@standards-kit/conform 0.1.0

package/dist/elb-PEDLXW5R.js

@@ -0,0 +1,151 @@
+// src/infra/checkers/elb.ts
+import {
+  DescribeLoadBalancersCommand,
+  DescribeTargetGroupsCommand,
+  DescribeListenersCommand,
+  ElasticLoadBalancingV2Client
+} from "@aws-sdk/client-elastic-load-balancing-v2";
+var clientCache = /* @__PURE__ */ new Map();
+function getClient(region) {
+  let client = clientCache.get(region);
+  if (!client) {
+    client = new ElasticLoadBalancingV2Client({ region });
+    clientCache.set(region, client);
+  }
+  return client;
+}
+async function checkLoadBalancer(client, arn) {
+  const { resourceId, raw } = arn;
+  try {
+    const response = await client.send(
+      new DescribeLoadBalancersCommand({ LoadBalancerArns: [raw] })
+    );
+    const loadBalancer = response.LoadBalancers?.[0];
+    const exists = !!loadBalancer && loadBalancer.State?.Code !== "failed" && loadBalancer.State?.Code !== "active_impaired";
+    return {
+      arn: raw,
+      exists,
+      service: "elasticloadbalancing",
+      resourceType: "loadbalancer",
+      resourceId
+    };
+  } catch (error) {
+    const err = error;
+    if (err.name === "LoadBalancerNotFoundException") {
+      return {
+        arn: raw,
+        exists: false,
+        service: "elasticloadbalancing",
+        resourceType: "loadbalancer",
+        resourceId
+      };
+    }
+    return {
+      arn: raw,
+      exists: false,
+      error: err.message || "Unknown error",
+      service: "elasticloadbalancing",
+      resourceType: "loadbalancer",
+      resourceId
+    };
+  }
+}
+async function checkTargetGroup(client, arn) {
+  const { resourceId, raw } = arn;
+  try {
+    const response = await client.send(
+      new DescribeTargetGroupsCommand({ TargetGroupArns: [raw] })
+    );
+    const targetGroup = response.TargetGroups?.[0];
+    const exists = !!targetGroup;
+    return {
+      arn: raw,
+      exists,
+      service: "elasticloadbalancing",
+      resourceType: "targetgroup",
+      resourceId
+    };
+  } catch (error) {
+    const err = error;
+    if (err.name === "TargetGroupNotFoundException") {
+      return {
+        arn: raw,
+        exists: false,
+        service: "elasticloadbalancing",
+        resourceType: "targetgroup",
+        resourceId
+      };
+    }
+    return {
+      arn: raw,
+      exists: false,
+      error: err.message || "Unknown error",
+      service: "elasticloadbalancing",
+      resourceType: "targetgroup",
+      resourceId
+    };
+  }
+}
+async function checkListener(client, arn) {
+  const { resourceId, raw } = arn;
+  try {
+    const response = await client.send(
+      new DescribeListenersCommand({ ListenerArns: [raw] })
+    );
+    const listener = response.Listeners?.[0];
+    const exists = !!listener;
+    return {
+      arn: raw,
+      exists,
+      service: "elasticloadbalancing",
+      resourceType: "listener",
+      resourceId
+    };
+  } catch (error) {
