@jjrawlins/cdk-iam-policy-builder-helper 0.0.68 → 0.0.70

package/methods_list.txt

@@ -10378,6 +10378,7 @@ kinesis:StopStreamEncryption
 kinesis:SubscribeToShard
 kinesis:TagResource
 kinesis:UntagResource
+kinesis:UpdateMaxRecordSize
 kinesis:UpdateShardCount
 kinesis:UpdateStreamMode
 kinesisanalytics:AddApplicationCloudWatchLoggingOption
@@ -17931,6 +17932,7 @@ support:DescribeTrustedAdvisorCheckSummaries
 support:GetInteraction
 support:InitiateCallForCase
 support:InitiateChatForCase
+support:InitiateLiveContactForCase
 support:PutCaseAttributes
 support:RateCaseCommunication
 support:RefreshTrustedAdvisorCheck

package/node_modules/@aws/lambda-invoke-store/README.md

@@ -99,6 +99,14 @@ Convenience method to get the current request ID.
 const requestId = InvokeStore.getRequestId(); // Returns '-' if outside context
 ```
 
+### InvokeStore.getTenantId()
+
+Convenience method to get the tenant ID.
+
+```typescript
+const requestId = InvokeStore.getTenantId();
+```
+
 ### InvokeStore.getXRayTraceId()
 
 Convenience method to get the current [X-Ray trace ID](https://docs.aws.amazon.com/xray/latest/devguide/xray-concepts.html#xray-concepts-traces). This ID is used for distributed tracing across AWS services.

package/node_modules/@aws/lambda-invoke-store/{dist → dist-cjs}/invoke-store.js

@@ -1,8 +1,7 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.InvokeStore = void 0;
-const async_hooks_1 = require("async_hooks");
-// AWS_LAMBDA_NODEJS_NO_GLOBAL_AWSLAMBDA provides an escape hatch since we're modifying the global object which may not be expected to a customer's handler.
+'use strict';
+
+var async_hooks = require('async_hooks');
+
 const noGlobalAwsLambda = process.env["AWS_LAMBDA_NODEJS_NO_GLOBAL_AWSLAMBDA"] === "1" ||
     process.env["AWS_LAMBDA_NODEJS_NO_GLOBAL_AWSLAMBDA"] === "true";
 if (!noGlobalAwsLambda) {
@@ -11,37 +10,21 @@ if (!noGlobalAwsLambda) {
 const PROTECTED_KEYS = {
     REQUEST_ID: Symbol("_AWS_LAMBDA_REQUEST_ID"),
     X_RAY_TRACE_ID: Symbol("_AWS_LAMBDA_X_RAY_TRACE_ID"),
+    TENANT_ID: Symbol("_AWS_LAMBDA_TENANT_ID"),
 };
-/**
- * InvokeStore implementation class
- */
 class InvokeStoreImpl {
-    static storage = new async_hooks_1.AsyncLocalStorage();
-    // Protected keys for Lambda context fields
+    static storage = new async_hooks.AsyncLocalStorage();
     static PROTECTED_KEYS = PROTECTED_KEYS;
-    /**
-     * Initialize and run code within an invoke context
-     */
     static run(context, fn) {
         return this.storage.run({ ...context }, fn);
     }
-    /**
-     * Get the complete current context
-     */
     static getContext() {
         return this.storage.getStore();
     }
-    /**
-     * Get a specific value from the context by key
-     */
     static get(key) {
         const context = this.storage.getStore();
         return context?.[key];
     }
-    /**
-     * Set a custom value in the current context
-     * Protected Lambda context fields cannot be overwritten
-     */
     static set(key, value) {
         if (this.isProtectedKey(key)) {
             throw new Error(`Cannot modify protected Lambda context field`);
@@ -51,27 +34,18 @@ class InvokeStoreImpl {
             context[key] = value;
         }
     }
-    /**
-     * Get the current request ID
-     */
     static getRequestId() {
         return this.get(this.PROTECTED_KEYS.REQUEST_ID) ?? "-";
     }
-    /**
-     * Get the current X-ray trace ID
-     */
