ".concat(imageUri));
           Action = ['ecr:GetDownloadUrlForLayer', 'ecr:BatchCheckLayerAvailability', 'ecr:BatchGetImage'];
           log.error("You may need to add a policy to the ECR repository to allow this account.\n\nThe policy should include:\n\n  ".concat(JSON.stringify({
@@ -96,57 +95,57 @@ function _checkECRImageAccess() {
             }]
           }, null, 2).replace(/\n/gm, '\n  '), "\n"));
           if (!(repoAccountAwsConfig && (0, _isInteractive["default"])())) {
-            _context.next = 57;
+            _context.next = 15;
             break;
           }
-          _context.next = 34;
-          return new _awsSdk["default"].STS({
+          _context.next = 8;
+          return new _clientSts.STSClient({
             credentials: ecr.config.credentials,
             region: region
-          }).getCallerIdentity().promise();
-        case 34:
-          _yield$AWS$STS$getCal = _context.sent;
-          Account = _yield$AWS$STS$getCal.Account;
+          }).send(new _clientSts.GetCallerIdentityCommand());
+        case 8:
+          _yield$STSClient$send = _context.sent;
+          Account = _yield$STSClient$send.Account;
           if (Account) {
-            _context.next = 39;
+            _context.next = 9;
             break;
           }
           log.error("failed to determine AWS account");
           return _context.abrupt("return", false);
-        case 39:
-          _context.next = 41;
+        case 9:
+          _context.next = 10;
           return _inquirer["default"].prompt([{
             name: 'update',
             message: 'Do you want to add/update the policy?',
             type: 'confirm',
             "default": false
           }]);
-        case 41:
+        case 10:
           _yield$inquirer$promp = _context.sent;
           update = _yield$inquirer$promp.update;
           if (update) {
-            _context.next = 45;
+            _context.next = 11;
             break;
           }
           return _context.abrupt("return", false);
-        case 45:
-          srcEcr = new _awsSdk["default"].ECR(_objectSpread(_objectSpread({}, repoAccountAwsConfig), {}, {
+        case 11:
+          srcEcr = new _clientEcr.ECRClient(_objectSpread(_objectSpread({}, repoAccountAwsConfig), {}, {
             region: region
           }));
-          _context.next = 48;
-          return srcEcr.getRepositoryPolicy({
+          _context.next = 12;
+          return srcEcr.send(new _clientEcr.GetRepositoryPolicyCommand({
             registryId: registryId,
             repositoryName: repositoryName
-          }).promise()["catch"](function (error) {
-            if (error.name === 'RepositoryPolicyNotFoundException') return {};
+          }))["catch"](function (error) {