+    const err = error;
+    if (err.name === "ListenerNotFoundException") {
+      return {
+        arn: raw,
+        exists: false,
+        service: "elasticloadbalancing",
+        resourceType: "listener",
+        resourceId
+      };
+    }
+    return {
+      arn: raw,
+      exists: false,
+      error: err.message || "Unknown error",
+      service: "elasticloadbalancing",
+      resourceType: "listener",
+      resourceId
+    };
+  }
+}
+var ELBChecker = {
+  async check(arn) {
+    const { resourceType, resourceId, region, raw } = arn;
+    const client = getClient(region);
+    switch (resourceType) {
+      case "loadbalancer":
+        return checkLoadBalancer(client, arn);
+      case "targetgroup":
+        return checkTargetGroup(client, arn);
+      case "listener":
+        return checkListener(client, arn);
+      default:
+        return {
+          arn: raw,
+          exists: false,
+          error: `Unsupported ELB resource type: ${resourceType}`,
+          service: "elasticloadbalancing",
+          resourceType,
+          resourceId
+        };
+    }
+  }
+};
+export {
+  ELBChecker
+};
+//# sourceMappingURL=elb-PEDLXW5R.js.map

package/dist/elb-PEDLXW5R.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/infra/checkers/elb.ts"],"sourcesContent":["/**\n * Elastic Load Balancing v2 resource checker\n *\n * Supports:\n * - Load balancers (ALB, NLB, GLB)\n * - Target groups\n * - Listeners\n */\n\nimport {\n  DescribeLoadBalancersCommand,\n  DescribeTargetGroupsCommand,\n  DescribeListenersCommand,\n  ElasticLoadBalancingV2Client,\n} from \"@aws-sdk/client-elastic-load-balancing-v2\";\n\nimport type { ParsedArn, ResourceCheckResult } from \"../types.js\";\nimport type { ResourceChecker } from \"./types.js\";\n\n/**\n * Cache of ELBv2 clients by region\n */\nconst clientCache = new Map<string, ElasticLoadBalancingV2Client>();\n\n/**\n * Get or create an ELBv2 client for a region\n */\nfunction getClient(region: string): ElasticLoadBalancingV2Client {\n  let client = clientCache.get(region);\n  if (!client) {\n    client = new ElasticLoadBalancingV2Client({ region });\n    clientCache.set(region, client);\n  }\n  return client;\n}\n\n/**\n * Check if a load balancer exists\n */\nasync function checkLoadBalancer(\n  client: ElasticLoadBalancingV2Client,\n  arn: ParsedArn\n): Promise<ResourceCheckResult> {\n  const { resourceId, raw } = arn;\n\n  try {\n    const response = await client.send(\n      new DescribeLoadBalancersCommand({ LoadBalancerArns: [raw] })\n    );\n\n    const loadBalancer = response.LoadBalancers?.[0];\n    const exists =\n      !!loadBalancer &&\n      loadBalancer.State?.Code !== \"failed\" &&\n      loadBalancer.State?.Code !