     static getXRayTraceId() {
         return this.get(this.PROTECTED_KEYS.X_RAY_TRACE_ID);
     }
-    /**
-     * Check if we're currently within an invoke context
-     */
+    static getTenantId() {
+        return this.get(this.PROTECTED_KEYS.TENANT_ID);
+    }
     static hasContext() {
         return this.storage.getStore() !== undefined;
     }
-    /**
-     * Check if a key is protected (readonly Lambda context field)
-     */
     static isProtectedKey(key) {
         return (key === this.PROTECTED_KEYS.REQUEST_ID ||
             key === this.PROTECTED_KEYS.X_RAY_TRACE_ID);
@@ -87,4 +61,6 @@ else {
         globalThis.awslambda.InvokeStore = instance;
     }
 }
-exports.InvokeStore = instance;
+const InvokeStore = instance;
+
+exports.InvokeStore = InvokeStore;

package/node_modules/@aws/lambda-invoke-store/dist-es/invoke-store.js

@@ -0,0 +1,64 @@
+import { AsyncLocalStorage } from 'async_hooks';
+
+const noGlobalAwsLambda = process.env["AWS_LAMBDA_NODEJS_NO_GLOBAL_AWSLAMBDA"] === "1" ||
+    process.env["AWS_LAMBDA_NODEJS_NO_GLOBAL_AWSLAMBDA"] === "true";
+if (!noGlobalAwsLambda) {
+    globalThis.awslambda = globalThis.awslambda || {};
+}
+const PROTECTED_KEYS = {
+    REQUEST_ID: Symbol("_AWS_LAMBDA_REQUEST_ID"),
+    X_RAY_TRACE_ID: Symbol("_AWS_LAMBDA_X_RAY_TRACE_ID"),
+    TENANT_ID: Symbol("_AWS_LAMBDA_TENANT_ID"),
+};
+class InvokeStoreImpl {
+    static storage = new AsyncLocalStorage();
+    static PROTECTED_KEYS = PROTECTED_KEYS;
+    static run(context, fn) {
+        return this.storage.run({ ...context }, fn);
+    }
+    static getContext() {
+        return this.storage.getStore();
+    }
+    static get(key) {
+        const context = this.storage.getStore();
+        return context?.[key];
+    }
+    static set(key, value) {
+        if (this.isProtectedKey(key)) {
+            throw new Error(`Cannot modify protected Lambda context field`);
+        }
+        const context = this.storage.getStore();
+        if (context) {
+            context[key] = value;
+        }
+    }
+    static getRequestId() {
+        return this.get(this.PROTECTED_KEYS.REQUEST_ID) ?? "-";
+    }
+    static getXRayTraceId() {
+        return this.get(this.PROTECTED_KEYS.X_RAY_TRACE_ID);
+    }
+    static getTenantId() {
+        return this.get(this.PROTECTED_KEYS.TENANT_ID);
+    }
+    static hasContext() {
+        return this.storage.getStore() !== undefined;
+    }
+    static isProtectedKey(key) {
+        return (key === this.PROTECTED_KEYS.REQUEST_ID ||
+            key === this.PROTECTED_KEYS.X_RAY_TRACE_ID);
+    }
+}
+let instance;
+if (!noGlobalAwsLambda && globalThis.awslambda?.InvokeStore) {
+    instance = globalThis.awslambda.InvokeStore;
+}
+else {
+    instance = InvokeStoreImpl;
+    if (!noGlobalAwsLambda && globalThis.awslambda) {
+        globalThis.awslambda.InvokeStore = instance;
+    }
+}
+const InvokeStore = instance;
+
+export { InvokeStore };

package/node_modules/@aws/lambda-invoke-store/{dist → dist-types}/invoke-store.d.ts

@@ -13,6 +13,7 @@ declare class InvokeStoreImpl {
     static readonly PROTECTED_KEYS: {
         readonly REQUEST_ID: symbol;
         readonly X_RAY_TRACE_ID: symbol;
+        readonly TENANT_ID: symbol;
     };
     /**
      * Initialize and run code within an invoke context
@@ -39,6 +40,10 @@ declare class InvokeStoreImpl {
      * Get the current X-ray trace ID
      */
     static getXRayTraceId(): string | undefined;
