@jjrawlins/cdk-iam-policy-builder-helper 0.0.69 → 0.0.70

package/methods_list.txt

@@ -10378,6 +10378,7 @@ kinesis:StopStreamEncryption
 kinesis:SubscribeToShard
 kinesis:TagResource
 kinesis:UntagResource
+kinesis:UpdateMaxRecordSize
 kinesis:UpdateShardCount
 kinesis:UpdateStreamMode
 kinesisanalytics:AddApplicationCloudWatchLoggingOption
@@ -17931,6 +17932,7 @@ support:DescribeTrustedAdvisorCheckSummaries
 support:GetInteraction
 support:InitiateCallForCase
 support:InitiateChatForCase
+support:InitiateLiveContactForCase
 support:PutCaseAttributes
 support:RateCaseCommunication
 support:RefreshTrustedAdvisorCheck

package/node_modules/@aws-sdk/client-iam/dist-types/runtimeConfig.d.ts

@@ -8,7 +8,7 @@ export declare const getRuntimeConfig: (config: IAMClientConfig) => {
     defaultsMode: import("@smithy/types").Provider<import("@smithy/smithy-client").ResolvedDefaultsMode>;
     authSchemePreference: string[] | import("@smithy/types").Provider<string[]>;
     bodyLengthChecker: import("@smithy/types").BodyLengthCalculator;
-    credentialDefaultProvider: ((input: any) => import("@smithy/types").AwsCredentialIdentityProvider) | ((init?: import("@aws-sdk/credential-provider-node").DefaultProviderInit) => import("@smithy/types").MemoizedProvider<import("@smithy/types").AwsCredentialIdentity>);
+    credentialDefaultProvider: ((input: any) => import("@smithy/types").AwsCredentialIdentityProvider) | ((init?: import("@aws-sdk/credential-provider-node").DefaultProviderInit) => import("@aws-sdk/credential-provider-node/dist-types/runtime/memoize-chain").MemoizedRuntimeConfigAwsCredentialIdentityProvider);
     defaultUserAgentProvider: (config?: import("@aws-sdk/util-user-agent-node").PreviouslyResolved) => Promise<import("@smithy/types").UserAgent>;
     maxAttempts: number | import("@smithy/types").Provider<number>;
     region: string | import("@smithy/types").Provider<string>;

package/node_modules/@aws-sdk/client-iam/dist-types/ts3.4/runtimeConfig.d.ts

@@ -11,9 +11,7 @@ export declare const getRuntimeConfig: (config: IAMClientConfig) => {
     | ((input: any) => import("@smithy/types").AwsCredentialIdentityProvider)
     | ((
         init?: import("@aws-sdk/credential-provider-node").DefaultProviderInit
-      ) => import("@smithy/types").MemoizedProvider<
-        import("@smithy/types").AwsCredentialIdentity
-      >);
+      ) => import("@aws-sdk/credential-provider-node/dist-types/runtime/memoize-chain").MemoizedRuntimeConfigAwsCredentialIdentityProvider);
   defaultUserAgentProvider: (
     config?: import("@aws-sdk/util-user-agent-node").PreviouslyResolved
   ) => Promise<import("@smithy/types").UserAgent>;

package/node_modules/@aws-sdk/client-iam/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-iam",
   "description": "AWS SDK for JavaScript Iam Client for Node.js, Browser and React Native",
-  "version": "3.919.0",
+  "version": "3.920.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-iam",
@@ -20,17 +20,17 @@
   "dependencies": {
     "@aws-crypto/sha256-browser": "5.2.0",
     "@aws-crypto/sha256-js": "5.2.0",
-    "@aws-sdk/core": "3.916.0",
-    "@aws-sdk/credential-provider-node": "3.919.0",
-    "@aws-sdk/middleware-host-header": "3.914.0",
-    "@aws-sdk/middleware-logger": "3.914.0",
-    "@aws-sdk/middleware-recursion-detection": "3.919.0",
-    "@aws-sdk/middleware-user-agent": "3.916.0",
-    "@aws-sdk/region-config-resolver": "3.914.0",
-    "@aws-sdk/types": "3.914.0",
-    "@aws-sdk/util-endpoints": "3.916.0",
-    "@aws-sdk/util-user-agent-browser": "3.914.0",
-    "@aws-sdk/util-user-agent-node": "3.916.0",
+    "@aws-sdk/core": "3.920.0",
+    "@aws-sdk/credential-provider-node": "3.920.0",
+    "@aws-sdk/middleware-host-header": "3.920.0",
+    "@aws-sdk/middleware-logger": "3.920.0",
+    "@aws-sdk/middleware-recursion-detection": "3.920.0",
+    "@aws-sdk/middleware-user-agent": "3.920.0",
+    "@aws-sdk/region-config-resolver": "3.920.0",
+    "@aws-sdk/types": "3.920.0",
+    "@aws-sdk/util-endpoints": "3.920.0",
+    "@aws-sdk/util-user-agent-browser": "3.920.0",
+    "@aws-sdk/util-user-agent-node": "3.920.0",
     "@smithy/config-resolver": "^4.4.0",
     "@smithy/core": "^3.17.1",
     "@smithy/fetch-http-handler": "^5.3.4",