== \"active_impaired\";\n\n    return {\n      arn: raw,\n      exists,\n      service: \"elasticloadbalancing\",\n      resourceType: \"loadbalancer\",\n      resourceId,\n    };\n  } catch (error) {\n    const err = error as Error & { name?: string };\n\n    if (err.name === \"LoadBalancerNotFoundException\") {\n      return {\n        arn: raw,\n        exists: false,\n        service: \"elasticloadbalancing\",\n        resourceType: \"loadbalancer\",\n        resourceId,\n      };\n    }\n\n    return {\n      arn: raw,\n      exists: false,\n      error: err.message || \"Unknown error\",\n      service: \"elasticloadbalancing\",\n      resourceType: \"loadbalancer\",\n      resourceId,\n    };\n  }\n}\n\n/**\n * Check if a target group exists\n */\nasync function checkTargetGroup(\n  client: ElasticLoadBalancingV2Client,\n  arn: ParsedArn\n): Promise<ResourceCheckResult> {\n  const { resourceId, raw } = arn;\n\n  try {\n    const response = await client.send(\n      new DescribeTargetGroupsCommand({ TargetGroupArns: [raw] })\n    );\n\n    const targetGroup = response.TargetGroups?.[0];\n    const exists = !!targetGroup;\n\n    return {\n      arn: raw,\n      exists,\n      service: \"elasticloadbalancing\",\n      resourceType: \"targetgroup\",\n      resourceId,\n    };\n  } catch (error) {\n    const err = error as Error & { name?: string };\n\n    if (err.name === \"TargetGroupNotFoundException\") {\n      return {\n        arn: raw,\n        exists: false,\n        service: \"elasticloadbalancing\",\n        resourceType: \"targetgroup\",\n        resourceId,\n      };\n    }\n\n    return {\n      arn: raw,\n      exists: false,\n      error: err.message || \"Unknown error\",\n      service: \"elasticloadbalancing\",\n      resourceType: \"targetgroup\",\n      resourceId,\n    };\n  }\n}\n\n/**\n * Check if a listener exists\n */\nasync function checkListener(\n  client: ElasticLoadBalancingV2Client,\n  arn: ParsedArn\n): Promise<ResourceCheckResult> {\n  const { resourceId, raw } = arn;\n\n  try {\n    const response = await client.send(\n      new DescribeListenersCommand({ ListenerArns: [raw] })\n    );\n\n    const listener = response.Listeners?.[0];\n    const exists = !!listener;\n\n    return {\n      arn: raw,\n      exists,\n      service: \"elasticloadbalancing\",\n      resourceType: \"listener\",\n      resourceId,\n    };\n  } catch (error) {\n    const err = error as Error & { name?: string };\n\n    if (err.name === \"ListenerNotFoundException\") {\n      return {\n        arn: raw,\n        exists: false,\n        service: \"elasticloadbalancing\",\n        resourceType: \"listener\",\n        resourceId,\n      };\n    }\n\n    return {\n      arn: raw,\n      exists: false,\n      error: err.message || \"Unknown error\",\n      service: \"elasticloadbalancing\",\n      resourceType: \"listener\",\n      resourceId,\n    };\n  }\n}\n\n/**\n * Elastic Load Balancing resource checker\n */\nexport const ELBChecker: ResourceChecker = {\n  async check(arn: ParsedArn): Promise<ResourceCheckResult> {\n    const { resourceType, resourceId, region, raw } = arn;\n    const client = getClient(region);\n\n    switch (resourceType) {\n      case \"loadbalancer\":\n        return checkLoadBalancer(client, arn);\n\n      case \"targetgroup\":\n        return checkTargetGroup(client, arn);\n\n      case \"listener\":\n        return checkListener(client, arn);\n\n      default:\n        return {\n          arn: raw,\n          exists: false,\n          error: `Unsupported ELB resource type: ${resourceType}`,\n          service: \"elasticloadbalancing\",\n          resourceType,\n          resourceId,\n        };\n    }\n  },\n};\n"],"mappings":";AASA;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAQP,IAAM,cAAc,oBAAI,IAA0C;AAKlE,SAAS,UAAU,QAA8C;AAC/D,MAAI,SAAS,YAAY,IAAI,MAAM;AACnC,MAAI,CAAC,QAAQ;AACX,aAAS,IAAI,6BAA6B,EAAE,OAAO,CAAC;AACpD,gBAAY,IAAI,QAAQ,MAAM;AAAA,EAChC;AACA,SAAO;AACT;AAKA,eAAe,kBACb,QACA,KAC8B;AAC9B,QAAM,EAAE,YAAY,IAAI,IAAI;AAE5B,MAAI;AACF,UAAM,WAAW,MAAM,OAAO;AAAA,MAC5B,IAAI,6BAA6B,EAAE,kBAAkB,CAAC,GAAG,EAAE,CAAC;AAAA,IAC9D;AAEA,UAAM,eAAe,SAAS,gBAAgB,CAAC;AAC/C,UAAM,SACJ,CAAC,CAAC,gBACF,aAAa,OAAO,SAAS,YAC7B,aAAa,OAAO,SAAS;AAE/B,WAAO;AAAA,MACL,KAAK;AAAA,MACL;AAAA,MACA,SAAS;AAAA,MACT,cAAc;AAAA,MACd;AAAA,IACF;AAAA,EACF,SAAS,OAAO;AACd,UAAM,MAAM;AAEZ,QAAI,IAAI,SAAS,iCAAiC;AAChD,aAAO;AAAA,QACL,KAAK;AAAA,QACL,QAAQ;AAAA,QACR,SAAS;AAAA,QACT,cAAc;AAAA,QACd;AAAA,MACF;AAAA,IACF;AAEA,WAAO;AAAA,MACL,KAAK;AAAA,MACL,QAAQ;AAAA,MACR,OAAO,IAAI,WAAW;AAAA,MACtB,SAAS;AAAA,MACT,cAAc;AAAA,MACd;AAAA,IACF;AAAA,EACF;AACF;AAKA,eAAe,iBACb,QACA,KAC8B;AAC9B,QAAM,EAAE,YAAY,IAAI,IAAI;AAE5B,MAAI;AACF,UAAM,WAAW,MAAM,OAAO;AAAA,MAC5B,IAAI,4BAA4B,EAAE,iBAAiB,CAAC,GAAG,EAAE,CAAC;AAAA,IAC5D;AAEA,UAAM,cAAc,SAAS,eAAe,CAAC;AAC7C,UAAM,SAAS,CAAC,CAAC;AAEjB,WAAO;AAAA,MACL,KAAK;AAAA,MACL;AAAA,MACA,SAAS;AAAA,MACT,cAAc;AAAA,MACd;AAAA,IACF;AAAA,EACF,SAAS,OAAO;AACd,UAAM,MAAM;AAEZ,QAAI,IAAI,SAAS,gCAAgC;AAC/C,aAAO;AAAA,QACL,KAAK;AAAA,QACL,QAAQ;AAAA,QACR,SAAS;AAAA,QACT,cAAc;AAAA,QACd;AAAA,MACF;AAAA,IACF;AAEA,WAAO;AAAA,MACL,KAAK;AAAA,MACL,QAAQ;AAAA,MACR,OAAO,IAAI,WAAW;AAAA,MACtB,SAAS;AAAA,MACT,cAAc;AAAA,MACd;AAAA,IACF;AAAA,EACF;AACF;AAKA,eAAe,cACb,QACA,KAC8B;AAC9B,QAAM,EAAE,YAAY,IAAI,IAAI;AAE5B,MAAI;AACF,UAAM,WAAW,MAAM,OAAO;AAAA,MAC5B,IAAI,yBAAyB,EAAE,cAAc,CAAC,GAAG,EAAE,CAAC;AAAA,IACtD;AAEA,UAAM,WAAW,SAAS,YAAY,CAAC;AACvC,UAAM,SAAS,CAAC,CAAC;AAEjB,WAAO;AAAA,MACL,KAAK;AAAA,MACL;AAAA,MACA,SAAS;AAAA,MACT,cAAc;AAAA,MACd;AAAA,IACF;AAAA,EACF,SAAS,OAAO;AACd,UAAM,MAAM;AAEZ,QAAI,IAAI,SAAS,6BAA6B;AAC5C,aAAO;AAAA,QACL,KAAK;AAAA,QACL,QAAQ;AAAA,QACR,SAAS;AAAA,QACT,cAAc;AAAA,QACd;AAAA,MACF;AAAA,IACF;AAEA,WAAO;AAAA,MACL,KAAK;AAAA,MACL,QAAQ;AAAA,MACR,OAAO,IAAI,WAAW;AAAA,MACtB,SAAS;AAAA,MACT,cAAc;AAAA,MACd;AAAA,IACF;AAAA,EACF;AACF;AAKO,IAAM,aAA8B;AAAA,EACzC,MAAM,MAAM,KAA8C;AACxD,UAAM,EAAE,cAAc,YAAY,QAAQ,IAAI,IAAI;AAClD,UAAM,SAAS,UAAU,MAAM;AAE/B,YAAQ,cAAc;AAAA,MACpB,KAAK;AACH,eAAO,kBAAkB,QAAQ,GAAG;AAAA,MAEtC,KAAK;AACH,eAAO,iBAAiB,QAAQ,GAAG;AAAA,MAErC,KAAK;AACH,eAAO,cAAc,QAAQ,GAAG;AAAA,MAElC;AACE,eAAO;AAAA,UACL,KAAK;AAAA,UACL,QAAQ;AAAA,UACR,OAAO,kCAAkC,YAAY;AAAA,UACrD,SAAS;AAAA,UACT;AAAA,UACA;AAAA,QACF;AAAA,IACJ;AAAA,EACF;AACF;","names":[]}

