effortless-aws 0.36.0 → 0.37.0

package/dist/chunk-Q3ZDMZF3.js

@@ -1,889 +0,0 @@
-// src/runtime/table-client.ts
-import { DynamoDB } from "@aws-sdk/client-dynamodb";
-import { marshall, unmarshall } from "@aws-sdk/util-dynamodb";
-var GSI_TAG_PK = "tag-pk-index";
-var marshallKey = (key) => marshall(key, { removeUndefinedValues: true });
-var buildSkCondition = (sk) => {
-  const names = { "#sk": "sk" };
-  if (typeof sk === "string") {
-    return { expression: "AND #sk = :sk", names, values: { ":sk": sk } };
-  }
-  if ("begins_with" in sk) {
-    return { expression: "AND begins_with(#sk, :sk)", names, values: { ":sk": sk.begins_with } };
-  }
-  if ("gt" in sk) {
-    return { expression: "AND #sk > :sk", names, values: { ":sk": sk.gt } };
-  }
-  if ("gte" in sk) {
-    return { expression: "AND #sk >= :sk", names, values: { ":sk": sk.gte } };
-  }
-  if ("lt" in sk) {
-    return { expression: "AND #sk < :sk", names, values: { ":sk": sk.lt } };
-  }
-  if ("lte" in sk) {
-    return { expression: "AND #sk <= :sk", names, values: { ":sk": sk.lte } };
-  }
-  if ("between" in sk) {
-    return { expression: "AND #sk BETWEEN :sk1 AND :sk2", names, values: { ":sk1": sk.between[0], ":sk2": sk.between[1] } };
-  }
-  return { expression: "", names: {}, values: {} };
-};
-var createTableClient = (tableName, options) => {
-  let client2 = null;
-  const getClient2 = () => client2 ??= new DynamoDB({});
-  const tagField = options?.tagField ?? "tag";
-  return {
-    tableName,
-    async put(item, putOptions) {
-      const dataObj = item.data;
-      const tag = dataObj?.[tagField] || "";
-      if (!tag) throw new Error(`tag is required: data must include a "${tagField}" field`);
-      const dynamoItem = {
-        pk: item.pk,
-        sk: item.sk,
-        tag,
-        data: item.data
-      };
-      if (item.ttl !== void 0) dynamoItem.ttl = item.ttl;
-      await getClient2().putItem({
-        TableName: tableName,
-        Item: marshall(dynamoItem, { removeUndefinedValues: true }),
-        ...putOptions?.ifNotExists ? { ConditionExpression: "attribute_not_exists(pk)" } : {}
-      });
-    },
-    async get(key) {
-      const result = await getClient2().getItem({
-        TableName: tableName,
-        Key: marshallKey(key)
-      });
-      return result.Item ? unmarshall(result.Item) : void 0;
-    },
-    async delete(key) {
-      await getClient2().deleteItem({
-        TableName: tableName,
-        Key: marshallKey(key)
-      });
-    },
-    async update(key, actions) {
-      const names = {};
-      const values = {};
-      const setClauses = [];
-      const removeClauses = [];
-      let counter = 0;
-      const DATA_ALIAS = "#data";
-      let needsDataAlias = false;
-      if (actions.set) {
-        for (const [attr, val] of Object.entries(actions.set)) {
-          needsDataAlias = true;
-          const alias = `#a${counter}`;
-          const valAlias = `:v${counter}`;
-          names[alias] = attr;
-          values[valAlias] = val;
-          setClauses.push(`${DATA_ALIAS}.${alias} = ${valAlias}`);
-          counter++;
-        }
-      }
-      if (actions.increment) {
-        for (const [attr, val] of Object.entries(actions.increment)) {
-          needsDataAlias = true;
-          const alias = `#a${counter}`;
-          const valAlias = `:v${counter}`;
-          const zeroAlias = `:zero${counter}`;
-          names[alias] = attr;
-          values[valAlias] = val;
-          values[zeroAlias] = 0;
-          setClauses.push(`${DATA_ALIAS}.${alias} = if_not_exists(${DATA_ALIAS}.${alias}, ${zeroAlias}) + ${valAlias}`);
-          counter++;
-        }
-      }
-      if (actions.append) {
-        for (const [attr, val] of Object.entries(actions.append)) {
-          needsDataAlias = true;
-          const alias = `#a${counter}`;
-          const valAlias = `:v${counter}`;
-          const emptyAlias = `:empty${counter}`;
-          names[alias] = attr;
-          values[valAlias] = val;
-          values[emptyAlias] = [];
