envilder 0.7.12 → 0.9.1

package/docs/CHANGELOG.md

@@ -1,5 +1,46 @@
-<!-- markdownlint-disable MD024 -->
-# Changelog
+## [0.8.0] - 2026-03-22
+
+### Added
+
+* **`$config` section in map files** — Map files now support an optional `$config` key to declare provider and connection
+details inline (e.g., `"provider": "azure"`, `"vaultUrl": "https://..."`, `"profile": "dev-account"`)
+* New CLI flag `--vault-url <url>` — Azure Key Vault URL, overrides `$config.vaultUrl` in the map file
+* New GitHub Action input `vault-url` — Azure Key Vault URL, overrides `$config.vaultUrl` in the map file
+* Precedence chain: CLI flags / GHA inputs > `$config` in map file > defaults
+* Backward compatible: existing map files without `$config` continue to work (defaults to AWS provider)
+* **Azure Key Vault support** — Use `--provider=azure` (CLI) or `provider: azure` (GitHub Action) to pull/push secrets
+from Azure Key Vault ([#90](https://github.com/macalbert/envilder/pull/90))
+* New infrastructure adapter: `AzureKeyVaultSecretProvider` implementing `ISecretProvider`
+* New CLI option `--provider <name>` to select cloud provider (`aws` or `azure`, default: `aws`)
+* New GitHub Action input `provider` for selecting the cloud provider
+* Azure authentication via `DefaultAzureCredential` (supports Azure CLI, managed identity, etc.)
+* Automatic secret name normalization for Azure Key Vault naming constraints
+
+### Changed
+
+* **CLI flag `--ssm-path` renamed to `--secret-path`** — The old flag is still accepted as a deprecated alias and
+prints a warning. It will be removed in a future release.
+* `configureInfrastructureServices()` now receives a single `MapFileConfig` object instead of separate parameters
+* CLI and GHA entry points read `$config` from the map file and merge with CLI flags / GHA inputs
+* Extracted shared `ContainerConfiguration` module (`src/apps/shared/`) for DI setup reused by CLI and GitHub Action
+* Both `Startup.ts` files (CLI and GHA) now delegate to shared `configureInfrastructureServices()` and `configureApplicationServices()`
+* Updated CLI description to include Azure Key Vault examples
+* Updated `action.yml` description and inputs to reflect multi-provider support
+
+### Dependencies
+
+* Added `@azure/keyvault-secrets`
+* Added `@azure/identity`
+* Added `@azure/core-rest-pipeline`
+
+### Documentation
+
+* Updated all documentation to reflect `$config` map-file section and `--vault-url` flag
+* Updated architecture diagrams and DI code snippets
+* Updated GitHub Action examples to use `vault-url` input
+* Updated ROADMAP to mark Azure Key Vault as fully implemented
+
+---
 
 ## [0.7.6] - 2026-01-16
 
@@ -119,13 +160,6 @@
 
 ---
 
-## Changelog
-
-All notable changes to this project will be documented in this file.
-
-The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
-and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
-
 ## [0.6.6] - 2025-11-02
 
 ### Changed
@@ -349,95 +383,3 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 ## [0.1.4] - 2024-10-01
 
 Initial public release of Envilder.
-
----
-
-## How to Update This Changelog
-
-This changelog follows [Conventional Commits](https://www.conventionalcommits.org/) specification.
-
-### Commit Message Format
-
-```txt
-<type>[optional scope]: <description>
-
-[optional body]
-
-[optional footer(s)]
-```
-
-### Types
-
-* `feat`: A new feature (triggers MINOR version bump)
-* `fix`: A bug fix (triggers PATCH version bump)
-* `docs`: Documentation-only changes
-* `style`: Changes that don't affect code meaning (formatting, etc.)
-* `refactor`: Code change that neither fixes a bug nor adds a feature
-* `perf`: Performance improvements
-* `test`: Adding or correcting tests
-* `chore`: Changes to build process or auxiliary tools
-* `ci`: Changes to CI configuration files and scripts
-
-### Breaking Changes
-
-Add `BREAKING CHANGE:` in the footer or append `!` after type/scope:
-
-```txt
-feat!: remove AWS profile auto-detection
-
-BREAKING CHANGE: Users must now explicitly specify --profile flag
-```
-
-This triggers a MAJOR version bump.