package/dist/generate-D4MFMOHP.js

@@ -0,0 +1,28 @@
+import {
+  DEFAULT_MANIFEST_NAME,
+  generateManifestFromFile,
+  generateManifestFromStdin,
+  generateMultiAccountFromFile,
+  generateMultiAccountFromStdin,
+  generateWithMerge,
+  mergeIntoManifest,
+  parseStackExport,
+  parseStackExportMultiAccount,
+  readExistingManifest,
+  writeManifest
+} from "./chunk-J5S6GRGW.js";
+import "./chunk-M7G73Q6P.js";
+export {
+  DEFAULT_MANIFEST_NAME,
+  generateManifestFromFile,
+  generateManifestFromStdin,
+  generateMultiAccountFromFile,
+  generateMultiAccountFromStdin,
+  generateWithMerge,
+  mergeIntoManifest,
+  parseStackExport,
+  parseStackExportMultiAccount,
+  readExistingManifest,
+  writeManifest
+};
+//# sourceMappingURL=generate-D4MFMOHP.js.map

package/dist/generate-D4MFMOHP.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"sourcesContent":[],"mappings":"","names":[]}

package/dist/iam-7H5HFWVQ.js

@@ -0,0 +1,96 @@
+// src/infra/checkers/iam.ts
+import { GetPolicyCommand, GetRoleCommand, IAMClient } from "@aws-sdk/client-iam";
+var client = null;
+function getClient() {
+  client ??= new IAMClient({ region: "us-east-1" });
+  return client;
+}
+var IAMChecker = {
+  async check(arn) {
+    const { resourceType, resourceId, raw } = arn;
+    switch (resourceType) {
+      case "role":
+        return checkRole(resourceId, raw);
+      case "policy":
+        return checkPolicy(raw);
+      default:
+        return {
+          arn: raw,
+          exists: false,
+          error: `Unsupported IAM resource type: ${resourceType}`,
+          service: "iam",
+          resourceType,
+          resourceId
+        };
+    }
+  }
+};
+async function checkRole(roleName, arn) {
+  const iamClient = getClient();
+  try {
+    await iamClient.send(new GetRoleCommand({ RoleName: roleName }));
+    return {
+      arn,
+      exists: true,
+      service: "iam",
+      resourceType: "role",
+      resourceId: roleName
+    };
+  } catch (error) {
+    const err = error;
+    if (err.name === "NoSuchEntityException") {
+      return {
+        arn,
+        exists: false,
+        service: "iam",
+        resourceType: "role",
+        resourceId: roleName
+      };
+    }
+    return {
+      arn,
+      exists: false,
+      error: err.message || "Unknown error",
+      service: "iam",
+      resourceType: "role",
+      resourceId: roleName
+    };
+  }
+}
+async function checkPolicy(policyArn) {
+  const iamClient = getClient();
+  const policyName = policyArn.split("/").pop() ?? policyArn;
+  try {
+    await iamClient.send(new GetPolicyCommand({ PolicyArn: policyArn }));
+    return {
+      arn: policyArn,
+      exists: true,
+      service: "iam",
+      resourceType: "policy",
+      resourceId: policyName
+    };
+  } catch (error) {
+    const err = error;
+    if (err.name === "NoSuchEntityException") {
+      return {