package/node_modules/@aws-sdk/client-sso/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-sso",
   "description": "AWS SDK for JavaScript Sso Client for Node.js, Browser and React Native",
-  "version": "3.919.0",
+  "version": "3.920.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-sso",
@@ -20,16 +20,16 @@
   "dependencies": {
     "@aws-crypto/sha256-browser": "5.2.0",
     "@aws-crypto/sha256-js": "5.2.0",
-    "@aws-sdk/core": "3.916.0",
-    "@aws-sdk/middleware-host-header": "3.914.0",
-    "@aws-sdk/middleware-logger": "3.914.0",
-    "@aws-sdk/middleware-recursion-detection": "3.919.0",
-    "@aws-sdk/middleware-user-agent": "3.916.0",
-    "@aws-sdk/region-config-resolver": "3.914.0",
-    "@aws-sdk/types": "3.914.0",
-    "@aws-sdk/util-endpoints": "3.916.0",
-    "@aws-sdk/util-user-agent-browser": "3.914.0",
-    "@aws-sdk/util-user-agent-node": "3.916.0",
+    "@aws-sdk/core": "3.920.0",
+    "@aws-sdk/middleware-host-header": "3.920.0",
+    "@aws-sdk/middleware-logger": "3.920.0",
+    "@aws-sdk/middleware-recursion-detection": "3.920.0",
+    "@aws-sdk/middleware-user-agent": "3.920.0",
+    "@aws-sdk/region-config-resolver": "3.920.0",
+    "@aws-sdk/types": "3.920.0",
+    "@aws-sdk/util-endpoints": "3.920.0",
+    "@aws-sdk/util-user-agent-browser": "3.920.0",
+    "@aws-sdk/util-user-agent-node": "3.920.0",
     "@smithy/config-resolver": "^4.4.0",
     "@smithy/core": "^3.17.1",
     "@smithy/fetch-http-handler": "^5.3.4",

package/node_modules/@aws-sdk/core/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/core",
-  "version": "3.916.0",
+  "version": "3.920.0",
   "description": "Core functions & classes shared by multiple AWS SDK clients.",
   "scripts": {
     "build": "yarn lint && concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
@@ -81,7 +81,7 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
-    "@aws-sdk/types": "3.914.0",
+    "@aws-sdk/types": "3.920.0",
     "@aws-sdk/xml-builder": "3.914.0",
     "@smithy/core": "^3.17.1",
     "@smithy/node-config-provider": "^4.3.3",

package/node_modules/@aws-sdk/credential-provider-env/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/credential-provider-env",
-  "version": "3.916.0",
+  "version": "3.920.0",
   "description": "AWS credential provider that sources credentials from known environment variables",
   "main": "./dist-cjs/index.js",
   "module": "./dist-es/index.js",
@@ -26,8 +26,8 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
-    "@aws-sdk/core": "3.916.0",
-    "@aws-sdk/types": "3.914.0",
+    "@aws-sdk/core": "3.920.0",
+    "@aws-sdk/types": "3.920.0",
     "@smithy/property-provider": "^4.2.3",
     "@smithy/types": "^4.8.0",
     "tslib": "^2.6.2"

package/node_modules/@aws-sdk/credential-provider-http/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/credential-provider-http",
-  "version": "3.916.0",
+  "version": "3.920.0",
   "description": "AWS credential provider for containers and HTTP sources",
   "main": "./dist-cjs/index.js",
   "module": "./dist-es/index.js",
@@ -28,8 +28,8 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
-    "@aws-sdk/core": "3.916.0",
-    "@aws-sdk/types": "3.914.0",
+    "@aws-sdk/core": "3.920.0",
+    "@aws-sdk/types": "3.920.0",
     "@smithy/fetch-http-handler": "^5.3.4",
     "@smithy/node-http-handler": "^4.4.3",
     "@smithy/property-provider": "^4.2.3",

