az2aws 1.3.0 → 1.4.0

package/CHANGELOG.md

@@ -1,5 +1,23 @@
 # Changelog
 
+## [1.4.0](https://github.com/kuma0128/az2aws/compare/v1.3.0...v1.4.0) (2026-02-12)
+
+
+### Features
+
+* add GovCloud region warning ([#104](https://github.com/kuma0128/az2aws/issues/104)) ([1e169cc](https://github.com/kuma0128/az2aws/commit/1e169cc77c35a5453728f71952aa4201842c8430))
+
+
+### Bug Fixes
+
+* honor http_proxy for browser and STS ([#92](https://github.com/kuma0128/az2aws/issues/92)) ([0e002ae](https://github.com/kuma0128/az2aws/commit/0e002ae362466cd9434bb364150bf54227738225))
+
+
+### Performance Improvements
+
+* optimize keyboard input clearing with select + backspace ([#116](https://github.com/kuma0128/az2aws/issues/116)) ([84b4cfb](https://github.com/kuma0128/az2aws/commit/84b4cfbef32917a6f6d2f9ef56d5a13b09a91f3a))
+* replace lodash with native array methods ([#115](https://github.com/kuma0128/az2aws/issues/115)) ([f61786f](https://github.com/kuma0128/az2aws/commit/f61786f0ab1f215d351fe3ddba15d22cfb048198))
+
 ## [1.3.0](https://github.com/kuma0128/az2aws/compare/v1.2.0...v1.3.0) (2026-01-27)
 
 

package/CONTRIBUTING.md

@@ -49,10 +49,10 @@ mise use --global node@24
 node -v
 ```
 
-5. Install yarn:
+5. Enable pnpm via corepack:
 
 ```sh
-npm install -g yarn
+corepack enable
 ```
 
 ### Setup
@@ -67,32 +67,33 @@ cd az2aws
 2. Install dependencies:
 
 ```sh
-yarn install
+pnpm install
 ```
 
 3. Start development mode:
 
 ```sh
-yarn start
+pnpm start
 ```
 
 Or build and run production mode:
 
 ```sh
-yarn build && node ./lib/index.js
+pnpm build && node ./lib/index.js
 ```
 
 ### Available Scripts
 
 | Script | Description |
 |--------|-------------|
-| `yarn start` | Start development mode with hot reload |
-| `yarn build` | Build for production |
-| `yarn test` | Run linting and formatting checks |
-| `yarn test:unit` | Run unit tests |
-| `yarn eslint` | Run ESLint |
-| `yarn prettier:check` | Check code formatting |
-| `yarn prettier:write` | Auto-fix code formatting |
+| `pnpm start` | Start development mode with hot reload |
+| `pnpm build` | Build for production |
+| `pnpm test` | Run unit tests |
+| `pnpm test:coverage` | Run unit tests with coverage |
+| `pnpm lint` | Run ESLint and formatting checks |
+| `pnpm eslint` | Run ESLint |
+| `pnpm prettier:check` | Check code formatting |
+| `pnpm prettier:write` | Auto-fix code formatting |
 
 ## Development Workflow
 
@@ -107,7 +108,7 @@ git checkout -b fix/your-bug-fix
 2. Make your changes and ensure tests pass:
 
 ```sh
-yarn test
+pnpm test
 ```
 
 3. Commit your changes following our [commit message guidelines](#commit-message-guidelines).
@@ -118,8 +119,8 @@ yarn test
 
 ### Before Submitting
 
-- [ ] Run `yarn test` and ensure all checks pass
-- [ ] Run `yarn build` to verify the build succeeds
+- [ ] Run `pnpm test` and ensure all checks pass
+- [ ] Run `pnpm build` to verify the build succeeds
 - [ ] Update documentation if you changed any user-facing behavior
 - [ ] Add tests for new functionality
 
@@ -164,13 +165,13 @@ This project uses ESLint and Prettier. Your code will be automatically checked.
 