+        arn: policyArn,
+        exists: false,
+        service: "iam",
+        resourceType: "policy",
+        resourceId: policyName
+      };
+    }
+    return {
+      arn: policyArn,
+      exists: false,
+      error: err.message || "Unknown error",
+      service: "iam",
+      resourceType: "policy",
+      resourceId: policyName
+    };
+  }
+}
+export {
+  IAMChecker
+};
+//# sourceMappingURL=iam-7H5HFWVQ.js.map

package/dist/iam-7H5HFWVQ.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/infra/checkers/iam.ts"],"sourcesContent":["/**\n * IAM resource checker\n */\n\nimport { GetPolicyCommand, GetRoleCommand, IAMClient } from \"@aws-sdk/client-iam\";\n\nimport type { ParsedArn, ResourceCheckResult } from \"../types.js\";\nimport type { ResourceChecker } from \"./types.js\";\n\n/**\n * IAM is global, so we only need one client\n */\nlet client: IAMClient | null = null;\n\n/**\n * Get or create the IAM client\n */\nfunction getClient(): IAMClient {\n  // IAM is global, use us-east-1\n  client ??= new IAMClient({ region: \"us-east-1\" });\n  return client;\n}\n\n/**\n * IAM resource checker (roles and policies)\n */\nexport const IAMChecker: ResourceChecker = {\n  async check(arn: ParsedArn): Promise<ResourceCheckResult> {\n    const { resourceType, resourceId, raw } = arn;\n\n    switch (resourceType) {\n      case \"role\":\n        return checkRole(resourceId, raw);\n      case \"policy\":\n        return checkPolicy(raw);\n      default:\n        return {\n          arn: raw,\n          exists: false,\n          error: `Unsupported IAM resource type: ${resourceType}`,\n          service: \"iam\",\n          resourceType,\n          resourceId,\n        };\n    }\n  },\n};\n\n/**\n * Check if an IAM role exists\n */\nasync function checkRole(roleName: string, arn: string): Promise<ResourceCheckResult> {\n  const iamClient = getClient();\n\n  try {\n    await iamClient.send(new GetRoleCommand({ RoleName: roleName }));\n    return {\n      arn,\n      exists: true,\n      service: \"iam\",\n      resourceType: \"role\",\n      resourceId: roleName,\n    };\n  } catch (error) {\n    const err = error as Error & { name?: string };\n\n    if (err.name === \"NoSuchEntityException\") {\n      return {\n        arn,\n        exists: false,\n        service: \"iam\",\n        resourceType: \"role\",\n        resourceId: roleName,\n      };\n    }\n\n    return {\n      arn,\n      exists: false,\n      error: err.message || \"Unknown error\",\n      service: \"iam\",\n      resourceType: \"role\",\n      resourceId: roleName,\n    };\n  }\n}\n\n/**\n * Check if an IAM policy exists\n */\nasync function checkPolicy(policyArn: string): Promise<ResourceCheckResult> {\n  const iamClient = getClient();\n\n  // Extract policy name from ARN for display\n  const policyName = policyArn.split(\"/\").pop() ?? policyArn;\n\n  try {\n    await iamClient.send(new GetPolicyCommand({ PolicyArn: policyArn }));\n    