-          setClauses.push(`${DATA_ALIAS}.${alias} = list_append(if_not_exists(${DATA_ALIAS}.${alias}, ${emptyAlias}), ${valAlias})`);
-          counter++;
-        }
-      }
-      if (actions.remove) {
-        for (const attr of actions.remove) {
-          needsDataAlias = true;
-          const alias = `#a${counter}`;
-          names[alias] = attr;
-          removeClauses.push(`${DATA_ALIAS}.${alias}`);
-          counter++;
-        }
-      }
-      if (needsDataAlias) {
-        names[DATA_ALIAS] = "data";
-      }
-      if (actions.tag !== void 0) {
-        names["#tag"] = "tag";
-        values[":tagVal"] = actions.tag;
-        setClauses.push("#tag = :tagVal");
-      }
-      if (actions.ttl !== void 0) {
-        names["#ttl"] = "ttl";
-        if (actions.ttl === null) {
-          removeClauses.push("#ttl");
-        } else {
-          values[":ttlVal"] = actions.ttl;
-          setClauses.push("#ttl = :ttlVal");
-        }
-      }
-      const parts = [];
-      if (setClauses.length) parts.push(`SET ${setClauses.join(", ")}`);
-      if (removeClauses.length) parts.push(`REMOVE ${removeClauses.join(", ")}`);
-      if (!parts.length) return;
-      const request = {
-        TableName: tableName,
-        Key: marshallKey(key),
-        UpdateExpression: parts.join(" "),
-        ExpressionAttributeNames: names,
-        ...Object.keys(values).length ? { ExpressionAttributeValues: marshall(values, { removeUndefinedValues: true }) } : {}
-      };
-      try {
-        await getClient2().updateItem(request);
-      } catch (err) {
-        if (needsDataAlias && err.name === "ValidationException") {
-          const dataMap = {};
-          if (actions.set) Object.assign(dataMap, actions.set);
-          if (actions.increment) Object.assign(dataMap, actions.increment);
-          if (actions.append) Object.assign(dataMap, actions.append);
-          const retryNames = { "#data": "data" };
-          const retryValues = { ":fullData": dataMap };
-          const retrySets = ["#data = :fullData"];
-          if (actions.tag !== void 0) {
-            retryNames["#tag"] = "tag";
-            retryValues[":tagVal"] = actions.tag;
-            retrySets.push("#tag = :tagVal");
-          }
-          if (actions.ttl !== void 0 && actions.ttl !== null) {
-            retryNames["#ttl"] = "ttl";
-            retryValues[":ttlVal"] = actions.ttl;
-            retrySets.push("#ttl = :ttlVal");
-          }
-          const retryParts = [`SET ${retrySets.join(", ")}`];
-          if (actions.ttl === null) {
-            retryNames["#ttl"] = "ttl";
-            retryParts.push("REMOVE #ttl");
-          }
-          await getClient2().updateItem({
-            TableName: tableName,
-            Key: marshallKey(key),
-            UpdateExpression: retryParts.join(" "),
-            ExpressionAttributeNames: retryNames,
-            ExpressionAttributeValues: marshall(retryValues, { removeUndefinedValues: true })
-          });
-        } else {
-          throw err;
-        }
-      }
-    },
-    async query(params) {
-      const names = { "#pk": "pk" };
-      const values = { ":pk": params.pk };
-      let keyCondition = "#pk = :pk";
-      if (params.sk !== void 0) {
-        const skCond = buildSkCondition(params.sk);
-        keyCondition += ` ${skCond.expression}`;
-        Object.assign(names, skCond.names);
-        Object.assign(values, skCond.values);
-      }
-      const result = await getClient2().query({
-        TableName: tableName,
-        KeyConditionExpression: keyCondition,
-        ExpressionAttributeNames: names,
-        ExpressionAttributeValues: marshall(values, { removeUndefinedValues: true }),
-        ...params.limit ? { Limit: params.limit } : {},
-        ...params.scanIndexForward !== void 0 ? { ScanIndexForward: params.scanIndexForward } : {}
-      });
-      return (result.Items ?? []).map((item) => unmarshall(item));
-    },
-    async queryByTag(params) {
-      const names = { "#tag": "tag" };
-      const values = { ":tag": params.tag };
-      let keyCondition = "#tag = :tag";
-      if (params.pk !== void 0) {