+            if (error && (0, _typeof2["default"])(error) === 'object' && 'name' in error && error.name === 'RepositoryPolicyNotFoundException') return {};
             throw error;
           });
-        case 48:
-          _yield$srcEcr$getRepo = _context.sent;
-          policyText = _yield$srcEcr$getRepo.policyText;
+        case 12:
+          _yield$srcEcr$send$ca = _context.sent;
+          policyText = _yield$srcEcr$send$ca.policyText;
           policy = JSON.parse(policyText || '{}');
-          _context.next = 53;
-          return srcEcr.setRepositoryPolicy({
+          _context.next = 13;
+          return srcEcr.send(new _clientEcr.SetRepositoryPolicyCommand({
             repositoryName: repositoryName,
             policyText: JSON.stringify(_objectSpread(_objectSpread({
               Version: '2012-10-17'
@@ -159,30 +158,31 @@ function _checkECRImageAccess() {
                 Action: Action
               }])
             }), null, 2)
-          }).promise();
-        case 53:
+          }));
+        case 13:
           log.info("updated policy on ECR repository ".concat((0, _formatECRRepositoryHostname["default"])({
             registryId: registryId,
             region: region,
             repositoryName: repositoryName
           })));
-          _context.next = 56;
+          _context.next = 14;
           return checkECRImageAccess({
             awsConfig: awsConfig,
             imageUri: imageUri,
             log: log,
             ecr: ecr
           });
-        case 56:
+        case 14:
           return _context.abrupt("return", _context.sent);
-        case 57:
+        case 15:
           return _context.abrupt("return", false);
-        case 58:
+        case 16:
         case "end":
           return _context.stop();
       }
-    }, _callee, null, [[4, 24]]);
+    }, _callee, null, [[1, 6]]);
   }));
   return _checkECRImageAccess.apply(this, arguments);
 }
-module.exports = exports.default;
+module.exports = exports.default;
+//# sourceMappingURL=checkECRImageAccess.js.map

package/checkECRImageAccess.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"checkECRImageAccess.js","names":["_clientEcr","require","_clientSts","_parseECRImageUri2","_interopRequireDefault","_ImageManifestSchema","_isInteractive","_inquirer","_formatECRRepositoryHostname","ownKeys","e","r","t","Object","keys","getOwnPropertySymbols","o","filter","getOwnPropertyDescriptor","enumerable","push","apply","_objectSpread","arguments","length","forEach","_defineProperty2","getOwnPropertyDescriptors","defineProperties","defineProperty","checkECRImageAccess","_x","_checkECRImageAccess","_asyncToGenerator2","_regenerator","mark","_callee","_ref","ecr","awsConfig","repoAccountAwsConfig","imageUri","_ref$log","log","_parseECRImageUri","registryId","region","repositoryName","imageTag","_images$","_yield$