 ```sh
 # Check formatting
-yarn prettier:check
+pnpm prettier:check
 
 # Auto-fix formatting
-yarn prettier:write
+pnpm prettier:write
 
 # Run linter
-yarn eslint
+pnpm eslint
 ```
 
 ### File Organization

package/README.md

@@ -1,5 +1,5 @@
 [![view on npm](http://img.shields.io/npm/v/az2aws.svg)](https://www.npmjs.org/package/az2aws)
-[![npm module downloads per month](http://img.shields.io/npm/dm/az2aws.svg)](https://www.npmjs.org/package/az2aws)
+[![npm module downloads per month](http://img.shields.io/npm/dm/az2aws.svg?cacheSeconds=86400)](https://www.npmjs.org/package/az2aws)
 [![CI](https://github.com/kuma0128/az2aws/actions/workflows/main.yml/badge.svg)](https://github.com/kuma0128/az2aws/actions/workflows/main.yml)
 [![codecov](https://codecov.io/gh/kuma0128/az2aws/graph/badge.svg)](https://codecov.io/gh/kuma0128/az2aws)
 
@@ -121,6 +121,10 @@ Set the `region` in your ~/.aws/config to use non-standard AWS partitions:
 - **GovCloud**: us-gov-west-1, us-gov-east-1
 - **China**: cn-north-1, cn-northwest-1
 
+For GovCloud, make sure your AWS CLI default region is set to a GovCloud
+region if you do not set a profile region; otherwise STS calls may target the
+standard partition.
+
 #### Stay Logged In
 
 Enable "Stay logged in" during configuration to use `--no-prompt` without storing passwords:
@@ -178,7 +182,7 @@ You'll be prompted for username, password, and MFA if required. After login, use
 **Tips:**
 - Set `AWS_PROFILE` env var instead of using `--profile`
 - Use `--mode gui --disable-gpu` on VMs or if rendering fails
-- Set `https_proxy` env var for corporate proxy
+- Set `https_proxy` or `http_proxy` env var for corporate proxy
 
 #### Troubleshooting
 

package/lib/awsConfig.js

@@ -47,6 +47,11 @@ exports.awsConfig = {
             expirationDate = new Date(config[profileName].aws_expiration);
         }
         const timeDifference = expirationDate.getTime() - new Date().getTime();
+        // If expiration date is invalid (NaN), treat as expired for safety
+        if (isNaN(timeDifference)) {
+            debug("Invalid expiration date, treating as expired");
+            return true;
+        }
         debug(`Remaining time till credential expiration: ${timeDifference / 1000}s, refresh due if time lower than: ${refreshLimitInMs / 1000}s`);
         return timeDifference < refreshLimitInMs;
     },

package/lib/configureProfileAsync.js

@@ -3,7 +3,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.configureProfileAsync = void 0;
+exports.configureProfileAsync = configureProfileAsync;
 const inquirer_1 = __importDefault(require("inquirer"));
 const awsConfig_1 = require("./awsConfig");
 async function configureProfileAsync(profileName) {
@@ -74,4 +74,3 @@ async function configureProfileAsync(profileName) {
     });
     console.log("Profile saved.");
 }
-exports.configureProfileAsync = configureProfileAsync;

package/lib/login.js

@@ -4,7 +4,6 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.login = void 0;
-const lodash_1 = __importDefault(require("lodash"));
 const bluebird_1 = __importDefault(require("bluebird"));
 const inquirer_1 = __importDefault(require("inquirer"));
 const zlib_1 = __importDefault(require("zlib"));
@@ -19,6 +18,7 @@ const awsConfig_1 = require("./awsConfig");
 const https_proxy_agent_1 = require("https-proxy-agent");
 const paths_1 = require("./paths");
 const mkdirp_1 = __importDefault(require("mkdirp"));
+const promises_1 = __importDefault(require("fs/promises"));
 const https_1 = require("https");
 const node_http_handler_1 = require("@smithy/node-http-handler");
 const loginStates_1 = require("./loginStates");
@@ -32,6 +32,10 @@ const AZURE_AD_SSO = "autologon.microsoftazuread-sso.com";
 const AWS_SAML_ENDPOINT = "https://signin.aws.amazon.com/saml";
 const AWS_CN_SAML_ENDPOINT = "https://signin.amazonaws.cn/saml";
 const AWS_GOV_SAML_ENDPOINT = "https://signin.amazonaws-us-gov.com/saml";
+const getProxyUrl = () => process.env.https_proxy ||
+    process.env.HTTPS_PROXY ||