-        const pkCond = buildSkCondition(params.pk);
-        const remapped = pkCond.expression.replace(/#sk/g, "#pk").replace(/:sk/g, ":pk");
-        keyCondition += ` ${remapped}`;
-        for (const [k, v] of Object.entries(pkCond.names)) {
-          names[k === "#sk" ? "#pk" : k] = v === "sk" ? "pk" : v;
-        }
-        for (const [k, v] of Object.entries(pkCond.values)) {
-          values[k.replace(":sk", ":pk")] = v;
-        }
-      }
-      const result = await getClient2().query({
-        TableName: tableName,
-        IndexName: GSI_TAG_PK,
-        KeyConditionExpression: keyCondition,
-        ExpressionAttributeNames: names,
-        ExpressionAttributeValues: marshall(values, { removeUndefinedValues: true }),
-        ...params.limit ? { Limit: params.limit } : {},
-        ...params.scanIndexForward !== void 0 ? { ScanIndexForward: params.scanIndexForward } : {}
-      });
-      return (result.Items ?? []).map((item) => unmarshall(item));
-    }
-  };
-};
-
-// src/handlers/handler-options.ts
-var toSeconds = (d) => {
-  if (typeof d === "number") return d;
-  const match = d.match(/^(\d+(?:\.\d+)?)(s|m|h|d)$/);
-  if (!match) throw new Error(`Invalid duration: "${d}"`);
-  const n = Number(match[1]);
-  const unit = match[2];
-  if (unit === "d") return n * 86400;
-  if (unit === "h") return n * 3600;
-  if (unit === "m") return n * 60;
-  return n;
-};
-
-// src/handlers/auth.ts
-import * as crypto from "crypto";
-var cfBase64Encode = (buffer) => buffer.toString("base64").replace(/\+/g, "-").replace(/=/g, "_").replace(/\//g, "~");
-var signCfCookies = (policy, config) => {
-  const ttlSeconds = toSeconds(policy.ttl);
-  const expireTime = Math.floor(Date.now() / 1e3) + ttlSeconds;
-  const resource = config.domain === "*" ? `https://*${policy.path}` : `https://${config.domain}${policy.path}`;
-  const policyJson = JSON.stringify({
-    Statement: [{
-      Resource: resource,
-      Condition: {
-        DateLessThan: { "AWS:EpochTime": expireTime }
-      }
-    }]
-  });
-  const policyBase64 = cfBase64Encode(Buffer.from(policyJson, "utf-8"));
-  const signature = cfBase64Encode(
-    crypto.sign("sha1", Buffer.from(policyJson, "utf-8"), config.privateKey)
-  );
-  const cookieAttrs = `; Secure; SameSite=Lax; Path=/; Max-Age=${ttlSeconds}`;
-  return [
-    `CloudFront-Policy=${policyBase64}${cookieAttrs}`,
-    `CloudFront-Signature=${signature}${cookieAttrs}`,
-    `CloudFront-Key-Pair-Id=${config.keyPairId}${cookieAttrs}`
-  ];
-};
-var AUTH_COOKIE_NAME = "__eff_session";
-var createAuthRuntime = (secret, defaultExpiresIn, apiTokenVerify, apiTokenHeader, apiTokenCacheTtlSeconds, cfSigningConfig) => {
-  const tokenCache = apiTokenCacheTtlSeconds ? /* @__PURE__ */ new Map() : void 0;
-  const sign2 = (payload) => crypto.createHmac("sha256", secret).update(payload).digest("base64url");
-  const cookieBase = `${AUTH_COOKIE_NAME}=`;
-  const cookieAttrs = "; HttpOnly; Secure; SameSite=Lax; Path=/";
-  const decodeSession = (cookieValue) => {
-    if (!cookieValue) return void 0;
-    const dot = cookieValue.indexOf(".");
-    if (dot === -1) return void 0;
-    const payload = cookieValue.slice(0, dot);
-    const sig = cookieValue.slice(dot + 1);
-    if (sign2(payload) !== sig) return void 0;
-    try {
-      const parsed = JSON.parse(Buffer.from(payload, "base64url").toString("utf-8"));
-      if (parsed.exp <= Math.floor(Date.now() / 1e3)) return void 0;
-      const { exp: _, ...data } = parsed;
-      return Object.keys(data).length > 0 ? data : void 0;
-    } catch {
-      return void 0;
-    }
-  };
-  const extractTokenValue = (headerValue) => {
-    const isDefaultHeader = !apiTokenHeader || apiTokenHeader.toLowerCase() === "authorization";
-    if (isDefaultHeader && headerValue.toLowerCase().startsWith("bearer ")) {
-      return headerValue.slice(7);
-    }
-    return headerValue;
-  };
-  const buildHelpers = (sessionData) => ({
-    createSession(data, options) {
-      const seconds = options?.expiresIn ? toSeconds(options.expiresIn) : defaultExpiresIn;
-      const exp = Math.floor(Date.now() / 1e3) + seconds;