return {\n      arn: policyArn,\n      exists: true,\n      service: \"iam\",\n      resourceType: \"policy\",\n      resourceId: policyName,\n    };\n  } catch (error) {\n    const err = error as Error & { name?: string };\n\n    if (err.name === \"NoSuchEntityException\") {\n      return {\n        arn: policyArn,\n        exists: false,\n        service: \"iam\",\n        resourceType: \"policy\",\n        resourceId: policyName,\n      };\n    }\n\n    return {\n      arn: policyArn,\n      exists: false,\n      error: err.message || \"Unknown error\",\n      service: \"iam\",\n      resourceType: \"policy\",\n      resourceId: policyName,\n    };\n  }\n}\n"],"mappings":";AAIA,SAAS,kBAAkB,gBAAgB,iBAAiB;AAQ5D,IAAI,SAA2B;AAK/B,SAAS,YAAuB;AAE9B,aAAW,IAAI,UAAU,EAAE,QAAQ,YAAY,CAAC;AAChD,SAAO;AACT;AAKO,IAAM,aAA8B;AAAA,EACzC,MAAM,MAAM,KAA8C;AACxD,UAAM,EAAE,cAAc,YAAY,IAAI,IAAI;AAE1C,YAAQ,cAAc;AAAA,MACpB,KAAK;AACH,eAAO,UAAU,YAAY,GAAG;AAAA,MAClC,KAAK;AACH,eAAO,YAAY,GAAG;AAAA,MACxB;AACE,eAAO;AAAA,UACL,KAAK;AAAA,UACL,QAAQ;AAAA,UACR,OAAO,kCAAkC,YAAY;AAAA,UACrD,SAAS;AAAA,UACT;AAAA,UACA;AAAA,QACF;AAAA,IACJ;AAAA,EACF;AACF;AAKA,eAAe,UAAU,UAAkB,KAA2C;AACpF,QAAM,YAAY,UAAU;AAE5B,MAAI;AACF,UAAM,UAAU,KAAK,IAAI,eAAe,EAAE,UAAU,SAAS,CAAC,CAAC;AAC/D,WAAO;AAAA,MACL;AAAA,MACA,QAAQ;AAAA,MACR,SAAS;AAAA,MACT,cAAc;AAAA,MACd,YAAY;AAAA,IACd;AAAA,EACF,SAAS,OAAO;AACd,UAAM,MAAM;AAEZ,QAAI,IAAI,SAAS,yBAAyB;AACxC,aAAO;AAAA,QACL;AAAA,QACA,QAAQ;AAAA,QACR,SAAS;AAAA,QACT,cAAc;AAAA,QACd,YAAY;AAAA,MACd;AAAA,IACF;AAEA,WAAO;AAAA,MACL;AAAA,MACA,QAAQ;AAAA,MACR,OAAO,IAAI,WAAW;AAAA,MACtB,SAAS;AAAA,MACT,cAAc;AAAA,MACd,YAAY;AAAA,IACd;AAAA,EACF;AACF;AAKA,eAAe,YAAY,WAAiD;AAC1E,QAAM,YAAY,UAAU;AAG5B,QAAM,aAAa,UAAU,MAAM,GAAG,EAAE,IAAI,KAAK;AAEjD,MAAI;AACF,UAAM,UAAU,KAAK,IAAI,iBAAiB,EAAE,WAAW,UAAU,CAAC,CAAC;AACnE,WAAO;AAAA,MACL,KAAK;AAAA,MACL,QAAQ;AAAA,MACR,SAAS;AAAA,MACT,cAAc;AAAA,MACd,YAAY;AAAA,IACd;AAAA,EACF,SAAS,OAAO;AACd,UAAM,MAAM;AAEZ,QAAI,IAAI,SAAS,yBAAyB;AACxC,aAAO;AAAA,QACL,KAAK;AAAA,QACL,QAAQ;AAAA,QACR,SAAS;AAAA,QACT,cAAc;AAAA,QACd,YAAY;AAAA,MACd;AAAA,IACF;AAEA,WAAO;AAAA,MACL,KAAK;AAAA,MACL,QAAQ;AAAA,MACR,OAAO,IAAI,WAAW;AAAA,MACtB,SAAS;AAAA,MACT,cAAc;AAAA,MACd,YAAY;AAAA,IACd;AAAA,EACF;AACF;","names":[]}

package/dist/iam-DJI64AGK.js

@@ -0,0 +1,39 @@
+// src/infra/checkers/gcp/iam.ts
+import { GoogleAuth } from "google-auth-library";
+var auth = null;
+function getAuth() {
+  auth ??= new GoogleAuth({ scopes: ["https://www.googleapis.com/auth/cloud-platform"] });
+  return auth;
+}
+function result(raw, resourceId, exists, error) {
+  return {
+    arn: raw,
+    exists,
+    error,
+    service: "iam",
+    resourceType: "serviceAccounts",
+    resourceId
+  };
+}
+var ServiceAccountChecker = {
+  async check(resource) {
+    const { project, resourceId, raw } = resource;
+    const url = `https://iam.googleapis.com/v1/projects/${project}/serviceAccounts/${resourceId}`;
+    try {
+      const authClient = getAuth();
+      const client = await authClient.getClient();