-
-### Examples
-
-```bash
-# Feature addition (0.7.0 -> 0.8.0)
-git commit -m "feat(gha): add GitHub Action support"
-
-# Bug fix (0.7.0 -> 0.7.1)
-git commit -m "fix(cli): handle empty environment files"
-
-# Breaking change (0.7.0 -> 1.0.0)
-git commit -m "feat!: redesign CLI interface"
-```
-
----
-
-## Maintenance
-
-This project follows [Conventional Commits](https://www.conventionalcommits.org/) for commit messages.
-
-**To update this changelog**:
-
-1. Edit this file following the format above
-2. Add entries under `[Unreleased]` section
-3. Run `pnpm version [patch|minor|major]` to create a new release
-4. Move `[Unreleased]` entries to the new version section
-
-**Alternative**: Use [GitHub Releases](https://github.com/macalbert/envilder/releases) to auto-generate release notes
-from commit messages.
-
-[0.7.6]: https://github.com/macalbert/envilder/compare/v0.7.5...v0.7.6
-[0.7.5]: https://github.com/macalbert/envilder/compare/v0.7.4...v0.7.5
-[0.7.4]: https://github.com/macalbert/envilder/compare/v0.7.3...v0.7.4
-[0.7.3]: https://github.com/macalbert/envilder/compare/v0.7.2...v0.7.3
-[0.7.2]: https://github.com/macalbert/envilder/compare/v0.7.1...v0.7.2
-[0.7.1]: https://github.com/macalbert/envilder/compare/v0.6.6...v0.7.1
-[0.6.6]: https://github.com/macalbert/envilder/compare/v0.6.5...v0.6.6
-[0.6.5]: https://github.com/macalbert/envilder/compare/v0.6.4...v0.6.5
-[0.6.4]: https://github.com/macalbert/envilder/compare/v0.6.3...v0.6.4
-[0.6.3]: https://github.com/macalbert/envilder/compare/v0.6.1...v0.6.3
-[0.6.1]: https://github.com/macalbert/envilder/compare/v0.5.6...v0.6.1
-[0.5.6]: https://github.com/macalbert/envilder/compare/v0.5.5...v0.5.6
-[0.5.5]: https://github.com/macalbert/envilder/compare/v0.5.4...v0.5.5
-[0.5.4]: https://github.com/macalbert/envilder/compare/v0.5.3...v0.5.4
-[0.5.3]: https://github.com/macalbert/envilder/compare/v0.5.2...v0.5.3
-[0.5.2]: https://github.com/macalbert/envilder/compare/v0.5.1...v0.5.2
-[0.5.1]: https://github.com/macalbert/envilder/compare/v0.3.0...v0.5.1
-[0.3.0]: https://github.com/macalbert/envilder/compare/v0.2.3...v0.3.0
-[0.2.3]: https://github.com/macalbert/envilder/compare/v0.2.1...v0.2.3
-[0.2.1]: https://github.com/macalbert/envilder/compare/v0.1.4...v0.2.1
-[0.1.4]: https://github.com/macalbert/envilder/releases/tag/v0.1.4
-<!-- markdownlint-enable MD024 -->

package/docs/SECURITY.md

@@ -54,9 +54,25 @@ When using Envilder, follow these security guidelines:
 - ❌ Store AWS access keys in code or environment variables
 - ❌ Share AWS credentials via Slack, email, or chat
 
+### Azure Credentials
+
+**DO**:
+
+- ✅ Use workload identity federation (OIDC) for GitHub Actions ([setup guide](https://learn.microsoft.com/en-us/entra/workload-id/workload-identity-federation-create-trust-github))
+- ✅ Use managed identities in Azure-hosted environments
+- ✅ Scope Key Vault access to specific secrets and operations
+- ✅ Set vault URL via `$config.vaultUrl` in your map file or `--vault-url` flag—never hardcode secrets in code
+
+**DON'T**:
+
+- ❌ Store Azure client secrets in code
+- ❌ Use overly broad Key Vault access policies
+
 ### IAM Permissions
 
-Envilder requires these AWS permissions:
+Envilder requires these cloud provider permissions:
+
+#### AWS
 
 ```json
 {
@@ -107,7 +123,7 @@ When using Envilder GitHub Action:
 **DO**:
 
 - ✅ Use OIDC authentication instead of static credentials ([OIDC setup guide](https://docs.github.com/en/actions/security-for-github-actions/security-hardening-your-deployments/configuring-openid-connect-in-amazon-web-services))
-- ✅ Pin action versions (e.g., `@v1.0.0` instead of `@main`)
+- ✅ Pin action versions (e.g., `@v0.8.0` instead of `@main`)