-      const payload = Buffer.from(JSON.stringify({ exp, ...data }), "utf-8").toString("base64url");
-      const sig = sign2(payload);
-      const sessionCookie = `${cookieBase}${payload}.${sig}${cookieAttrs}; Max-Age=${seconds}`;
-      const cfCookies = options?.cdnPolicy && cfSigningConfig ? signCfCookies(options.cdnPolicy, cfSigningConfig) : void 0;
-      return {
-        status: 200,
-        body: { ok: true },
-        headers: {
-          "set-cookie": sessionCookie
-        },
-        ...cfCookies ? { cookies: [sessionCookie, ...cfCookies] } : {}
-      };
-    },
-    clearSession() {
-      return {
-        status: 200,
-        body: { ok: true },
-        headers: {
-          "set-cookie": `${cookieBase}${cookieAttrs}; Max-Age=0`
-        }
-      };
-    },
-    session: sessionData
-  });
-  return {
-    async forRequest(cookieValue, authHeader) {
-      if (authHeader && apiTokenVerify) {
-        const tokenValue = extractTokenValue(authHeader);
-        if (tokenCache) {
-          const cached = tokenCache.get(tokenValue);
-          if (cached && cached.expiresAt > Date.now()) {
-            return buildHelpers(cached.session);
-          }
-        }
-        const session = await apiTokenVerify({ value: tokenValue });
-        if (tokenCache && apiTokenCacheTtlSeconds) {
-          tokenCache.set(tokenValue, { session, expiresAt: Date.now() + apiTokenCacheTtlSeconds * 1e3 });
-        }
-        return buildHelpers(session);
-      }
-      return buildHelpers(decodeSession(cookieValue));
-    }
-  };
-};
-
-// src/runtime/bucket-client.ts
-import { S3 } from "@aws-sdk/client-s3";
-var createBucketMethods = (getClient2, bucketName) => ({
-  bucketName,
-  async put(key, body, options) {
-    await getClient2().putObject({
-      Bucket: bucketName,
-      Key: key,
-      Body: typeof body === "string" ? Buffer.from(body) : body,
-      ...options?.contentType ? { ContentType: options.contentType } : {}
-    });
-  },
-  async get(key) {
-    try {
-      const result = await getClient2().getObject({
-        Bucket: bucketName,
-        Key: key
-      });
-      const chunks = [];
-      const stream = result.Body;
-      for await (const chunk of stream) {
-        chunks.push(Buffer.isBuffer(chunk) ? chunk : Buffer.from(chunk));
-      }
-      return {
-        body: Buffer.concat(chunks),
-        contentType: result.ContentType
-      };
-    } catch (error) {
-      if (error instanceof Error && (error.name === "NoSuchKey" || error.$metadata?.httpStatusCode === 404)) {
-        return void 0;
-      }
-      throw error;
-    }
-  },
-  async delete(key) {
-    await getClient2().deleteObject({
-      Bucket: bucketName,
-      Key: key
-    });
-  },
-  async list(prefix) {
-    const items = [];
-    let continuationToken;
-    do {
-      const result = await getClient2().listObjectsV2({
-        Bucket: bucketName,
-        ...prefix ? { Prefix: prefix } : {},
-        ...continuationToken ? { ContinuationToken: continuationToken } : {}
-      });
-      for (const obj of result.Contents ?? []) {
-        if (obj.Key) {
-          items.push({
-            key: obj.Key,
-            size: obj.Size ?? 0,
-            lastModified: obj.LastModified
-          });
-        }
-      }
-      continuationToken = result.IsTruncated ? result.NextContinuationToken : void 0;
-    } while (continuationToken);
-    return items;
-  }
-});
-var createEntityClient = (getClient2, bucketName, entityName, cacheSeconds) => {
-  const entityKey = (id) => `${entityName}/${id}.json`;
-  return {
-    async put(id, data) {
-      await getClient2().putObject({
-        Bucket: bucketName,
-        Key: entityKey(id),
-        Body: JSON.stringify(data),
-        ContentType: "application/json",
-        ...cacheSeconds != null ? { CacheControl: `public, max-age=${cacheSeconds}` } : {}
-      });
-    },
-    async get(id) {
-      try {
-        const result = await getClient2().getObject({
-          Bucket: bucketName,
-          Key: entityKey(id)
-        });
-        const chunks = [];