+    /**
+     * Get the current tenant ID
+     */
+    static getTenantId(): string | undefined;
     /**
      * Check if we're currently within an invoke context
      */

package/node_modules/@aws/lambda-invoke-store/package.json

@@ -1,12 +1,23 @@
 {
   "name": "@aws/lambda-invoke-store",
-  "version": "0.0.1",
+  "version": "0.1.1",
   "description": "Invoke scoped data storage for AWS Lambda Node.js Runtime Environment",
   "homepage": "https://github.com/awslabs/aws-lambda-invoke-store",
-  "main": "./dist/invoke-store.js",
-  "types": "./dist/invoke-store.d.ts",
+  "main": "./dist-cjs/invoke-store.js",
+  "module": "./dist-es/invoke-store.js",
+  "exports": {
+    ".": {
+      "types": "./dist-types/invoke-store.d.ts",
+      "module": "./dist-es/invoke-store.js",
+      "node": "./dist-cjs/invoke-store.js",
+      "import": "./dist-es/invoke-store.js",
+      "require": "./dist-cjs/invoke-store.js"
+    }
+  },
   "files": [
-    "dist"
+    "dist-es",
+    "dist-cjs",
+    "dist-types"
   ],
   "repository": {
     "type": "git",
@@ -18,15 +29,22 @@
     "url": "http://aws.amazon.com"
   },
   "scripts": {
-    "build": "tsc",
+    "build": "yarn clean && yarn build:types && node ./scripts/build-rollup.js",
+    "build:types": "tsc -p tsconfig.types.json",
+    "clean": "rm -rf dist-types dist-cjs dist-es",
     "test": "vitest run",
     "test:watch": "vitest watch",
-    "clean": "rm -rf dist"
+    "release": "yarn build && changeset publish"
   },
   "devDependencies": {
+    "@changesets/cli": "^2.29.6",
+    "@rollup/plugin-node-resolve": "^16.0.3",
+    "@rollup/plugin-typescript": "^12.3.0",
     "@tsconfig/node18": "^18.2.4",
-    "@types/node": "^18.19.112",
-    "typescript": "~5.4.5",
+    "@types/node": "^18.19.130",
+    "rollup": "^4.52.5",
+    "tslib": "^2.8.1",
+    "typescript": "^5.9.3",
     "vitest": "^3.1.1"
   },
   "engines": {

package/node_modules/@aws-sdk/client-iam/dist-types/runtimeConfig.d.ts

@@ -8,7 +8,7 @@ export declare const getRuntimeConfig: (config: IAMClientConfig) => {
     defaultsMode: import("@smithy/types").Provider<import("@smithy/smithy-client").ResolvedDefaultsMode>;
     authSchemePreference: string[] | import("@smithy/types").Provider<string[]>;
     bodyLengthChecker: import("@smithy/types").BodyLengthCalculator;
-    credentialDefaultProvider: ((input: any) => import("@smithy/types").AwsCredentialIdentityProvider) | ((init?: import("@aws-sdk/credential-provider-node").DefaultProviderInit) => import("@smithy/types").MemoizedProvider<import("@smithy/types").AwsCredentialIdentity>);
+    credentialDefaultProvider: ((input: any) => import("@smithy/types").AwsCredentialIdentityProvider) | ((init?: import("@aws-sdk/credential-provider-node").DefaultProviderInit) => import("@aws-sdk/credential-provider-node/dist-types/runtime/memoize-chain").MemoizedRuntimeConfigAwsCredentialIdentityProvider);
     defaultUserAgentProvider: (config?: import("@aws-sdk/util-user-agent-node").PreviouslyResolved) => Promise<import("@smithy/types").UserAgent>;
     maxAttempts: number | import("@smithy/types").Provider<number>;
     region: string | import("@smithy/types").Provider<string>;

package/node_modules/@aws-sdk/client-iam/dist-types/ts3.4/runtimeConfig.d.ts

@@ -11,9 +11,7 @@ export declare const getRuntimeConfig: (config: IAMClientConfig) => {
     | ((input: any) => import("@smithy/types").AwsCredentialIdentityProvider)
     | ((