ecr$send","_yield$ecr$send$image","images","imageManifest","_ImageManifestSchema$","config","layers","Action","_yield$STSClient$send","Account","_yield$inquirer$promp","update","srcEcr","_yield$srcEcr$send$ca","policyText","policy","_t","wrap","_context","prev","next","console","error","parseECRImageUri","ECRClient","send","BatchGetImageCommand","imageIds","sent","Error","concat","ImageManifestSchema","parse","JSON","BatchCheckLayerAvailabilityCommand","layerDigests","digest","_toConsumableArray2","map","l","GetDownloadUrlForLayerCommand","layerDigest","abrupt","name","stringify","Version","Statement","Effect","Principal","AWS","replace","isInteractive","STSClient","credentials","GetCallerIdentityCommand","inquirer","prompt","message","type","GetRepositoryPolicyCommand","_typeof2","SetRepositoryPolicyCommand","info","formatECRRepositoryHostname","stop","module","exports","default"],"sources":["src/checkECRImageAccess.ts"],"sourcesContent":[null],"mappings":";;;;;;;;;;;;AAAA,IAAAA,UAAA,GAAAC,OAAA;AASA,IAAAC,UAAA,GAAAD,OAAA;AACA,IAAAE,kBAAA,GAAAC,sBAAA,CAAAH,OAAA;AACA,IAAAI,oBAAA,GAAAJ,OAAA;AACA,IAAAK,cAAA,GAAAF,sBAAA,CAAAH,OAAA;AACA,IAAAM,SAAA,GAAAH,sBAAA,CAAAH,OAAA;AACA,IAAAO,4BAAA,GAAAJ,sBAAA,CAAAH,OAAA;AAAuE,SAAAQ,QAAAC,CAAA,EAAAC,CAAA,QAAAC,CAAA,GAAAC,MAAA,CAAAC,IAAA,CAAAJ,CAAA,OAAAG,MAAA,CAAAE,qBAAA,QAAAC,CAAA,GAAAH,MAAA,CAAAE,qBAAA,CAAAL,CAAA,GAAAC,CAAA,KAAAK,CAAA,GAAAA,CAAA,CAAAC,MAAA,WAAAN,CAAA,WAAAE,MAAA,CAAAK,wBAAA,CAAAR,CAAA,EAAAC,CAAA,EAAAQ,UAAA,OAAAP,CAAA,CAAAQ,IAAA,CAAAC,KAAA,CAAAT,CAAA,EAAAI,CAAA,YAAAJ,CAAA;AAAA,SAAAU,cAAAZ,CAAA,aAAAC,CAAA,MAAAA,CAAA,GAAAY,SAAA,CAAAC,MAAA,EAAAb,CAAA,UAAAC,CAAA,WAAAW,SAAA,CAAAZ,CAAA,IAAAY,SAAA,CAAAZ,CAAA,QAAAA,CAAA,OAAAF,OAAA,CAAAI,MAAA,CAAAD,CAAA,OAAAa,OAAA,WAAAd,CAAA,QAAAe,gBAAA,aAAAhB,CAAA,EAAAC,CAAA,EAAAC,CAAA,CAAAD,CAAA,SAAAE,MAAA,CAAAc,yBAAA,GAAAd,MAAA,CAAAe,gBAAA,CAAAlB,CAAA,EAAAG,MAAA,CAAAc,yBAAA,CAAAf,CAAA,KAAAH,OAAA,CAAAI,MAAA,CAAAD,CAAA,GAAAa,OAAA,WAAAd,CAAA,IAAAE,MAAA,CAAAgB,cAAA,CAAAnB,CAAA,EAAAC,CAAA,EAAAE,MAAA,CAAAK,wBAAA,CAAAN,CAAA,EAAAD,CAAA,iBAAAD,CAAA;AAAA,SAEzCoB,mBAAmBA,CAAAC,EAAA;EAAA,OAAAC,oBAAA,CAAAX,KAAA,OAAAE,SAAA;AAAA;AAAA,SAAAS,qBAAA;EAAAA,oBAAA,OAAAC,kBAAA,0BAAAC,YAAA,YAAAC,IAAA,CAAlC,SAAAC,QAAAC,IAAA;IAAA,IAAAC,GAAA,EAAAC,SAAA,EAAAC,oBAAA,EAAAC,QAAA,EAAAC,QAAA,EAAAC,GAAA,EAAAC,iBAAA,EAAAC,UAAA,EAAAC,MAAA,EAAAC,cAAA,EAAAC,QAAA,EAAAC,QAAA,EAAAC,eAAA,EAAAC,qBAAA,EAAAC,MAAA,EAAAC,aAAA,EAAAC,qBAAA,EAAAC,MAAA,EAAAC,MAAA,EAAAC,MAAA,EAAAC,qBAAA,EAAAC,OAAA,EAAAC,qBAAA,EAAAC,MAAA,EAAAC,MAAA,EAAAC,qBAAA,EAAAC,UAAA,EAAAC,MAAA,EAAAC,EAAA;IAAA,OAAAhC,YAAA,YAAAiC,IAAA,WAAAC,QAAA;MAAA,kBAAAA,QAAA,CAAAC,IAAA,GAAAD,QAAA,CAAAE,IAAA;QAAA;UACbhC,GAAG,GAAAD,IAAA,CAAHC,GAAG,EACHC,SAAS,GAAAF,IAAA,CAATE,SAAS,EACTC,oBAAoB,GAAAH,IAAA,CAApBG,oBAAoB,EACpBC,QAAQ,GAAAJ,IAAA,CAARI,QAAQ,EAAAC,QAAA,GAAAL,IAAA,CACRM,GAAG,EAAHA,GAAG,GAAAD,QAAA,cAAG6B,OAAO,GAAA7B,QAAA;UAkBbC,GAAG,CAAC6B,KAAK,CAAC,+BAA+B,EAAE/B,QAAQ,EAAE,KAAK,CAAC;UAAAG,iBAAA,GAGzD,IAAA6B,6BAAgB,EAAChC,QAAQ,CAAC,EADpBI,UAAU,GAAAD,iBAAA,CAAVC,UAAU,EAAEC,MAAM,GAAAF,iBAAA,CAANE,MAAM,EAAEC,cAAc,GAAAH,iBAAA,CAAdG,cAAc,EAAEC,QAAQ,GAAAJ,iBAAA,CAARI,QAAQ;UAEpD,IAAI,CAACV,GAAG,EAAEA,GAAG,GAAG,IAAIoC,oBAAS,CAAApD,aAAA,CAAAA,aAAA,KAAMiB,SAAS;YAAEO,MAAM,EAANA;UAAM,EAAE,CAAC;UAAAsB,QAAA,CAAAC,IAAA;UAAAD,QAAA,CAAAE,IAAA;UAAA,OAGvBhC,GAAG,CAACqC,IAAI,CACpC,IAAIC,+BAAoB,CAAC;YACvB/B,UAAU,EAAVA,UAAU;YACVE,cAAc,EAAdA,cAAc;YACd8B,QAAQ,EAAE,CAAC;cAAE7B,QAAQ,EAARA;YAAS,CAAC;UACzB,CAAC,CACH,CAAC;QAAA;UAAAE,eAAA,GAAAkB,QAAA,CAAAU,IAAA;UAAA3B,qBAAA,GAAAD,eAAA,CANOE,MAAM;UAANA,MAAM,GAAAD,qBAAA,cAAG,EAAE,GAAAA,qBAAA;UAQbE,aAAa,IAAAJ,QAAA,GAAGG,MAAM,CAAC,CAAC,CAAC,cAAAH,QAAA,uBAATA,QAAA,CAAWI,aAAa;UAAA,IAEzCA,aAAa;YAAAe,QAAA,CAAAE,IAAA;YAAA;UAAA;UAAA,MACV,IAAIS,KAAK,iCAAAC,MAAA,CAAiCvC,QAAQ,CAAE,CAAC;QAAA;UAAAa,qBAAA,GAElC2B,wCAAmB,CAACC,KAAK,CAClDC,IAAI,CAACD,KAAK,CAAC7B,aAAa,CAC1B,CAAC,EAFOE,MAAM,GAAAD,qBAAA,CAANC,MAAM,EAAEC,MAAM,GAAAF,qBAAA,CAANE,MAAM;UAAAY,QAAA,CAAAE,IAAA;UAAA,OAIhBhC,GAAG,CAACqC,IAAI,CACZ,IAAIS,6CAAkC,CAAC;YACrCvC,UAAU,EAAVA,UAAU;YACVE,cAAc,EAAdA,cAAc;YACdsC,YAAY,GAAG9B,MAAM,CAAC+B,MAAM,EAAAN,MAAA,KAAAO,mBAAA,aAAK/B,MAAM,CAACgC,GAAG,CAAC,UAACC,CAAC;cAAA,OAAKA,CAAC,CAACH,MAAM;YAAA,EAAC;UAC9D,CAAC,CACH,CAAC;QAAA;UAAAlB,QAAA,CAAAE,IAAA;UAAA,OAEKhC,GAAG,CAACqC,IAAI,CACZ,IAAIe,wCAA6B,CAAC;YAChC7C,UAAU,EAAVA,UAAU;YACVE,cAAc,EAAdA,cAAc;YACd4C,WAAW,EAAEnC,MAAM,CAAC,CAAC,CAAC,CAAC8B;UACzB,CAAC,CACH,CAAC;QAAA;UAED3C,GAAG,CAAC6B,KAAK,6BAAAQ,MAAA,CAA6BvC,QAAQ,CAAE,CAAC;UAAA,OAAA2B,QAAA,CAAAwB,MAAA,WAC1C,IAAI;QAAA;UAAAxB,QAAA,CAAAC,IAAA;UAAAH,EAAA,GAAAE,QAAA;UAAA,MAEP,EAAEF,EAAA,YAAiBa,KAAK,CAAC,IAAIb,EAAA,CAAM2B,IAAI,KAAK,uBAAuB;YAAAzB,QAAA,CAAAE,IAAA;YAAA;UAAA;UAAA,MAAAJ,EAAA;QAAA;UAIzEvB,GAAG,CAAC6B,KAAK,gCAAAQ,MAAA,CAAgCvC,QAAQ,CAAE,CAAC;UAE9CgB,MAAM,GAAG,CACb,4BAA4B,EAC5B,iCAAiC,EACjC,mBAAmB,CACpB;UAEDd,GAAG,CAAC6B,KAAK,iHAAAQ,MAAA,CAIPG,IAAI,CAACW,SAAS,CACd;YACEC,OAAO,EAAE,YAAY;YACrBC,SAAS,EAAE,CACT;cACEC,MAAM,EAAE,OAAO;cACfC,SAAS,EAAE;gBACTC,GAAG,EAAE,CAAC,cAAc;cACtB,CAAC;cACD1C,MAAM,EAANA;YACF,CAAC;UAEL,CAAC,EACD,IAAI,EACJ,CACF,CAAC,CAAC2C,OAAO,CAAC,MAAM,EAAE,MAAM,CAAC,OAC1B,CAAC;UAAA,MAEI5D,oBAAoB,IAAI,IAAA6D,yBAAa,EAAC,CAAC;YAAAjC,QAAA,CAAAE,IAAA;YAAA;UAAA;UAAAF,QAAA,CAAAE,IAAA;UAAA,OACf,IAAIgC,oBAAS,CAAC;YACtCC,WAAW,EAAEjE,GAAG,CAACiB,MAAM,CAACgD,WAAW;YACnCzD,MAAM,EAANA;UACF,CAAC,CAAC,CAAC6B,IAAI,CAAC,IAAI6B,mCAAwB,CAAC,CAAC,CAAC;QAAA;UAAA9C,qBAAA,GAAAU,QAAA,CAAAU,IAAA;UAH/BnB,OAAO,GAAAD,qBAAA,CAAPC,OAAO;UAAA,IAIVA,OAAO;YAAAS,QAAA,CAAAE,IAAA;YAAA;UAAA;UACV3B,GAAG,CAAC6B,KAAK,kCAAkC,CAAC;UAAA,OAAAJ,QAAA,CAAAwB,MAAA,WACrC,KAAK;QAAA;UAAAxB,QAAA,CAAAE,IAAA;UAAA,OAGWmC,oBAAQ,CAACC,MAAM,CAAC,CACvC;YACEb,IAAI,EAAE,QAAQ;YACdc