 - ✅ Review action code before using in production
 
 **DON'T**:
@@ -135,6 +151,14 @@ View current security status: [![Known Vulnerabilities](https://snyk.io/test/git
 - Access is controlled via IAM policies
 - Supports versioning and automatic rotation
 
+### Azure Key Vault
+
+- Secrets are encrypted at rest using Azure-managed or customer-managed keys
+- All access is logged in Azure Monitor and Activity Log
+- Access is controlled via Azure RBAC or Key Vault access policies
+- Supports secret versioning, expiration dates, and soft delete
+- Network isolation available via private endpoints and firewall rules
+
 ### Local Environment Files
 
 - Generated `.env` files contain sensitive data

package/lib/apps/cli/Cli.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"Cli.d.ts","sourceRoot":"","sources":["../../../src/apps/cli/Cli.ts"],"names":[],"mappings":"AAAA,OAAO,kBAAkB,CAAC;AAuB1B,wBAAsB,IAAI,kBAgDzB"}
+{"version":3,"file":"Cli.d.ts","sourceRoot":"","sources":["../../../src/apps/cli/Cli.ts"],"names":[],"mappings":"AAAA,OAAO,kBAAkB,CAAC;AA0B1B,wBAAsB,IAAI,kBAqHzB"}

package/lib/apps/cli/Cli.js

@@ -7,12 +7,25 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
         step((generator = generator.apply(thisArg, _arguments || [])).next());
     });
 };
+var __rest = (this && this.__rest) || function (s, e) {
+    var t = {};
+    for (var p in s) if (Object.prototype.hasOwnProperty.call(s, p) && e.indexOf(p) < 0)
+        t[p] = s[p];
+    if (s != null && typeof Object.getOwnPropertySymbols === "function")
+        for (var i = 0, p = Object.getOwnPropertySymbols(s); i < p.length; i++) {
+            if (e.indexOf(p[i]) < 0 && Object.prototype.propertyIsEnumerable.call(s, p[i]))
+                t[p[i]] = s[p[i]];
+        }
+    return t;
+};
 import 'reflect-metadata';
 import { dirname, join } from 'node:path';
 import { fileURLToPath } from 'node:url';
 import { Command } from 'commander';
+import pc from 'picocolors';
 import { DispatchActionCommand } from '../../envilder/application/dispatch/DispatchActionCommand.js';
 import { PackageVersionReader } from '../../envilder/infrastructure/package/PackageVersionReader.js';
+import { readMapFileConfig } from '../../envilder/infrastructure/variableStore/FileVariableStore.js';
 import { TYPES } from '../../envilder/types.js';
 import { Startup } from './Startup.js';
 let serviceProvider;
@@ -27,27 +40,71 @@ export function main() {
     return __awaiter(this, void 0, void 0, function* () {
         const program = new Command();
         const version = yield readPackageVersion();
+        const banner = `
+  ${pc.green('███████╗')}${pc.cyan('███╗   ██╗')}${pc.magenta('██╗   ██╗')}${pc.yellow('██╗')}${pc.red('██╗     ')}${pc.blue('██████╗ ')}${pc.green('███████╗')}${pc.cyan('██████╗ ')}
+  ${pc.green('██╔════╝')}${pc.cyan('████╗  ██║')}${pc.magenta('██║   ██║')}${pc.yellow('██║')}${pc.red('██║     ')}${pc.blue('██╔══██╗')}${pc.green('██╔════╝')}${pc.cyan('██╔══██╗')}
+  ${pc.green('█████╗  ')}${pc.cyan('██╔██╗ ██║')}${pc.magenta('██║   ██║')}${pc.yellow('██║')}${pc.red('██║     ')}${pc.blue('██║  ██║')}${pc.green('█████╗  ')}${pc.cyan('██████╔╝')}
+  ${pc.green('██╔══╝  ')}${pc.cyan('██║╚██╗██║')}${pc.magenta('╚██╗ ██╔╝')}${pc.yellow('██║')}${pc.red('██║     ')}${pc.blue('██║  ██║')}${pc.green('██╔══╝  ')}${pc.cyan('██╔══██╗')}
+  ${pc.green('███████╗')}${pc.cyan('██║ ╚████║')}${pc.magenta(' ╚████╔╝ ')}${pc.yellow('██║')}${pc.red('███████╗')}${pc.blue('██████╔╝')}${pc.green('███████╗')}${pc.cyan('██║  ██║')}
+  ${pc.green('╚══════╝')}${pc.cyan('╚═╝  ╚═══╝')}${pc.magenta('  ╚═══╝  ')}${pc.yellow('╚═╝')}${pc.red('╚══════╝')}${pc.blue('╚═════╝ ')}${pc.green('╚══════╝')}${pc.cyan('╚═╝  ╚═╝')}