-        const stream = result.Body;
-        for await (const chunk of stream) {
-          chunks.push(Buffer.isBuffer(chunk) ? chunk : Buffer.from(chunk));
-        }
-        return JSON.parse(Buffer.concat(chunks).toString("utf-8"));
-      } catch (error) {
-        if (error instanceof Error && (error.name === "NoSuchKey" || error.$metadata?.httpStatusCode === 404)) {
-          return void 0;
-        }
-        throw error;
-      }
-    },
-    async delete(id) {
-      await getClient2().deleteObject({
-        Bucket: bucketName,
-        Key: entityKey(id)
-      });
-    },
-    async list() {
-      const items = [];
-      let continuationToken;
-      const prefix = `${entityName}/`;
-      do {
-        const result = await getClient2().listObjectsV2({
-          Bucket: bucketName,
-          Prefix: prefix,
-          ...continuationToken ? { ContinuationToken: continuationToken } : {}
-        });
-        for (const obj of result.Contents ?? []) {
-          if (!obj.Key || !obj.Key.endsWith(".json")) continue;
-          const id = obj.Key.slice(prefix.length, -".json".length);
-          try {
-            const getResult = await getClient2().getObject({
-              Bucket: bucketName,
-              Key: obj.Key
-            });
-            const chunks = [];
-            const stream = getResult.Body;
-            for await (const chunk of stream) {
-              chunks.push(Buffer.isBuffer(chunk) ? chunk : Buffer.from(chunk));
-            }
-            items.push({ id, data: JSON.parse(Buffer.concat(chunks).toString("utf-8")) });
-          } catch {
-          }
-        }
-        continuationToken = result.IsTruncated ? result.NextContinuationToken : void 0;
-      } while (continuationToken);
-      return items;
-    }
-  };
-};
-var createBucketClient = (bucketName) => {
-  let client2 = null;
-  const getClient2 = () => client2 ??= new S3({});
-  return createBucketMethods(getClient2, bucketName);
-};
-var createBucketClientWithEntities = (bucketName, entitiesConfig) => {
-  let client2 = null;
-  const getClient2 = () => client2 ??= new S3({});
-  const base = createBucketMethods(getClient2, bucketName);
-  const result = { ...base };
-  for (const [entityName, config] of Object.entries(entitiesConfig)) {
-    result[entityName] = createEntityClient(getClient2, bucketName, entityName, config.cacheSeconds);
-  }
-  return result;
-};
-
-// src/runtime/handler-utils.ts
-import { readFileSync } from "fs";
-import { join } from "path";
-
-// src/runtime/email-client.ts
-import { SESv2Client, SendEmailCommand } from "@aws-sdk/client-sesv2";
-var createEmailClient = () => {
-  let client2 = null;
-  const getClient2 = () => client2 ??= new SESv2Client({});
-  return {
-    async send({ from, to, subject, html, text }) {
-      const toAddresses = Array.isArray(to) ? to : [to];
-      await getClient2().send(
-        new SendEmailCommand({
-          FromEmailAddress: from,
-          Destination: { ToAddresses: toAddresses },
-          Content: {
-            Simple: {
-              Subject: { Data: subject },
-              Body: {
-                ...html ? { Html: { Data: html } } : {},
-                ...text ? { Text: { Data: text } } : {}
-              }
-            }
-          }
-        })
-      );
-    }
-  };
-};
-
-// src/runtime/queue-client.ts
-import { SQS } from "@aws-sdk/client-sqs";
-var createQueueClient = (queueName) => {
-  let client2 = null;
-  const getClient2 = () => client2 ??= new SQS({});
-  let resolvedUrl;
-  const getQueueUrl = async () => {
-    if (resolvedUrl) return resolvedUrl;
-    const result = await getClient2().getQueueUrl({ QueueName: `${queueName}.fifo` });
-    resolvedUrl = result.QueueUrl;
-    return resolvedUrl;
-  };
-  return {
-    queueName,
-    async send(input) {
-      const queueUrl = await getQueueUrl();
-      await getClient2().sendMessage({
-        QueueUrl: queueUrl,
-        MessageBody: JSON.stringify(input.body),
-        MessageGroupId: input.groupId,
-        ...input.deduplicationId ? { MessageDeduplicationId: input.deduplicationId } : {},