         init?: import("@aws-sdk/credential-provider-node").DefaultProviderInit
-      ) => import("@smithy/types").MemoizedProvider<
-        import("@smithy/types").AwsCredentialIdentity
-      >);
+      ) => import("@aws-sdk/credential-provider-node/dist-types/runtime/memoize-chain").MemoizedRuntimeConfigAwsCredentialIdentityProvider);
   defaultUserAgentProvider: (
     config?: import("@aws-sdk/util-user-agent-node").PreviouslyResolved
   ) => Promise<import("@smithy/types").UserAgent>;

package/node_modules/@aws-sdk/client-iam/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-iam",
   "description": "AWS SDK for JavaScript Iam Client for Node.js, Browser and React Native",
-  "version": "3.918.0",
+  "version": "3.920.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-iam",
@@ -20,17 +20,17 @@
   "dependencies": {
     "@aws-crypto/sha256-browser": "5.2.0",
     "@aws-crypto/sha256-js": "5.2.0",
-    "@aws-sdk/core": "3.916.0",
-    "@aws-sdk/credential-provider-node": "3.918.0",
-    "@aws-sdk/middleware-host-header": "3.914.0",
-    "@aws-sdk/middleware-logger": "3.914.0",
-    "@aws-sdk/middleware-recursion-detection": "3.914.0",
-    "@aws-sdk/middleware-user-agent": "3.916.0",
-    "@aws-sdk/region-config-resolver": "3.914.0",
-    "@aws-sdk/types": "3.914.0",
-    "@aws-sdk/util-endpoints": "3.916.0",
-    "@aws-sdk/util-user-agent-browser": "3.914.0",
-    "@aws-sdk/util-user-agent-node": "3.916.0",
+    "@aws-sdk/core": "3.920.0",
+    "@aws-sdk/credential-provider-node": "3.920.0",
+    "@aws-sdk/middleware-host-header": "3.920.0",
+    "@aws-sdk/middleware-logger": "3.920.0",
+    "@aws-sdk/middleware-recursion-detection": "3.920.0",
+    "@aws-sdk/middleware-user-agent": "3.920.0",
+    "@aws-sdk/region-config-resolver": "3.920.0",
+    "@aws-sdk/types": "3.920.0",
+    "@aws-sdk/util-endpoints": "3.920.0",
+    "@aws-sdk/util-user-agent-browser": "3.920.0",
+    "@aws-sdk/util-user-agent-node": "3.920.0",
     "@smithy/config-resolver": "^4.4.0",
     "@smithy/core": "^3.17.1",
     "@smithy/fetch-http-handler": "^5.3.4",

package/node_modules/@aws-sdk/client-sso/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-sso",
   "description": "AWS SDK for JavaScript Sso Client for Node.js, Browser and React Native",
-  "version": "3.916.0",
+  "version": "3.920.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-sso",
@@ -20,16 +20,16 @@
   "dependencies": {
     "@aws-crypto/sha256-browser": "5.2.0",
     "@aws-crypto/sha256-js": "5.2.0",
-    "@aws-sdk/core": "3.916.0",
-    "@aws-sdk/middleware-host-header": "3.914.0",
-    "@aws-sdk/middleware-logger": "3.914.0",
-    "@aws-sdk/middleware-recursion-detection": "3.914.0",
-    "@aws-sdk/middleware-user-agent": "3.916.0",
-    "@aws-sdk/region-config-resolver": "3.914.0",
-    "@aws-sdk/types": "3.914.0",
-    "@aws-sdk/util-endpoints": "3.916.0",
-    "@aws-sdk/util-user-agent-browser": "3.914.0",
-    "@aws-sdk/util-user-agent-node": "3.916.0",
+    "@aws-sdk/core": "3.920.0",
+    "@aws-sdk/middleware-host-header": "3.920.0",
+    "@aws-sdk/middleware-logger": "3.920.0",
+    "@aws-sdk/middleware-recursion-detection": "3.920.0",
+    "@aws-sdk/middleware-user-agent": "3.920.0",
+    "@aws-sdk/region-config-resolver": "3.920.0",
+    "@aws-sdk/types": "3.920.0",
+    "@aws-sdk/util-endpoints": "3.920.0",
+    "@aws-sdk/util-user-agent-browser": "3.920.0",
+    "@aws-sdk/util-user-agent-node": "3.920.0",