+    process.env.http_proxy ||
+    process.env.HTTP_PROXY;
 exports.login = {
     async loginAsync(profileName, mode, disableSandbox, noPrompt, enableChromeNetworkService, awsNoVerifySsl, enableChromeSeamlessSso, noDisableExtensions, disableGpu) {
         let headless, cliProxy;
@@ -208,8 +212,9 @@ exports.login = {
                     args.push(`--profile-directory=${paths_1.paths.profileDir}`);
                 }
             }
-            if (process.env.https_proxy) {
-                args.push(`--proxy-server=${process.env.https_proxy}`);
+            const proxyUrl = getProxyUrl();
+            if (proxyUrl) {
+                args.push(`--proxy-server=${proxyUrl}`);
             }
             const ignoreDefaultArgs = noDisableExtensions
                 ? ["--disable-extensions"]
@@ -225,7 +230,24 @@ exports.login = {
             if (paths_1.paths.chromeBin) {
                 launchParams.executablePath = paths_1.paths.chromeBin;
             }
-            browser = await puppeteer_1.default.launch(launchParams);
+            try {
+                browser = await puppeteer_1.default.launch(launchParams);
+            }
+            catch (e) {
+                if (e instanceof Error &&
+                    e.constructor.name === "TargetCloseError" &&
+                    rememberMe) {
+                    const userDataDir = paths_1.paths.userDataDir || paths_1.paths.chromium;
+                    debug(`Browser launch failed with TargetCloseError. Resetting profile at ${userDataDir}`);
+                    console.warn("Browser profile appears incompatible. Resetting profile data and retrying...");
+                    await promises_1.default.rm(userDataDir, { recursive: true, force: true });
+                    await (0, mkdirp_1.default)(userDataDir);
+                    browser = await puppeteer_1.default.launch(launchParams);
+                }
+                else {
+                    throw e;
+                }
+            }
             // Wait for a bit as sometimes the browser isn't ready.
             await bluebird_1.default.delay(200);
             const pages = await browser.pages();
@@ -417,7 +439,7 @@ exports.login = {
                 if (!defaultRoleArn) {
                     throw new CLIError_1.CLIError("--no-prompt requires azure_default_role_arn when multiple roles are available.");
                 }
-                role = lodash_1.default.find(roles, ["roleArn", defaultRoleArn]);
+                role = roles.find((r) => r.roleArn === defaultRoleArn);
                 if (!role) {
                     throw new CLIError_1.CLIError(`Default role ARN '${defaultRoleArn}' was not found in the SAML response.`);
                 }
@@ -429,7 +451,7 @@ exports.login = {
                     name: "role",
                     message: "Role:",
                     type: "list",
-                    choices: lodash_1.default.sortBy(lodash_1.default.map(roles, "roleArn")),
+                    choices: roles.map((r) => r.roleArn).sort(),
                     default: defaultRoleArn,
                 });
             }
@@ -461,7 +483,7 @@ exports.login = {
         if (questions.length > 0) {
             const answers = await inquirer_1.default.prompt(questions);
             if (!role)
-                role = lodash_1.default.find(roles, ["roleArn", answers.role]);
+                role = roles.find((r) => r.roleArn === answers.role);
             if (answers.durationHours) {
                 durationHours = parseInt(answers.durationHours, 10);
             }
@@ -491,12 +513,13 @@ exports.login = {
                 "This makes the connection vulnerable to MITM attacks. " +
                 "Consider using NODE_EXTRA_CA_CERTS environment variable instead.");
         }
-        if (process.env.https_proxy) {
+        const proxyUrl = getProxyUrl();
+        if (proxyUrl) {
             const proxyOptions = awsNoVerifySsl ? { rejectUnauthorized: false } : {};
             stsOptions = {