-        ...input.messageAttributes ? {
-          MessageAttributes: Object.fromEntries(
-            Object.entries(input.messageAttributes).map(([k, v]) => [k, {
-              DataType: v.dataType,
-              StringValue: v.stringValue
-            }])
-          )
-        } : {}
-      });
-    },
-    async sendBatch(messages) {
-      const queueUrl = await getQueueUrl();
-      const entries = messages.map((msg, i) => ({
-        Id: String(i),
-        MessageBody: JSON.stringify(msg.body),
-        MessageGroupId: msg.groupId,
-        ...msg.deduplicationId ? { MessageDeduplicationId: msg.deduplicationId } : {}
-      }));
-      const result = await getClient2().sendMessageBatch({
-        QueueUrl: queueUrl,
-        Entries: entries
-      });
-      if (result.Failed && result.Failed.length > 0) {
-        throw new Error(`Failed to send ${result.Failed.length} message(s): ${result.Failed.map((f) => f.Message).join(", ")}`);
-      }
-    }
-  };
-};
-
-// src/runtime/worker-client.ts
-import { SQS as SQS2 } from "@aws-sdk/client-sqs";
-import { ECSClient, DescribeServicesCommand, UpdateServiceCommand } from "@aws-sdk/client-ecs";
-var createWorkerClient = (depValue) => {
-  const lastColon = depValue.lastIndexOf(":");
-  const workerName = depValue.slice(0, lastColon);
-  const idleTimeoutMs = Number(depValue.slice(lastColon + 1)) * 1e3;
-  const queueName = `${workerName}-worker`;
-  const cluster = workerName.replace(/-[^-]+$/, "");
-  const service = workerName;
-  let sqsClient = null;
-  const getSqs = () => sqsClient ??= new SQS2({});
-  let ecsClient = null;
-  const getEcs = () => ecsClient ??= new ECSClient({});
-  let resolvedQueueUrl;
-  const getQueueUrl = async () => {
-    if (resolvedQueueUrl) return resolvedQueueUrl;
-    const result = await getSqs().getQueueUrl({ QueueName: queueName });
-    resolvedQueueUrl = result.QueueUrl;
-    return resolvedQueueUrl;
-  };
-  let awakeUntil = 0;
-  const ensureRunning = async () => {
-    if (Date.now() < awakeUntil) return;
-    const resp = await getEcs().send(new DescribeServicesCommand({ cluster, services: [service] }));
-    const svc = resp.services?.[0];
-    if (svc && svc.desiredCount === 0) {
-      await getEcs().send(new UpdateServiceCommand({ cluster, service, desiredCount: 1 }));
-    }
-    awakeUntil = Date.now() + idleTimeoutMs;
-  };
-  return {
-    async send(msg, options) {
-      const queueUrl = await getQueueUrl();
-      await getSqs().sendMessage({
-        QueueUrl: queueUrl,
-        MessageBody: JSON.stringify(msg),
-        ...options?.delay ? { DelaySeconds: toSeconds(options.delay) } : {}
-      });
-      if (options?.start !== false && !options?.delay) {
-        await ensureRunning();
-      }
-    },
-    async status() {
-      const resp = await getEcs().send(new DescribeServicesCommand({ cluster, services: [service] }));
-      const svc = resp.services?.[0];
-      if (svc && svc.runningCount && svc.runningCount > 0) return "running";
-      return "idle";
-    },
-    async stop() {
-      await getEcs().send(new UpdateServiceCommand({ cluster, service, desiredCount: 0 }));
-      awakeUntil = 0;
-    }
-  };
-};
-
-// src/runtime/ssm-client.ts
-import { SSM } from "@aws-sdk/client-ssm";
-var client = null;
-var getClient = () => client ??= new SSM({});
-var getParameters = async (names) => {
-  const map = /* @__PURE__ */ new Map();
-  for (let i = 0; i < names.length; i += 10) {
-    const batch = names.slice(i, i + 10);
-    const result = await getClient().getParameters({
-      Names: batch,
-      WithDecryption: true
-    });
-    for (const p of result.Parameters ?? []) {
-      if (p.Name && p.Value !== void 0) {
-        map.set(p.Name, p.Value);
-      }
-    }
-  }
-  return map;
-};
-
-// src/runtime/handler-utils.ts
-var ENV_DEP_PREFIX = "EFF_DEP_";
-var ENV_PARAM_PREFIX = "EFF_PARAM_";
-var LOG_RANK = { error: 0, info: 1, debug: 2 };
-var truncate = (value, maxLength = 4096) => {
-  if (value === void 0 || value === null) return value;
-  const str = typeof value === "string" ? value : JSON.stringify(value);