     "@smithy/config-resolver": "^4.4.0",
     "@smithy/core": "^3.17.1",
     "@smithy/fetch-http-handler": "^5.3.4",

package/node_modules/@aws-sdk/core/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/core",
-  "version": "3.916.0",
+  "version": "3.920.0",
   "description": "Core functions & classes shared by multiple AWS SDK clients.",
   "scripts": {
     "build": "yarn lint && concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
@@ -81,7 +81,7 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
-    "@aws-sdk/types": "3.914.0",
+    "@aws-sdk/types": "3.920.0",
     "@aws-sdk/xml-builder": "3.914.0",
     "@smithy/core": "^3.17.1",
     "@smithy/node-config-provider": "^4.3.3",

package/node_modules/@aws-sdk/credential-provider-env/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/credential-provider-env",
-  "version": "3.916.0",
+  "version": "3.920.0",
   "description": "AWS credential provider that sources credentials from known environment variables",
   "main": "./dist-cjs/index.js",
   "module": "./dist-es/index.js",
@@ -26,8 +26,8 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
-    "@aws-sdk/core": "3.916.0",
-    "@aws-sdk/types": "3.914.0",
+    "@aws-sdk/core": "3.920.0",
+    "@aws-sdk/types": "3.920.0",
     "@smithy/property-provider": "^4.2.3",
     "@smithy/types": "^4.8.0",
     "tslib": "^2.6.2"

package/node_modules/@aws-sdk/credential-provider-http/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/credential-provider-http",
-  "version": "3.916.0",
+  "version": "3.920.0",
   "description": "AWS credential provider for containers and HTTP sources",
   "main": "./dist-cjs/index.js",
   "module": "./dist-es/index.js",
@@ -28,8 +28,8 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
-    "@aws-sdk/core": "3.916.0",
-    "@aws-sdk/types": "3.914.0",
+    "@aws-sdk/core": "3.920.0",
+    "@aws-sdk/types": "3.920.0",
     "@smithy/fetch-http-handler": "^5.3.4",
     "@smithy/node-http-handler": "^4.4.3",
     "@smithy/property-provider": "^4.2.3",

package/node_modules/@aws-sdk/credential-provider-ini/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/credential-provider-ini",
-  "version": "3.918.0",
+  "version": "3.920.0",
   "description": "AWS credential provider that sources credentials from ~/.aws/credentials and ~/.aws/config",
   "main": "./dist-cjs/index.js",
   "module": "./dist-es/index.js",
@@ -28,14 +28,14 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
-    "@aws-sdk/core": "3.916.0",
-    "@aws-sdk/credential-provider-env": "3.916.0",
-    "@aws-sdk/credential-provider-http": "3.916.0",
-    "@aws-sdk/credential-provider-process": "3.916.0",
-    "@aws-sdk/credential-provider-sso": "3.916.0",
-    "@aws-sdk/credential-provider-web-identity": "3.918.0",
-    "@aws-sdk/nested-clients": "3.916.0",
-    "@aws-sdk/types": "3.914.0",
+    "@aws-sdk/core": "3.920.0",
+    "@aws-sdk/credential-provider-env": "3.920.0",
+    "@aws-sdk/credential-provider-http": "3.920.0",
+    "@aws-sdk/credential-provider-process": "3.920.0",
+    "@aws-sdk/credential-provider-sso": "3.920.0",
+    "@aws-sdk/credential-provider-web-identity": "3.920.0",
+    "@aws-sdk/nested-clients": "3.920.0",
+    "@aws-sdk/types": "3.920.0",
     "@smithy/credential-provider-imds": "^4.2.3",
     "@smithy/property-provider": "^4.2.3",
     "@smithy/shared-ini-file-loader": "^4.3.3",

package/node_modules/@aws-sdk/credential-provider-node/dist-cjs/index.js