package/node_modules/@aws-sdk/credential-provider-ini/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/credential-provider-ini",
-  "version": "3.919.0",
+  "version": "3.920.0",
   "description": "AWS credential provider that sources credentials from ~/.aws/credentials and ~/.aws/config",
   "main": "./dist-cjs/index.js",
   "module": "./dist-es/index.js",
@@ -28,14 +28,14 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
-    "@aws-sdk/core": "3.916.0",
-    "@aws-sdk/credential-provider-env": "3.916.0",
-    "@aws-sdk/credential-provider-http": "3.916.0",
-    "@aws-sdk/credential-provider-process": "3.916.0",
-    "@aws-sdk/credential-provider-sso": "3.919.0",
-    "@aws-sdk/credential-provider-web-identity": "3.919.0",
-    "@aws-sdk/nested-clients": "3.919.0",
-    "@aws-sdk/types": "3.914.0",
+    "@aws-sdk/core": "3.920.0",
+    "@aws-sdk/credential-provider-env": "3.920.0",
+    "@aws-sdk/credential-provider-http": "3.920.0",
+    "@aws-sdk/credential-provider-process": "3.920.0",
+    "@aws-sdk/credential-provider-sso": "3.920.0",
+    "@aws-sdk/credential-provider-web-identity": "3.920.0",
+    "@aws-sdk/nested-clients": "3.920.0",
+    "@aws-sdk/types": "3.920.0",
     "@smithy/credential-provider-imds": "^4.2.3",
     "@smithy/property-provider": "^4.2.3",
     "@smithy/shared-ini-file-loader": "^4.3.3",

package/node_modules/@aws-sdk/credential-provider-node/dist-cjs/index.js

@@ -21,17 +21,73 @@ const remoteProvider = async (init) => {
     return fromInstanceMetadata(init);
 };
 