                 ...stsOptions,
                 requestHandler: new node_http_handler_1.NodeHttpHandler({
-                    httpsAgent: new https_proxy_agent_1.HttpsProxyAgent(process.env.https_proxy, proxyOptions),
+                    httpsAgent: new https_proxy_agent_1.HttpsProxyAgent(proxyUrl, proxyOptions),
                 }),
             };
         }

package/lib/loginStates.js

@@ -4,7 +4,6 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.states = void 0;
-const lodash_1 = __importDefault(require("lodash"));
 const bluebird_1 = __importDefault(require("bluebird"));
 const inquirer_1 = __importDefault(require("inquirer"));
 const debug_1 = __importDefault(require("debug"));
@@ -54,9 +53,10 @@ exports.states = [
             debug("Focusing on username input");
             await page.focus(`input[name="loginfmt"]`);
             debug("Clearing input");
-            for (let i = 0; i < 100; i++) {
-                await page.keyboard.press("Backspace");
-            }
+            await page.$eval('input[name="loginfmt"]', (el) => {
+                el.select();
+            });
+            await page.keyboard.press("Backspace");
             debug("Typing username");
             // eslint-disable-next-line @typescript-eslint/no-unsafe-argument
             await page.keyboard.type(username);
@@ -116,11 +116,11 @@ exports.states = [
                         name: "account",
                         message: "Account:",
                         type: "list",
-                        choices: lodash_1.default.map(accounts, "message"),
+                        choices: accounts.map((a) => a.message),
                         default: aadTileMessage,
                     },
                 ]);
-                account = lodash_1.default.find(accounts, ["message", answers.account]);
+                account = accounts.find((a) => a.message === answers.account);
             }
             if (!account) {
                 throw new Error("Unable to find account");
@@ -281,9 +281,10 @@ exports.states = [
             debug("Focusing on verification code input");
             await page.focus(`input[name="otc"]`);
             debug("Clearing input");
-            for (let i = 0; i < 100; i++) {
-                await page.keyboard.press("Backspace");
-            }
+            await page.$eval('input[name="otc"]', (el) => {
+                el.select();
+            });
+            await page.keyboard.press("Backspace");
             debug("Typing verification code");
             // eslint-disable-next-line @typescript-eslint/no-unsafe-argument
             await page.keyboard.type(verificationCode);

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "az2aws",
-  "version": "1.3.0",
+  "version": "1.4.0",
   "description": "Use Azure AD SSO to log into the AWS CLI. A modern, actively maintained alternative to aws-azure-login.",
   "main": "index.js",
   "author": {
@@ -37,6 +37,13 @@
   "engines": {
     "node": ">=24.0"
   },
+  "packageManager": "pnpm@10.29.3",
+  "pnpm": {
+    "onlyBuiltDependencies": [
+      "esbuild",
+      "puppeteer"
+    ]
+  },
   "bin": {
     "az2aws": "lib/index.js"
   },
@@ -50,7 +57,7 @@
     "test": "vitest run",
     "test:watch": "vitest",
     "test:coverage": "vitest run --coverage",
-    "lint": "yarn eslint && yarn prettier:check"
+    "lint": "pnpm eslint && pnpm prettier:check"
   },
   "dependencies": {
     "@aws-sdk/client-sts": "^3.723.0",
@@ -63,7 +70,6 @@
     "https-proxy-agent": "^7.0.6",
     "ini": "^3.0.1",
     "inquirer": "^8.2.6",
-    "lodash": "^4.17.21",
     "mkdirp": "^2.1.6",
     "puppeteer": "^24.34.0",
     "uuid": "^9.0.1"
@@ -74,7 +80,6 @@
     "@types/debug": "^4.1.12",
     "@types/ini": "^1.3.34",
     "@types/inquirer": "^8.2.10",
-    "@types/lodash": "^4.17.0",
     "@types/mkdirp": "^1.0.2",
     "@types/node": "^24.0.0",
     "@types/uuid": "^8.3.4",

package/.release-please-manifest.json

@@ -1,3 +0,0 @@
-{
-  ".": "1.3.0"
-}