@@ -21,17 +21,73 @@ const remoteProvider = async (init) => {
     return fromInstanceMetadata(init);
 };
 
+function memoizeChain(providers, treatAsExpired) {
+    const chain = internalCreateChain(providers);
+    let activeLock;
+    let passiveLock;
+    let credentials;
+    const provider = async (options) => {
+        if (options?.forceRefresh) {
+            return await chain(options);
+        }
+        if (credentials?.expiration) {
+            if (credentials?.expiration?.getTime() < Date.now()) {
+                credentials = undefined;
+            }
+        }
+        if (activeLock) {
+            await activeLock;
+        }
+        else if (!credentials || treatAsExpired?.(credentials)) {
+            if (credentials) {
+                if (!passiveLock) {
+                    passiveLock = chain(options).then((c) => {
+                        credentials = c;
+                        passiveLock = undefined;
+                    });
+                }
+            }
+            else {
+                activeLock = chain(options).then((c) => {
+                    credentials = c;
+                    activeLock = undefined;
+                });
+                return provider(options);
+            }
+        }
+        return credentials;
+    };
+    return provider;
+}
+const internalCreateChain = (providers) => async (awsIdentityProperties) => {
+    let lastProviderError;
+    for (const provider of providers) {
+        try {
+            return await provider(awsIdentityProperties);
+        }
+        catch (err) {
+            lastProviderError = err;
+            if (err?.tryNextLink) {
+                continue;
+            }
+            throw err;
+        }
+    }
+    throw lastProviderError;
+};
+
 let multipleCredentialSourceWarningEmitted = false;
-const defaultProvider = (init = {}) => propertyProvider.memoize(propertyProvider.chain(async () => {
-    const profile = init.profile ?? process.env[sharedIniFileLoader.ENV_PROFILE];
-    if (profile) {
-        const envStaticCredentialsAreSet = process.env[credentialProviderEnv.ENV_KEY] && process.env[credentialProviderEnv.ENV_SECRET];
-        if (envStaticCredentialsAreSet) {
-            if (!multipleCredentialSourceWarningEmitted) {
-                const warnFn = init.logger?.warn && init.logger?.constructor?.name !== "NoOpLogger"
-                    ? init.logger.warn.bind(init.logger)
-                    : console.warn;
-                warnFn(`@aws-sdk/credential-provider-node - defaultProvider::fromEnv WARNING:
+const defaultProvider = (init = {}) => memoizeChain([
+    async () => {
+        const profile = init.profile ?? process.env[sharedIniFileLoader.ENV_PROFILE];
+        if (profile) {
+            const envStaticCredentialsAreSet = process.env[credentialProviderEnv.ENV_KEY] && process.env[credentialProviderEnv.ENV_SECRET];
+            if (envStaticCredentialsAreSet) {
+                if (!multipleCredentialSourceWarningEmitted) {
+                    const warnFn = init.logger?.warn && init.logger?.constructor?.name !== "NoOpLogger"
+                        ? init.logger.warn.bind(init.logger)
+                        : console.warn;
+                    warnFn(`@aws-sdk/credential-provider-node - defaultProvider::fromEnv WARNING:
     Multiple credential sources detected: 
     Both AWS_PROFILE and the pair AWS_ACCESS_KEY_ID/AWS_SECRET_ACCESS_KEY static credentials are set.