+function memoizeChain(providers, treatAsExpired) {
+    const chain = internalCreateChain(providers);
+    let activeLock;
+    let passiveLock;
+    let credentials;
+    const provider = async (options) => {
+        if (options?.forceRefresh) {
+            return await chain(options);
+        }
+        if (credentials?.expiration) {
+            if (credentials?.expiration?.getTime() < Date.now()) {
+                credentials = undefined;
+            }
+        }
+        if (activeLock) {
+            await activeLock;
+        }
+        else if (!credentials || treatAsExpired?.(credentials)) {
+            if (credentials) {
+                if (!passiveLock) {
+                    passiveLock = chain(options).then((c) => {
+                        credentials = c;
+                        passiveLock = undefined;
+                    });
+                }
+            }
+            else {
+                activeLock = chain(options).then((c) => {
+                    credentials = c;
+                    activeLock = undefined;
+                });
+                return provider(options);
+            }
+        }
+        return credentials;
+    };
+    return provider;
+}
+const internalCreateChain = (providers) => async (awsIdentityProperties) => {
+    let lastProviderError;
+    for (const provider of providers) {
+        try {
+            return await provider(awsIdentityProperties);
+        }
+        catch (err) {
+            lastProviderError = err;
+            if (err?.tryNextLink) {
+                continue;
+            }
+            throw err;
+        }
+    }
+    throw lastProviderError;
+};
+
 let multipleCredentialSourceWarningEmitted = false;
-const defaultProvider = (init = {}) => propertyProvider.memoize(propertyProvider.chain(async () => {
-    const profile = init.profile ?? process.env[sharedIniFileLoader.ENV_PROFILE];
-    if (profile) {
-        const envStaticCredentialsAreSet = process.env[credentialProviderEnv.ENV_KEY] && process.env[credentialProviderEnv.ENV_SECRET];
-        if (envStaticCredentialsAreSet) {
-            if (!multipleCredentialSourceWarningEmitted) {
-                const warnFn = init.logger?.warn && init.logger?.constructor?.name !== "NoOpLogger"
-                    ? init.logger.warn.bind(init.logger)
-                    : console.warn;
-                warnFn(`@aws-sdk/credential-provider-node - defaultProvider::fromEnv WARNING:
+const defaultProvider = (init = {}) => memoizeChain([
+    async () => {
+        const profile = init.profile ?? process.env[sharedIniFileLoader.ENV_PROFILE];
+        if (profile) {
+            const envStaticCredentialsAreSet = process.env[credentialProviderEnv.ENV_KEY] && process.env[credentialProviderEnv.ENV_SECRET];
+            if (envStaticCredentialsAreSet) {
+                if (!multipleCredentialSourceWarningEmitted) {
+                    const warnFn = init.logger?.warn && init.logger?.constructor?.name !== "NoOpLogger"
+                        ? init.logger.warn.bind(init.logger)
+                        : console.warn;
+                    warnFn(`@aws-sdk/credential-provider-node - defaultProvider::fromEnv WARNING:
     Multiple credential sources detected: 
     Both AWS_PROFILE and the pair AWS_ACCESS_KEY_ID/AWS_SECRET_ACCESS_KEY static credentials are set.
     This SDK will proceed with the AWS_PROFILE value.
@@ -40,45 +96,52 @@ const defaultProvider = (init = {}) => propertyProvider.memoize(propertyProvider
     Please ensure that your environment only sets either the AWS_PROFILE or the
     AWS_ACCESS_KEY_ID/AWS_SECRET_ACCESS_KEY pair.
 `);
-                multipleCredentialSourceWarningEmitted = true;
+                    multipleCredentialSourceWarningEmitted = true;
+                }
             }
+            throw new propertyProvider.CredentialsProviderError("AWS_PROFILE is set, skipping fromEnv provider.", {
+                logger: init.logger,
+                tryNextLink: true,
+            });
+        }
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromEnv");
+        return credentialProviderEnv.fromEnv(init)();
+    },
+    async (awsIdentityProperties) => {
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromSSO");
+        const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName, ssoSession } = init;
+        if (!ssoStartUrl && !ssoAccountId && !ssoRegion && !ssoRoleName && !ssoSession) {
+            throw new propertyProvider.CredentialsProviderError("Skipping SSO provider in default chain (inputs do not include SSO fields).", { logger: init.logger });
         }
-        throw new propertyProvider.CredentialsProviderError("AWS_PROFILE is set, skipping fromEnv provider.", {
+        const { fromSSO } = await import('@aws-sdk/credential-provider-sso');
+        return fromSSO(init)(awsIdentityProperties);
+    },
+    async (awsIdentityProperties) => {
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromIni");
+        const { fromIni } = await import('@aws-sdk/credential-provider-ini');
+        return fromIni(init)(awsIdentityProperties);
+    },
+    async (awsIdentityProperties) => {
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromProcess");
+        const { fromProcess } = await import('@aws-sdk/credential-provider-process');
+        return fromProcess(init)(awsIdentityProperties);
+    },
+    async (awsIdentityProperties) => {
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromTokenFile");
+        const { fromTokenFile } = await import('@aws-sdk/credential-provider-web-identity');
+        return fromTokenFile(init)(awsIdentityProperties);
+    },
+    async () => {
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::remoteProvider");
+        return (await remoteProvider(init))();
+    },
+    async () => {
+        throw new propertyProvider.CredentialsProviderError("Could not load credentials from any providers", {
+            tryNextLink: false,
             logger: init.logger,
-            tryNextLink: true,
         });
-    }
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromEnv");
-    return credentialProviderEnv.fromEnv(init)();
-}, async () => {
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromSSO");
-    const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName, ssoSession } = init;
-    if (!ssoStartUrl && !ssoAccountId && !ssoRegion && !ssoRoleName && !ssoSession) {
-        throw new propertyProvider.CredentialsProviderError("Skipping SSO provider in default chain (inputs do not include SSO fields).", { logger: init.logger });
-    }
-    const { fromSSO } = await import('@aws-sdk/credential-provider-sso');
-    return fromSSO(init)();
-}, async () => {
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromIni");
-    const { fromIni } = await import('@aws-sdk/credential-provider-ini');
-    return fromIni(init)();
-}, async () => {
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromProcess");
-    const { fromProcess } = await import('@aws-sdk/credential-provider-process');
-    return fromProcess(init)();
-}, async () => {
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromTokenFile");
-    const { fromTokenFile } = await import('@aws-sdk/credential-provider-web-identity');
-    return fromTokenFile(init)();
-}, async () => {
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::remoteProvider");
-    return (await remoteProvider(init))();
-}, async () => {
-    throw new propertyProvider.CredentialsProviderError("Could not load credentials from any providers", {
-        tryNextLink: false,
-        logger: init.logger,
-    });
-}), credentialsTreatedAsExpired, credentialsWillNeedRefresh);
+    },
+], credentialsTreatedAsExpired);
 const credentialsWillNeedRefresh = (credentials) => credentials?.expiration !== undefined;
 const credentialsTreatedAsExpired = (credentials) => credentials?.expiration !== undefined && credentials.expiration.getTime() - Date.now() < 300000;
 