-  if (str.length <= maxLength) return value;
-  return str.slice(0, maxLength) + "...[truncated]";
-};
-var DEP_FACTORIES = {
-  table: (name, depHandler) => {
-    const tagField = depHandler?.__spec?.tagField;
-    return createTableClient(name, tagField ? { tagField } : void 0);
-  },
-  bucket: (name, depHandler) => {
-    const entities = depHandler?.__spec?.entities;
-    if (entities && Object.keys(entities).length > 0) {
-      const config = {};
-      for (const [entityName, entityOpts] of Object.entries(entities)) {
-        config[entityName] = entityOpts.cache ? { cacheSeconds: toSeconds(entityOpts.cache) } : {};
-      }
-      return createBucketClientWithEntities(name, config);
-    }
-    return createBucketClient(name);
-  },
-  mailer: () => createEmailClient(),
-  queue: (name) => createQueueClient(name),
-  worker: (name) => createWorkerClient(name)
-};
-var parseDepValue = (raw) => {
-  const idx = raw.indexOf(":");
-  return { type: raw.slice(0, idx), name: raw.slice(idx + 1) };
-};
-var resolveDepsInput = (deps) => typeof deps === "function" ? deps() : deps;
-var buildDeps = (rawDeps) => {
-  const deps = resolveDepsInput(rawDeps);
-  if (!deps) return void 0;
-  const result = {};
-  for (const key of Object.keys(deps)) {
-    const raw = process.env[`${ENV_DEP_PREFIX}${key}`];
-    if (!raw) throw new Error(`Missing environment variable ${ENV_DEP_PREFIX}${key} for dep "${key}"`);
-    const { type, name } = parseDepValue(raw);
-    const factory = DEP_FACTORIES[type];
-    if (!factory) throw new Error(`Unknown dep type "${type}" for dep "${key}"`);
-    result[key] = factory(name, deps[key]);
-  }
-  return result;
-};
-var buildParams = async (params) => {
-  if (!params) return void 0;
-  const entries = [];
-  for (const propName of Object.keys(params)) {
-    const ssmPath = process.env[`${ENV_PARAM_PREFIX}${propName}`];
-    if (!ssmPath) {
-      throw new Error(`Missing environment variable ${ENV_PARAM_PREFIX}${propName} for param "${propName}"`);
-    }
-    entries.push({ propName, ssmPath });
-  }
-  if (entries.length === 0) return void 0;
-  const values = await getParameters(entries.map((e) => e.ssmPath));
-  const result = {};
-  for (const { propName, ssmPath } of entries) {
-    const raw = values.get(ssmPath) ?? "";
-    const ref = params[propName];
-    const transform = typeof ref === "object" && ref !== null && "transform" in ref && typeof ref.transform === "function" ? ref.transform : void 0;
-    result[propName] = transform ? transform(raw) : raw;
-  }
-  return result;
-};
-var resolvePath = (filePath) => join(process.cwd(), filePath);
-var staticFiles = {
-  read: (filePath) => readFileSync(resolvePath(filePath), "utf-8"),
-  readBuffer: (filePath) => readFileSync(resolvePath(filePath)),
-  path: resolvePath
-};
-var createHandlerRuntime = (handler, handlerType, logLevel = "info", extraSetupArgs) => {
-  const handlerName = process.env.EFF_HANDLER ?? "unknown";
-  const rank = LOG_RANK[logLevel];
-  let ctx = null;
-  let resolvedDeps;
-  let resolvedParams = null;
-  let resolvedAuthRuntime = null;
-  const getDeps = () => resolvedDeps ??= buildDeps(handler.deps);
-  const getParams = async () => {
-    if (resolvedParams !== null) return resolvedParams;
-    resolvedParams = await buildParams(handler.config);
-    return resolvedParams;
-  };
-  let resolvedCfSigningConfig = null;
-  const getCfSigningConfig = async () => {
-    if (resolvedCfSigningConfig !== null) return resolvedCfSigningConfig;
-    const cfSigningKeySsmPath = process.env.EFF_CF_SIGNING_KEY;
-    const cfKeyPairId = process.env.EFF_CF_KEY_PAIR_ID;
-    const cfDomain = process.env.EFF_CF_DOMAIN;
-    if (!cfSigningKeySsmPath || !cfKeyPairId || !cfDomain) {
-      resolvedCfSigningConfig = void 0;
-      return void 0;
-    }
-    const values = await getParameters([cfSigningKeySsmPath]);
-    const privateKey = values.get(cfSigningKeySsmPath);
-    if (!privateKey) {
-      resolvedCfSigningConfig = void 0;
-      return void 0;
-    }