+  ${pc.dim('Your secrets, one command away')}          ${pc.dim('aws & azure')}
+
+  ${pc.yellow('━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━')}
+  ${pc.green('WORLD 1-1')} ${pc.dim('— SELECT YOUR MISSION')}
+  ${pc.yellow('━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━')}
+
+  ${pc.green('>')} ${pc.bold('Generate a .env file')}  ${pc.dim('(pull secrets from the cloud)')}
+    ${pc.cyan('envilder --map=param-map.json --envfile=.env')}
+
+  ${pc.magenta('>')} ${pc.bold('Sync .env back to cloud')}  ${pc.dim('(push secrets up)')}
+    ${pc.cyan('envilder --push --map=param-map.json --envfile=.env')}
+
+  ${pc.red('>')} ${pc.bold('Push a single secret')}
+    ${pc.cyan('envilder --push --key=API_KEY --value=s3cret --secret-path=/my/path')}
+
+  ${pc.blue('>')} ${pc.bold('Use Azure Key Vault')}
+    ${pc.cyan('envilder --provider=azure --map=param-map.json --envfile=.env')}
+`;
         program
             .name('envilder')
-            .description('🌟 A CLI tool to manage environment variables with AWS SSM. What do you want to do today?\n\n' +
-            '✨ Generate a .env file?\n' +
-            '  Example: envilder --map=param-map.json --envfile=.env\n\n' +
-            '🔄 Sync your local .env file back to AWS SSM?\n' +
-            '  Example: envilder --push --map=param-map.json --envfile=.env\n\n' +
-            '🎯 Create or update a single secret?\n' +
-            '  Example: envilder --push --key=API_KEY --value=secret123 --ssm-path=/my/path\n')
+            .description(banner)
             .version(version)
             .option('--map <path>', 'Path to the JSON file with environment variable mapping (required for most commands)')
             .option('--envfile <path>', 'Path to the .env file to be generated or imported (required for most commands)')
             .option('--profile <name>', 'AWS CLI profile to use (optional)')
-            .option('--push', 'Push local .env file back to AWS SSM')
+            .option('--provider <name>', 'Cloud provider to use: aws or azure (default: aws)')
+            .option('--vault-url <url>', 'Azure Key Vault URL (overrides $config.vaultUrl in map file)')
+            .option('--push', 'Push local .env file back to cloud provider')
             .option('--key <name>', 'Single environment variable name to push (only with --push)')
             .option('--value <value>', 'Value of the single environment variable to push (only with --push)')
-            .option('--ssm-path <path>', 'SSM path for the single environment variable (only with --push)')
-            .action((options) => __awaiter(this, void 0, void 0, function* () {
+            .option('--secret-path <path>', 'Secret path in your cloud provider for the single variable (only with --push)')
+            .option('--ssm-path <path>', '[DEPRECATED: use --secret-path] Alias for --secret-path')
+            .hook('preAction', (thisCommand) => {
+            const opts = thisCommand.opts();
+            if (opts.ssmPath) {
+                console.warn(pc.yellow('⚠️  --ssm-path is deprecated and will be removed in a future release. Use --secret-path instead.'));
+                if (!opts.secretPath) {
+                    thisCommand.setOptionValue('secretPath', opts.ssmPath);
+                }
+            }
+        })
+            .action((_a) => __awaiter(this, void 0, void 0, function* () {
+            var { provider, vaultUrl } = _a, options = __rest(_a, ["provider", "vaultUrl"]);
+            const fileConfig = options.map
+                ? yield readMapFileConfig(options.map)
+                : {};