,OAAO,EAAE,uCAAuC;YAChDC,IAAI,EAAE,SAAS;YACf,WAAS;UACX,CAAC,CACF,CAAC;QAAA;UAAAhD,qBAAA,GAAAQ,QAAA,CAAAU,IAAA;UAPMjB,MAAM,GAAAD,qBAAA,CAANC,MAAM;UAAA,IAQTA,MAAM;YAAAO,QAAA,CAAAE,IAAA;YAAA;UAAA;UAAA,OAAAF,QAAA,CAAAwB,MAAA,WAAS,KAAK;QAAA;UAEnB9B,MAAM,GAAG,IAAIY,oBAAS,CAAApD,aAAA,CAAAA,aAAA,KACvBkB,oBAAoB;YACvBM,MAAM,EAANA;UAAM,EACP,CAAC;UAAAsB,QAAA,CAAAE,IAAA;UAAA,OAC2BR,MAAM,CAChCa,IAAI,CACH,IAAIkC,qCAA0B,CAAC;YAC7BhE,UAAU,EAAVA,UAAU;YACVE,cAAc,EAAdA;UACF,CAAC,CACH,CAAC,SACK,CAAC,UAACyB,KAAc,EAA8B;YAClD,IACEA,KAAK,IACL,IAAAsC,QAAA,aAAOtC,KAAK,MAAK,QAAQ,IACzB,MAAM,IAAIA,KAAK,IACfA,KAAK,CAACqB,IAAI,KAAK,mCAAmC,EAElD,OAAO,CAAC,CAAC;YACX,MAAMrB,KAAK;UACb,CAAC,CAAC;QAAA;UAAAT,qBAAA,GAAAK,QAAA,CAAAU,IAAA;UAhBId,UAAU,GAAAD,qBAAA,CAAVC,UAAU;UAkBZC,MAAW,GAAGkB,IAAI,CAACD,KAAK,CAAClB,UAAU,IAAI,IAAI,CAAC;UAAAI,QAAA,CAAAE,IAAA;UAAA,OAC5CR,MAAM,CAACa,IAAI,CACf,IAAIoC,qCAA0B,CAAC;YAC7BhE,cAAc,EAAdA,cAAc;YACdiB,UAAU,EAAEmB,IAAI,CAACW,SAAS,CAAAxE,aAAA,CAAAA,aAAA;cAEtByE,OAAO,EAAE;YAAY,GAClB9B,MAAM;cACT+B,SAAS,KAAAhB,MAAA,KAAAO,mBAAA,aACHtB,MAAM,CAAC+B,SAAS,IAAI,EAAE,IAC1B;gBACEC,MAAM,EAAE,OAAO;gBACfC,SAAS,EAAE;kBACTC,GAAG,EAAE,CAACxC,OAAO;gBACf,CAAC;gBACDF,MAAM,EAANA;cACF,CAAC;YACF,IAEH,IAAI,EACJ,CACF;UACF,CAAC,CACH,CAAC;QAAA;UACDd,GAAG,CAACqE,IAAI,qCAAAhC,MAAA,CAC8B,IAAAiC,uCAA2B,EAAC;YAC9DpE,UAAU,EAAVA,UAAU;YACVC,MAAM,EAANA,MAAM;YACNC,cAAc,EAAdA;UACF,CAAC,CAAC,CACJ,CAAC;UAAAqB,QAAA,CAAAE,IAAA;UAAA,OACYxC,mBAAmB,CAAC;YAAES,SAAS,EAATA,SAAS;YAAEE,QAAQ,EAARA,QAAQ;YAAEE,GAAG,EAAHA,GAAG;YAAEL,GAAG,EAAHA;UAAI,CAAC,CAAC;QAAA;UAAA,OAAA8B,QAAA,CAAAwB,MAAA,WAAAxB,QAAA,CAAAU,IAAA;QAAA;UAAA,OAAAV,QAAA,CAAAwB,MAAA,WAE9D,KAAK;QAAA;QAAA;UAAA,OAAAxB,QAAA,CAAA8C,IAAA;MAAA;IAAA,GAAA9E,OAAA;EAAA,CACb;EAAA,OAAAJ,oBAAA,CAAAX,KAAA,OAAAE,SAAA;AAAA;AAAA4F,MAAA,CAAAC,OAAA,GAAAA,OAAA,CAAAC,OAAA","ignoreList":[]}

package/checkECRImageAccess.mjs

@@ -1,4 +1,5 @@
-import AWS from 'aws-sdk';
+import { BatchCheckLayerAvailabilityCommand, BatchGetImageCommand, ECRClient, GetDownloadUrlForLayerCommand, GetRepositoryPolicyCommand, SetRepositoryPolicyCommand } from '@aws-sdk/client-ecr';
+import { STSClient, GetCallerIdentityCommand } from '@aws-sdk/client-sts';
 import parseECRImageUri from "./parseECRImageUri.mjs";
 import { ImageManifestSchema } from "./ImageManifestSchema.mjs";
 import isInteractive from 'is-interactive';
@@ -18,21 +19,22 @@ export default async function checkECRImageAccess({
     repositoryName,
     imageTag
   } = parseECRImageUri(imageUri);
-  if (!ecr) ecr = new AWS.ECR({
+  if (!ecr) ecr = new ECRClient({
     ...awsConfig,
     region
   });
   try {
+    var _images$;
     const {
-      images: [image] = []
-    } = await ecr.batchGetImage({
+      images = []
+    } = await ecr.send(new BatchGetImageCommand({
       registryId,
       repositoryName,
       imageIds: [{