package/node_modules/@aws-sdk/credential-provider-node/dist-es/defaultProvider.js

@@ -1,18 +1,20 @@
 import { ENV_KEY, ENV_SECRET, fromEnv } from "@aws-sdk/credential-provider-env";
-import { chain, CredentialsProviderError, memoize } from "@smithy/property-provider";
+import { CredentialsProviderError } from "@smithy/property-provider";
 import { ENV_PROFILE } from "@smithy/shared-ini-file-loader";
 import { remoteProvider } from "./remoteProvider";
+import { memoizeChain } from "./runtime/memoize-chain";
 let multipleCredentialSourceWarningEmitted = false;
-export const defaultProvider = (init = {}) => memoize(chain(async () => {
-    const profile = init.profile ?? process.env[ENV_PROFILE];
-    if (profile) {
-        const envStaticCredentialsAreSet = process.env[ENV_KEY] && process.env[ENV_SECRET];
-        if (envStaticCredentialsAreSet) {
-            if (!multipleCredentialSourceWarningEmitted) {
-                const warnFn = init.logger?.warn && init.logger?.constructor?.name !== "NoOpLogger"
-                    ? init.logger.warn.bind(init.logger)
-                    : console.warn;
-                warnFn(`@aws-sdk/credential-provider-node - defaultProvider::fromEnv WARNING:
+export const defaultProvider = (init = {}) => memoizeChain([
+    async () => {
+        const profile = init.profile ?? process.env[ENV_PROFILE];
+        if (profile) {
+            const envStaticCredentialsAreSet = process.env[ENV_KEY] && process.env[ENV_SECRET];
+            if (envStaticCredentialsAreSet) {
+                if (!multipleCredentialSourceWarningEmitted) {
+                    const warnFn = init.logger?.warn && init.logger?.constructor?.name !== "NoOpLogger"
+                        ? init.logger.warn.bind(init.logger)
+                        : console.warn;
+                    warnFn(`@aws-sdk/credential-provider-node - defaultProvider::fromEnv WARNING:
     Multiple credential sources detected: 
     Both AWS_PROFILE and the pair AWS_ACCESS_KEY_ID/AWS_SECRET_ACCESS_KEY static credentials are set.
     This SDK will proceed with the AWS_PROFILE value.
@@ -21,44 +23,51 @@ export const defaultProvider = (init = {}) => memoize(chain(async () => {
     Please ensure that your environment only sets either the AWS_PROFILE or the
     AWS_ACCESS_KEY_ID/AWS_SECRET_ACCESS_KEY pair.
 `);
-                multipleCredentialSourceWarningEmitted = true;
+                    multipleCredentialSourceWarningEmitted = true;
+                }
             }
+            throw new CredentialsProviderError("AWS_PROFILE is set, skipping fromEnv provider.", {
+                logger: init.logger,
+                tryNextLink: true,
+            });
         }
-        throw new CredentialsProviderError("AWS_PROFILE is set, skipping fromEnv provider.", {
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromEnv");
+        return fromEnv(init)();
+    },
+    async (awsIdentityProperties) => {
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromSSO");
+        const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName, ssoSession } = init;
+        if (!ssoStartUrl && !ssoAccountId && !ssoRegion && !ssoRoleName && !ssoSession) {
+            throw new CredentialsProviderError("Skipping SSO provider in default chain (inputs do not include SSO fields).", { logger: init.logger });
+        }
+        const { fromSSO } = await import("@aws-sdk/credential-provider-sso");
+        return fromSSO(init)(awsIdentityProperties);
+    },
+    async (awsIdentityProperties) => {
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromIni");
+        const { fromIni } = await import("@aws-sdk/credential-provider-ini");
+        return fromIni(init)(awsIdentityProperties);
+    },
+    async (awsIdentityProperties) => {
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromProcess");
+        const { fromProcess } = await import("@aws-sdk/credential-provider-process");
+        return fromProcess(init)(awsIdentityProperties);
+    },
+    async (awsIdentityProperties) => {
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromTokenFile");
+        const { fromTokenFile } = await import("@aws-sdk/credential-provider-web-identity");
+        return fromTokenFile(init)(awsIdentityProperties);
+    },
+    async () => {
+        init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::remoteProvider");
+        return (await remoteProvider(init))();
+    },
+    async () => {
+        throw new CredentialsProviderError("Could not load credentials from any providers", {
+            tryNextLink: false,
             logger: init.logger,
-            tryNextLink: true,
         });
-    }
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromEnv");
-    return fromEnv(init)();
-}, async () => {
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromSSO");
-    const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName, ssoSession } = init;
-    if (!ssoStartUrl && !ssoAccountId && !ssoRegion && !ssoRoleName && !ssoSession) {
-        throw new CredentialsProviderError("Skipping SSO provider in default chain (inputs do not include SSO fields).", { logger: init.logger });
-    }
-    const { fromSSO } = await import("@aws-sdk/credential-provider-sso");
-    return fromSSO(init)();
-}, async () => {
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromIni");
-    const { fromIni } = await import("@aws-sdk/credential-provider-ini");
-    return fromIni(init)();
-}, async () => {
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromProcess");
-    const { fromProcess } = await import("@aws-sdk/credential-provider-process");
-    return fromProcess(init)();
-}, async () => {
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::fromTokenFile");
-    const { fromTokenFile } = await import("@aws-sdk/credential-provider-web-identity");
-    return fromTokenFile(init)();
-}, async () => {
-    init.logger?.debug("@aws-sdk/credential-provider-node - defaultProvider::remoteProvider");
-    return (await remoteProvider(init))();
-}, async () => {
-    throw new CredentialsProviderError("Could not load credentials from any providers", {
-        tryNextLink: false,
-        logger: init.logger,
-    });
-}), credentialsTreatedAsExpired, credentialsWillNeedRefresh);
+    },
+], credentialsTreatedAsExpired);
 export const credentialsWillNeedRefresh = (credentials) => credentials?.expiration !== undefined;
 export const credentialsTreatedAsExpired = (credentials) => credentials?.expiration !== undefined && credentials.expiration.getTime() - Date.now() < 300000;