+      await client.request({ url, method: "GET" });
+      return result(raw, resourceId, true);
+    } catch (error) {
+      const err = error;
+      if (err.response?.status === 404 || err.code === 404 || err.message?.includes("NOT_FOUND")) {
+        return result(raw, resourceId, false);
+      }
+      return result(raw, resourceId, false, err.message ?? "Unknown error");
+    }
+  }
+};
+export {
+  ServiceAccountChecker
+};
+//# sourceMappingURL=iam-DJI64AGK.js.map

package/dist/iam-DJI64AGK.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/infra/checkers/gcp/iam.ts"],"sourcesContent":["/**\n * GCP IAM Service Account resource checker\n */\n\nimport { GoogleAuth } from \"google-auth-library\";\n\nimport type { ParsedGcpResource, ResourceCheckResult } from \"../../types.js\";\nimport type { GcpResourceChecker } from \"../types.js\";\n\nlet auth: GoogleAuth | null = null;\n\nfunction getAuth(): GoogleAuth {\n  auth ??= new GoogleAuth({ scopes: [\"https://www.googleapis.com/auth/cloud-platform\"] });\n  return auth;\n}\n\nfunction result(\n  raw: string,\n  resourceId: string,\n  exists: boolean,\n  error?: string\n): ResourceCheckResult {\n  return {\n    arn: raw,\n    exists,\n    error,\n    service: \"iam\",\n    resourceType: \"serviceAccounts\",\n    resourceId,\n  };\n}\n\nexport const ServiceAccountChecker: GcpResourceChecker = {\n  async check(resource: ParsedGcpResource): Promise<ResourceCheckResult> {\n    const { project, resourceId, raw } = resource;\n    const url = `https://iam.googleapis.com/v1/projects/${project}/serviceAccounts/${resourceId}`;\n\n    try {\n      const authClient = getAuth();\n      const client = await authClient.getClient();\n      await client.request({ url, method: \"GET\" });\n      return result(raw, resourceId, true);\n    } catch (error) {\n      const err = error as { code?: number; message?: string; response?: { status?: number } };\n      if (err.response?.status === 404 || err.code === 404 || err.message?.includes(\"NOT_FOUND\")) {\n        return result(raw, resourceId, false);\n      }\n      return result(raw, resourceId, false, err.message ?? \"Unknown error\");\n    }\n  },\n};\n"],"mappings":";AAIA,SAAS,kBAAkB;AAK3B,IAAI,OAA0B;AAE9B,SAAS,UAAsB;AAC7B,WAAS,IAAI,WAAW,EAAE,QAAQ,CAAC,gDAAgD,EAAE,CAAC;AACtF,SAAO;AACT;AAEA,SAAS,OACP,KACA,YACA,QACA,OACqB;AACrB,SAAO;AAAA,IACL,KAAK;AAAA,IACL;AAAA,IACA;AAAA,IACA,SAAS;AAAA,IACT,cAAc;AAAA,IACd;AAAA,EACF;AACF;AAEO,IAAM,wBAA4C;AAAA,EACvD,MAAM,MAAM,UAA2D;AACrE,UAAM,EAAE,SAAS,YAAY,IAAI,IAAI;AACrC,UAAM,MAAM,0CAA0C,OAAO,oBAAoB,UAAU;AAE3F,QAAI;AACF,YAAM,aAAa,QAAQ;AAC3B,YAAM,SAAS,MAAM,WAAW,UAAU;AAC1C,YAAM,OAAO,QAAQ,EAAE,KAAK,QAAQ,MAAM,CAAC;AAC3C,aAAO,OAAO,KAAK,YAAY,IAAI;AAAA,IACrC,SAAS,OAAO;AACd,YAAM,MAAM;AACZ,UAAI,IAAI,UAAU,WAAW,OAAO,IAAI,SAAS,OAAO,IAAI,SAAS,SAAS,WAAW,GAAG;AAC1F,eAAO,OAAO,KAAK,YAAY,KAAK;AAAA,MACtC;AACA,aAAO,OAAO,KAAK,YAAY,OAAO,IAAI,WAAW,eAAe;AAAA,IACtE;AAAA,EACF;AACF;","names":[]}