         imageTag
       }]
-    }).promise();
-    const imageManifest = image === null || image === void 0 ? void 0 : image.imageManifest;
+    }));
+    const imageManifest = (_images$ = images[0]) === null || _images$ === void 0 ? void 0 : _images$.imageManifest;
     if (!imageManifest) {
       throw new Error(`imageManifest not found for: ${imageUri}`);
     }
@@ -40,16 +42,16 @@ export default async function checkECRImageAccess({
       config,
       layers
     } = ImageManifestSchema.parse(JSON.parse(imageManifest));
-    await ecr.batchCheckLayerAvailability({
+    await ecr.send(new BatchCheckLayerAvailabilityCommand({
       registryId,
       repositoryName,
       layerDigests: [config.digest, ...layers.map(l => l.digest)]
-    }).promise();
-    await ecr.getDownloadUrlForLayer({
+    }));
+    await ecr.send(new GetDownloadUrlForLayerCommand({
       registryId,
       repositoryName,
       layerDigest: layers[0].digest
-    }).promise();
+    }));
     log.error(`ECR image is accessible: ${imageUri}`);
     return true;
   } catch (error) {
@@ -77,10 +79,10 @@ The policy should include:
   if (repoAccountAwsConfig && isInteractive()) {
     const {
       Account
-    } = await new AWS.STS({
+    } = await new STSClient({
       credentials: ecr.config.credentials,
       region
-    }).getCallerIdentity().promise();
+    }).send(new GetCallerIdentityCommand());
     if (!Account) {
       log.error(`failed to determine AWS account`);
       return false;
@@ -94,21 +96,21 @@ The policy should include:
       default: false
     }]);
     if (!update) return false;
-    const srcEcr = new AWS.ECR({
+    const srcEcr = new ECRClient({
       ...repoAccountAwsConfig,
       region
     });
     const {
       policyText
-    } = await srcEcr.getRepositoryPolicy({
+    } = await srcEcr.send(new GetRepositoryPolicyCommand({
       registryId,
       repositoryName
-    }).promise().catch(error => {
-      if (error.name === 'RepositoryPolicyNotFoundException') return {};
+    })).catch(error => {
+      if (error && typeof error === 'object' && 'name' in error && error.name === 'RepositoryPolicyNotFoundException') return {};
       throw error;
     });
     const policy = JSON.parse(policyText || '{}');
-    await srcEcr.setRepositoryPolicy({
+    await srcEcr.send(new SetRepositoryPolicyCommand({
       repositoryName,
       policyText: JSON.stringify({
         Version: '2012-10-17',
@@ -121,7 +123,7 @@ The policy should include:
           Action
         }]
       }, null, 2)
-    }).promise();
+    }));
     log.info(`updated policy on ECR repository ${formatECRRepositoryHostname({
       registryId,
       region,
@@ -135,4 +137,5 @@ The policy should include:
     });
   }
   return false;
-}
+}
+//# sourceMappingURL=checkECRImageAccess.mjs.map