package/node_modules/@aws-sdk/credential-provider-node/dist-es/runtime/memoize-chain.js

@@ -0,0 +1,54 @@
+export function memoizeChain(providers, treatAsExpired) {
+    const chain = internalCreateChain(providers);
+    let activeLock;
+    let passiveLock;
+    let credentials;
+    const provider = async (options) => {
+        if (options?.forceRefresh) {
+            return await chain(options);
+        }
+        if (credentials?.expiration) {
+            if (credentials?.expiration?.getTime() < Date.now()) {
+                credentials = undefined;
+            }
+        }
+        if (activeLock) {
+            await activeLock;
+        }
+        else if (!credentials || treatAsExpired?.(credentials)) {
+            if (credentials) {
+                if (!passiveLock) {
+                    passiveLock = chain(options).then((c) => {
+                        credentials = c;
+                        passiveLock = undefined;
+                    });
+                }
+            }
+            else {
+                activeLock = chain(options).then((c) => {
+                    credentials = c;
+                    activeLock = undefined;
+                });
+                return provider(options);
+            }
+        }
+        return credentials;
+    };
+    return provider;
+}
+export const internalCreateChain = (providers) => async (awsIdentityProperties) => {
+    let lastProviderError;
+    for (const provider of providers) {
+        try {
+            return await provider(awsIdentityProperties);
+        }
+        catch (err) {
+            lastProviderError = err;
+            if (err?.tryNextLink) {
+                continue;
+            }
+            throw err;
+        }
+    }
+    throw lastProviderError;
+};

package/node_modules/@aws-sdk/credential-provider-node/dist-types/defaultProvider.d.ts