     This SDK will proceed with the AWS_PROFILE value.
@@ -40,45 +96,52 @@ const defaultProvider = (init = {}) => propertyProvider.memoize(propertyProvider
     Please ensure that your environment only sets either the AWS_PROFILE or the
     AWS_ACCESS_KEY_ID/AWS_SECRET_ACCESS_KEY pair.
 `);
-                multipleCredentialSourceWarningEmitted = true;
+                    multipleCredentialSourceWarningEmitted = true;
+                }
             }
+            throw new propertyProvider.CredentialsProviderError("AWS_PROFILE is set, skipping fromEnv provider.", {
+                logger: init.logger,
+                tryNextLink: true,
+            });
+        }
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromEnv");
+        return credentialProviderEnv.fromEnv(init)();
+    },
+    async (awsIdentityProperties) => {
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromSSO");
+        const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName, ssoSession } = init;
+        if (!ssoStartUrl && !ssoAccountId && !ssoRegion && !ssoRoleName && !ssoSession) {
+            throw new propertyProvider.CredentialsProviderError("Skipping SSO provider in default chain (inputs do not include SSO fields).", { logger: init.logger });
         }
-        throw new propertyProvider.CredentialsProviderError("AWS_PROFILE is set, skipping fromEnv provider.", {
+        const { fromSSO } = await import('@aws-sdk/credential-provider-sso');
+        return fromSSO(init)(awsIdentityProperties);
+    },
+    async (awsIdentityProperties) => {
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromIni");
+        const { fromIni } = await import('@aws-sdk/credential-provider-ini');
+        return fromIni(init)(awsIdentityProperties);
+    },
+    async (awsIdentityProperties) => {
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromProcess");
+        const { fromProcess } = await import('@aws-sdk/credential-provider-process');
+        return fromProcess(init)(awsIdentityProperties);
+    },
+    async (awsIdentityProperties) => {
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromTokenFile");
+        const { fromTokenFile } = await import('@aws-sdk/credential-provider-web-identity');
+        return fromTokenFile(init)(awsIdentityProperties);
+    },
+    async () => {
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::remoteProvider");
+        return (await remoteProvider(init))();
+    },
+    async () => {
+        throw new propertyProvider.CredentialsProviderError("Could not load credentials from any providers", {
+            tryNextLink: false,
             logger: init.logger,
-            tryNextLink: true,
         });
-    }
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromEnv");
-    return credentialProviderEnv.fromEnv(init)();
-}, async () => {
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromSSO");
-    const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName, ssoSession } = init;
-    if (!ssoStartUrl && !ssoAccountId && !ssoRegion && !ssoRoleName && !ssoSession) {
-        throw new propertyProvider.CredentialsProviderError("Skipping SSO provider in default chain (inputs do not include SSO fields).", { logger: init.logger });
-    }
-    const { fromSSO } = await import('@aws-sdk/credential-provider-sso');
-    return fromSSO(init)();
-}, async () => {
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromIni");
-    const { fromIni } = await import('@aws-sdk/credential-provider-ini');
-    return fromIni(init)();
-}, async () => {
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromProcess");
-    const { fromProcess } = await import('@aws-sdk/credential-provider-process');
-    return fromProcess(init)();
-}, async () => {
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromTokenFile");
-    const { fromTokenFile } = await import('@aws-sdk/credential-provider-web-identity');
-    return fromTokenFile(init)();
-}, async () => {
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::remoteProvider");
-    return (await remoteProvider(init))();
-}, async () => {
-    throw new propertyProvider.CredentialsProviderError("Could not load credentials from any providers", {
-        tryNextLink: false,
-        logger: init.logger,
-    });
-}), credentialsTreatedAsExpired, credentialsWillNeedRefresh);
+    },
+], credentialsTreatedAsExpired);
 const credentialsWillNeedRefresh = (credentials) => credentials?.expiration !== undefined;
 const credentialsTreatedAsExpired = (credentials) => credentials?.expiration !== undefined && credentials.expiration.getTime() - Date.now() < 300000;