+            const config = Object.assign(Object.assign(Object.assign(Object.assign({}, fileConfig), (provider && { provider })), (vaultUrl && { vaultUrl })), (options.profile && { profile: options.profile }));
+            const infraOptions = {};
+            const extraHosts = process.env.ENVILDER_ALLOWED_VAULT_HOSTS;
+            if (extraHosts) {
+                infraOptions.allowedVaultHosts = extraHosts
+                    .split(',')
+                    .map((h) => h.trim());
+                infraOptions.disableChallengeResourceVerification = true;
+            }
             serviceProvider = Startup.build()
                 .configureServices()
-                .configureInfrastructure(options.profile)
+                .configureInfrastructure(config, infraOptions)
                 .create();
             yield executeCommand(options);
         }));

package/lib/apps/cli/Cli.js.map

@@ -1 +1 @@
-{"version":3,"file":"Cli.js","sourceRoot":"","sources":["../../../src/apps/cli/Cli.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,kBAAkB,CAAC;AAC1B,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAC1C,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AACzC,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAEpC,OAAO,EAAE,qBAAqB,EAAE,MAAM,8DAA8D,CAAC;AAGrG,OAAO,EAAE,oBAAoB,EAAE,MAAM,+DAA+D,CAAC;AACrG,OAAO,EAAE,KAAK,EAAE,MAAM,yBAAyB,CAAC;AAChD,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAEvC,IAAI,eAA0B,CAAC;AAE/B,SAAe,cAAc,CAAC,OAAmB;;QAC/C,MAAM,cAAc,GAAG,eAAe,CAAC,GAAG,CACxC,KAAK,CAAC,4BAA4B,CACnC,CAAC;QAEF,MAAM,OAAO,GAAG,qBAAqB,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;QAC9D,MAAM,cAAc,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC;IAC9C,CAAC;CAAA;AAED,MAAM,UAAgB,IAAI;;QACxB,MAAM,OAAO,GAAG,IAAI,OAAO,EAAE,CAAC;QAC9B,MAAM,OAAO,GAAG,MAAM,kBAAkB,EAAE,CAAC;QAE3C,OAAO;aACJ,IAAI,CAAC,UAAU,CAAC;aAChB,WAAW,CACV,+FAA+F;YAC7F,2BAA2B;YAC3B,6DAA6D;YAC7D,iDAAiD;YACjD,oEAAoE;YACpE,wCAAwC;YACxC,kFAAkF,CACrF;aACA,OAAO,CAAC,OAAO,CAAC;aAChB,MAAM,CACL,cAAc,EACd,sFAAsF,CACvF;aACA,MAAM,CACL,kBAAkB,EAClB,gFAAgF,CACjF;aACA,MAAM,CAAC,kBAAkB,EAAE,mCAAmC,CAAC;aAC/D,MAAM,CAAC,QAAQ,EAAE,sCAAsC,CAAC;aACxD,MAAM,CACL,cAAc,EACd,6DAA6D,CAC9D;aACA,MAAM,CACL,iBAAiB,EACjB,qEAAqE,CACtE;aACA,MAAM,CACL,mBAAmB,EACnB,iEAAiE,CAClE;aACA,MAAM,CAAC,CAAO,OAAmB,EAAE,EAAE;YACpC,eAAe,GAAG,OAAO,CAAC,KAAK,EAAE;iBAC9B,iBAAiB,EAAE;iBACnB,uBAAuB,CAAC,OAAO,CAAC,OAAO,CAAC;iBACxC,MAAM,EAAE,CAAC;YAEZ,MAAM,cAAc,CAAC,OAAO,CAAC,CAAC;QAChC,CAAC,CAAA,CAAC,CAAC;QAEL,MAAM,OAAO,CAAC,UAAU,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;IACzC,CAAC;CAAA;AAED,SAAS,kBAAkB;IACzB,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAClD,MAAM,SAAS,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC;IACtC,MAAM,eAAe,GAAG,IAAI,CAAC,SAAS,EAAE,uBAAuB,CAAC,CAAC;IAEjE,OAAO,IAAI,oBAAoB,EAAE,CAAC,UAAU,CAAC,eAAe,CAAC,CAAC;AAChE,CAAC"}
+{"version":3,"file":"Cli.js","sourceRoot":"","sources":["../../../src/apps/cli/Cli.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA,OAAO,kBAAkB,CAAC;AAC1B,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAC1C,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AACzC,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAEpC,OAAO,EAAE,MAAM,YAAY,CAAC;AAC5B,OAAO,EAAE,qBAAqB,EAAE,MAAM,8DAA8D,CAAC;AAIrG,OAAO,EAAE,oBAAoB,EAAE,MAAM,+DAA+D,CAAC;AACrG,OAAO,EAAE,iBAAiB,EAAE,MAAM,kEAAkE,CAAC;AACrG,OAAO,EAAE,KAAK,EAAE,MAAM,yBAAyB,CAAC;AAChD,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAEvC,IAAI,eAA0B,CAAC;AAE/B,SAAe,cAAc,CAAC,OAAmB;;QAC/C,MAAM,cAAc,GAAG,eAAe,CAAC,GAAG,CACxC,KAAK,CAAC,4BAA4B,CACnC,CAAC;QAEF,MAAM,OAAO,GAAG,qBAAqB,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;QAC9D,MAAM,cAAc,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC;IAC9C,CAAC;CAAA;AAED,MAAM,UAAgB,IAAI;;QACxB,MAAM,OAAO,GAAG,IAAI,OAAO,EAAE,CAAC;QAC9B,MAAM,OAAO,GAAG,MAAM,kBAAkB,EAAE,CAAC;QAE3C,MAAM,MAAM,GAAG;IACb,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,WAAW,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC;IACjL,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,WAAW,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC;IACjL,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,WAAW,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC;IACjL,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,WAAW,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC;IACjL,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,WAAW,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC;IACjL,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,WAAW,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC;IACjL,EAAE,CAAC,GAAG,CAAC,gCAAgC,CAAC,aAAa,EAAE,CAAC,GAAG,CAAC,aAAa,CAAC;;IAE1E,EAAE,CAAC,MAAM,CAAC,8DAA8D,CAAC;IACzE,EAAE,CAAC,KAAK,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,GAAG,CAAC,uBAAuB,CAAC;IACxD,EAAE,CAAC,MAAM,CAAC,8DAA8D,CAAC;;IAEzE,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,CAAC,GAAG,CAAC,+BAA+B,CAAC;MAC1F,EAAE,CAAC,IAAI,CAAC,8CAA8C,CAAC;;IAEzD,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC,IAAI,CAAC,yBAAyB,CAAC,KAAK,EAAE,CAAC,GAAG,CAAC,mBAAmB,CAAC;MACnF,EAAE,CAAC,IAAI,CAAC,qDAAqD,CAAC;;IAEhE,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC,IAAI,CAAC,sBAAsB,CAAC;MAC5C,EAAE,CAAC,IAAI,CAAC,qEAAqE,CAAC;;IAEhF,EAAE,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC,IAAI,CAAC,qBAAqB,CAAC;MAC5C,EAAE,CAAC,IAAI,CAAC,+DAA+D,CAAC;CAC7E,CAAC;QAEA,OAAO;aACJ,IAAI,CAAC,UAAU,CAAC;aAChB,WAAW,CAAC,MAAM,CAAC;aACnB,OAAO,CAAC,OAAO,CAAC;aAChB,MAAM,CACL,cAAc,EACd,sFAAsF,CACvF;aACA,MAAM,CACL,kBAAkB,EAClB,gFAAgF,CACjF;aACA,MAAM,CAAC,kBAAkB,EAAE,mCAAmC,CAAC;aAC/D,MAAM,CACL,mBAAmB,EACnB,oDAAoD,CACrD;aACA,MAAM,CACL,mBAAmB,EACnB,8DAA8D,CAC/D;aACA,MAAM,CAAC,QAAQ,EAAE,6CAA6C,CAAC;aAC/D,MAAM,CACL,cAAc,EACd,6DAA6D,CAC9D;aACA,MAAM,CACL,iBAAiB,EACjB,qEAAqE,CACtE;aACA,MAAM,CACL,sBAAsB,EACtB,+EAA+E,CAChF;aACA,MAAM,CACL,mBAAmB,EACnB,yDAAyD,CAC1D;aACA,IAAI,CAAC,WAAW,EAAE,CAAC,WAAW,EAAE,EAAE;YACjC,MAAM,IAAI,GAAG,WAAW,CAAC,IAAI,EAAE,CAAC;YAChC,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;gBACjB,OAAO,CAAC,IAAI,CACV,EAAE,CAAC,MAAM,CACP,kGAAkG,CACnG,CACF,CAAC;gBACF,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,CAAC;oBACrB,WAAW,CAAC,cAAc,CAAC,YAAY,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;gBACzD,CAAC;YACH,CAAC;QACH,CAAC,CAAC;aACD,MAAM,CACL,CAAO,EAIiD,EAAE,EAAE;gBAJrD,EACL,QAAQ,EACR,QAAQ,OAE8C,EADnD,OAAO,cAHL,wBAIN,CADW;YAEV,MAAM,UAAU,GAAG,OAAO,CAAC,GAAG;gBAC5B,CAAC,CAAC,MAAM,iBAAiB,CAAC,OAAO,CAAC,GAAG,CAAC;gBACtC,CAAC,CAAC,EAAE,CAAC;YAEP,MAAM,MAAM,+DACP,UAAU,GACV,CAAC,QAAQ,IAAI,EAAE,QAAQ,EAAE,CAAC,GAC1B,CAAC,QAAQ,IAAI,EAAE,QAAQ,EAAE,CAAC,GAC1B,CAAC,OAAO,CAAC,OAAO,IAAI,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,EAAE,CAAC,CACrD,CAAC;YAEF,MAAM,YAAY,GAA4B,EAAE,CAAC;YACjD,MAAM,UAAU,GAAG,OAAO,CAAC,GAAG,CAAC,4BAA4B,CAAC;YAC5D,IAAI,UAAU,EAAE,CAAC;gBACf,YAAY,CAAC,iBAAiB,GAAG,UAAU;qBACxC,KAAK,CAAC,GAAG,CAAC;qBACV,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;gBACxB,YAAY,CAAC,oCAAoC,GAAG,IAAI,CAAC;YAC3D,CAAC;YAED,eAAe,GAAG,OAAO,CAAC,KAAK,EAAE;iBAC9B,iBAAiB,EAAE;iBACnB,uBAAuB,CAAC,MAAM,EAAE,YAAY,CAAC;iBAC7C,MAAM,EAAE,CAAC;YAEZ,MAAM,cAAc,CAAC,OAAO,CAAC,CAAC;QAChC,CAAC,CAAA,CACF,CAAC;QAEJ,MAAM,OAAO,CAAC,UAAU,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;IACzC,CAAC;CAAA;AAED,SAAS,kBAAkB;IACzB,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAClD,MAAM,SAAS,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC;IACtC,MAAM,eAAe,GAAG,IAAI,CAAC,SAAS,EAAE,uBAAuB,CAAC,CAAC;IAEjE,OAAO,IAAI,oBAAoB,EAAE,CAAC,UAAU,CAAC,eAAe,CAAC,CAAC;AAChE,CAAC"}