-    resolvedCfSigningConfig = { privateKey, keyPairId: cfKeyPairId, domain: cfDomain };
-    return resolvedCfSigningConfig;
-  };
-  const getAuthRuntime = async () => {
-    if (resolvedAuthRuntime !== null) return resolvedAuthRuntime;
-    if (!handler.authFn) {
-      resolvedAuthRuntime = void 0;
-      return void 0;
-    }
-    const params = await getParams();
-    const deps = getDeps();
-    const authArgs = {};
-    if (params) authArgs.config = params;
-    if (deps) authArgs.deps = deps;
-    const authOpts = await handler.authFn(authArgs);
-    if (!authOpts?.secret) {
-      resolvedAuthRuntime = void 0;
-      return void 0;
-    }
-    const secret = authOpts.secret;
-    resolvedAuthHeaderName = authOpts.apiToken?.header;
-    const defaultExpires = authOpts.expiresIn ? toSeconds(authOpts.expiresIn) : 604800;
-    const apiToken = authOpts.apiToken;
-    const cacheTtlSeconds = apiToken?.cacheTtl ? toSeconds(apiToken.cacheTtl) : void 0;
-    const rawVerify = apiToken?.verify;
-    const wrappedVerify = rawVerify ? (args) => rawVerify(args.value) : void 0;
-    const cfSigningConfig = await getCfSigningConfig();
-    resolvedAuthRuntime = createAuthRuntime(
-      secret,
-      defaultExpires,
-      wrappedVerify,
-      apiToken?.header,
-      cacheTtlSeconds,
-      cfSigningConfig
-    );
-    return resolvedAuthRuntime;
-  };
-  const getSetup = async () => {
-    if (ctx !== null) return ctx;
-    if (handler.setup) {
-      const params = await getParams();
-      const deps = getDeps();
-      const args = {};
-      if (params) args.config = params;
-      if (deps) args.deps = deps;
-      if (handler.static) args.files = staticFiles;
-      if (extraSetupArgs) Object.assign(args, extraSetupArgs());
-      ctx = await handler.setup(args);
-    }
-    return ctx;
-  };
-  let resolvedAuthHeaderName;
-  const commonArgs = async (cookieValue, authHeader, headers) => {
-    const args = {};
-    if (handler.setup) args.ctx = await getSetup();
-    const deps = getDeps();
-    if (deps) args.deps = deps;
-    const params = await getParams();
-    if (params) args.config = params;
-    if (handler.static) args.files = staticFiles;
-    const authRuntime = await getAuthRuntime();
-    if (authRuntime) {
-      let finalAuthHeader = authHeader;
-      if (finalAuthHeader === void 0 && headers && resolvedAuthHeaderName) {
-        finalAuthHeader = headers[resolvedAuthHeaderName] ?? headers[resolvedAuthHeaderName.toLowerCase()] ?? void 0;
-      }
-      args.auth = await authRuntime.forRequest(cookieValue, finalAuthHeader);
-    }
-    return args;
-  };
-  const logExecution = (startTime, input, output) => {
-    if (rank < LOG_RANK.info) return;
-    const entry = {
-      level: "info",
-      handler: handlerName,
-      type: handlerType,
-      ms: Date.now() - startTime
-    };
-    if (rank >= LOG_RANK.debug) {
-      entry.input = truncate(input);
-      entry.output = truncate(output);
-    }
-    console.log(JSON.stringify(entry));
-  };
-  const logError = (startTime, input, error) => {
-    const entry = {
-      level: "error",
-      handler: handlerName,
-      type: handlerType,
-      ms: Date.now() - startTime,
-      error: error instanceof Error ? error.message : String(error)
-    };
-    if (rank >= LOG_RANK.debug) {
-      entry.input = truncate(input);
-    }
-    console.error(JSON.stringify(entry));
-  };
-  const noop = () => {
-  };
-  const saved = { log: console.log, info: console.info, debug: console.debug };
-  const patchConsole = () => {
-    if (rank < LOG_RANK.debug) console.debug = noop;
-    if (rank < LOG_RANK.info) {
-      console.log = noop;
-      console.info = noop;
-    }
-  };
-  const restoreConsole = () => {
-    console.log = saved.log;
-    console.info = saved.info;
-    console.debug = saved.debug;
-  };
-  return { commonArgs, logExecution, logError, patchConsole, restoreConsole, handlerName };
-};
-
-export {
-  createTableClient,
-  toSeconds,
-  AUTH_COOKIE_NAME,
-  createBucketClient,
-  createBucketClientWithEntities,
-  buildDeps,
-  buildParams,
-  createHandlerRuntime
-};