@@ -4,7 +4,8 @@ import type { FromProcessInit } from "@aws-sdk/credential-provider-process";
 import type { FromSSOInit, SsoCredentialsParameters } from "@aws-sdk/credential-provider-sso";
 import type { FromTokenFileInit } from "@aws-sdk/credential-provider-web-identity";
 import type { RemoteProviderInit } from "@smithy/credential-provider-imds";
-import { AwsCredentialIdentity, MemoizedProvider } from "@smithy/types";
+import type { AwsCredentialIdentity } from "@smithy/types";
+import { type MemoizedRuntimeConfigAwsCredentialIdentityProvider } from "./runtime/memoize-chain";
 /**
  * @public
  */
@@ -43,7 +44,7 @@ export type DefaultProviderInit = FromIniInit & FromHttpOptions & RemoteProvider
  * @see {@link fromContainerMetadata}   The function used to source credentials from the
  *                                      ECS Container Metadata Service.
  */
-export declare const defaultProvider: (init?: DefaultProviderInit) => MemoizedProvider<AwsCredentialIdentity>;
+export declare const defaultProvider: (init?: DefaultProviderInit) => MemoizedRuntimeConfigAwsCredentialIdentityProvider;
 /**
  * @internal
  *

package/node_modules/@aws-sdk/credential-provider-node/dist-types/runtime/memoize-chain.d.ts

@@ -0,0 +1,18 @@
+import type { AwsCredentialIdentity, AwsIdentityProperties, RuntimeConfigAwsCredentialIdentityProvider } from "@aws-sdk/types";
+/**
+ * Memoized provider chain for AWS credentials.
+ * The options are only reevaluated if forceRefresh=true is passed or a natural
+ * refresh occurs.
+ *
+ * @public
+ */
+export interface MemoizedRuntimeConfigAwsCredentialIdentityProvider {
+    (options?: AwsIdentityProperties & {
+        forceRefresh?: boolean;
+    }): Promise<AwsCredentialIdentity>;
+}
+/**
+ * @internal
+ */
+export declare function memoizeChain(providers: RuntimeConfigAwsCredentialIdentityProvider[], treatAsExpired: (resolved: AwsCredentialIdentity) => boolean): MemoizedRuntimeConfigAwsCredentialIdentityProvider;
+export declare const internalCreateChain: (providers: RuntimeConfigAwsCredentialIdentityProvider[]) => RuntimeConfigAwsCredentialIdentityProvider;

package/node_modules/@aws-sdk/credential-provider-node/dist-types/ts3.4/defaultProvider.d.ts

@@ -7,7 +7,8 @@ import {
 } from "@aws-sdk/credential-provider-sso";
 import { FromTokenFileInit } from "@aws-sdk/credential-provider-web-identity";
 import { RemoteProviderInit } from "@smithy/credential-provider-imds";
-import { AwsCredentialIdentity, MemoizedProvider } from "@smithy/types";
+import { AwsCredentialIdentity } from "@smithy/types";
+import { MemoizedRuntimeConfigAwsCredentialIdentityProvider } from "./runtime/memoize-chain";
 export type DefaultProviderInit = FromIniInit &
   FromHttpOptions &
   RemoteProviderInit &
@@ -16,7 +17,7 @@ export type DefaultProviderInit = FromIniInit &
   FromTokenFileInit;
 export declare const defaultProvider: (
   init?: DefaultProviderInit
-) => MemoizedProvider<AwsCredentialIdentity>;
+) => MemoizedRuntimeConfigAwsCredentialIdentityProvider;
 export declare const credentialsWillNeedRefresh: (
   credentials: AwsCredentialIdentity
 ) => boolean;

package/node_modules/@aws-sdk/credential-provider-node/dist-types/ts3.4/runtime/memoize-chain.d.ts

@@ -0,0 +1,19 @@
+import {
+  AwsCredentialIdentity,
+  AwsIdentityProperties,
+  RuntimeConfigAwsCredentialIdentityProvider,
+} from "@aws-sdk/types";
+export interface MemoizedRuntimeConfigAwsCredentialIdentityProvider {
+  (
+    options?: AwsIdentityProperties & {
+      forceRefresh?: boolean;
+    }
+  ): Promise<AwsCredentialIdentity>;
+}
+export declare function memoizeChain(
+  providers: RuntimeConfigAwsCredentialIdentityProvider[],
+  treatAsExpired: (resolved: AwsCredentialIdentity) => boolean
+): MemoizedRuntimeConfigAwsCredentialIdentityProvider;
+export declare const internalCreateChain: (
+  providers: RuntimeConfigAwsCredentialIdentityProvider[]
+) => RuntimeConfigAwsCredentialIdentityProvider;