package/lib/apps/cli/Startup.d.ts

@@ -1,19 +1,13 @@
 import { Container } from 'inversify';
+import type { MapFileConfig } from '../../envilder/domain/MapFileConfig.js';
+import { type InfrastructureOptions } from '../shared/ContainerConfiguration.js';
 export declare class Startup {
     private readonly container;
     constructor();
     static build(): Startup;
     configureServices(): this;
-    /**
-     * Configures infrastructure services for the application.
-     * Optionally accepts an AWS profile to use for service configuration.
-     * @param awsProfile - The AWS profile to use for configuring infrastructure services.
-     * @returns The current instance for method chaining.
-     */
-    configureInfrastructure(awsProfile?: string): this;
+    configureInfrastructure(config?: MapFileConfig, options?: InfrastructureOptions): this;
     create(): Container;
     getServiceProvider(): Container;
-    private configureInfrastructureServices;
-    private configureApplicationServices;
 }
 //# sourceMappingURL=Startup.d.ts.map

package/lib/apps/cli/Startup.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"Startup.d.ts","sourceRoot":"","sources":["../../../src/apps/cli/Startup.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAgBtC,qBAAa,OAAO;IAClB,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAY;;IAMtC,MAAM,CAAC,KAAK,IAAI,OAAO;IAIvB,iBAAiB,IAAI,IAAI;IAKzB;;;;;OAKG;IACH,uBAAuB,CAAC,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI;IAKlD,MAAM,IAAI,SAAS;IAInB,kBAAkB,IAAI,SAAS;IAI/B,OAAO,CAAC,+BAA+B;IAsBvC,OAAO,CAAC,4BAA4B;CAqBrC"}
+{"version":3,"file":"Startup.d.ts","sourceRoot":"","sources":["../../../src/apps/cli/Startup.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AACtC,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,wCAAwC,CAAC;AAC5E,OAAO,EAGL,KAAK,qBAAqB,EAC3B,MAAM,qCAAqC,CAAC;AAE7C,qBAAa,OAAO;IAClB,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAY;;IAMtC,MAAM,CAAC,KAAK,IAAI,OAAO;IAIvB,iBAAiB,IAAI,IAAI;IAKzB,uBAAuB,CACrB,MAAM,CAAC,EAAE,aAAa,EACtB,OAAO,CAAC,EAAE,qBAAqB,GAC9B,IAAI;IAKP,MAAM,IAAI,SAAS;IAInB,kBAAkB,IAAI,SAAS;CAGhC"}

package/lib/apps/cli/Startup.js

@@ -1,14 +1,5 @@
-import { SSM } from '@aws-sdk/client-ssm';
-import { fromIni } from '@aws-sdk/credential-providers';
 import { Container } from 'inversify';
-import { DispatchActionCommandHandler } from '../../envilder/application/dispatch/DispatchActionCommandHandler.js';
-import { PullSsmToEnvCommandHandler } from '../../envilder/application/pullSsmToEnv/PullSsmToEnvCommandHandler.js';
-import { PushEnvToSsmCommandHandler } from '../../envilder/application/pushEnvToSsm/PushEnvToSsmCommandHandler.js';
-import { PushSingleCommandHandler } from '../../envilder/application/pushSingle/PushSingleCommandHandler.js';
-import { AwsSsmSecretProvider } from '../../envilder/infrastructure/aws/AwsSsmSecretProvider.js';
-import { ConsoleLogger } from '../../envilder/infrastructure/logger/ConsoleLogger.js';
-import { FileVariableStore } from '../../envilder/infrastructure/variableStore/FileVariableStore.js';
-import { TYPES } from '../../envilder/types.js';
+import { configureApplicationServices, configureInfrastructureServices, } from '../shared/ContainerConfiguration.js';
 export class Startup {
     constructor() {
         this.container = new Container();
@@ -17,17 +8,11 @@ export class Startup {
         return new Startup();
     }
     configureServices() {
-        this.configureApplicationServices();
+        configureApplicationServices(this.container);
         return this;
     }
-    /**
-     * Configures infrastructure services for the application.
-     * Optionally accepts an AWS profile to use for service configuration.
-     * @param awsProfile - The AWS profile to use for configuring infrastructure services.
-     * @returns The current instance for method chaining.
-     */
-    configureInfrastructure(awsProfile) {
-        this.configureInfrastructureServices(awsProfile);
+    configureInfrastructure(config, options) {
+        configureInfrastructureServices(this.container, config, options);
         return this;
     }
     create() {
@@ -36,40 +21,5 @@ export class Startup {
     getServiceProvider() {
         return this.container;
     }
-    configureInfrastructureServices(awsProfile) {
-        this.container
-            .bind(TYPES.ILogger)
-            .to(ConsoleLogger)
-            .inSingletonScope();
-        this.container
-            .bind(TYPES.IVariableStore)
-            .to(FileVariableStore)
-            .inSingletonScope();
-        const ssm = awsProfile
-            ? new SSM({ credentials: fromIni({ profile: awsProfile }) })
-            : new SSM();
-        const secretProvider = new AwsSsmSecretProvider(ssm);
-        this.container
-            .bind(TYPES.ISecretProvider)
-            .toConstantValue(secretProvider);
-    }
-    configureApplicationServices() {
-        this.container
-            .bind(TYPES.PullSsmToEnvCommandHandler)
-            .to(PullSsmToEnvCommandHandler)
-            .inTransientScope();
-        this.container
-            .bind(TYPES.PushEnvToSsmCommandHandler)
-            .to(PushEnvToSsmCommandHandler)
-            .inTransientScope();
-        this.container
-            .bind(TYPES.PushSingleCommandHandler)
-            .to(PushSingleCommandHandler)
-            .inTransientScope();
-        this.container
-            .bind(TYPES.DispatchActionCommandHandler)
-            .to(DispatchActionCommandHandler)
-            .inTransientScope();
-    }
 }
 //# sourceMappingURL=Startup.js.map

package/lib/apps/cli/Startup.js.map

@@ -1 +1 @@
-{"version":3,"file":"Startup.js","sourceRoot":"","sources":["../../../src/apps/cli/Startup.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,GAAG,EAAE,MAAM,qBAAqB,CAAC;AAC1C,OAAO,EAAE,OAAO,EAAE,MAAM,+BAA+B,CAAC;AACxD,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAEtC,OAAO,EAAE,4BAA4B,EAAE,MAAM,qEAAqE,CAAC;AACnH,OAAO,EAAE,0BAA0B,EAAE,MAAM,uEAAuE,CAAC;AACnH,OAAO,EAAE,0BAA0B,EAAE,MAAM,uEAAuE,CAAC;AACnH,OAAO,EAAE,wBAAwB,EAAE,MAAM,mEAAmE,CAAC;AAM7G,OAAO,EAAE,oBAAoB,EAAE,MAAM,2DAA2D,CAAC;AACjG,OAAO,EAAE,aAAa,EAAE,MAAM,uDAAuD,CAAC;AACtF,OAAO,EAAE,iBAAiB,EAAE,MAAM,kEAAkE,CAAC;AACrG,OAAO,EAAE,KAAK,EAAE,MAAM,yBAAyB,CAAC;AAEhD,MAAM,OAAO,OAAO;IAGlB;QACE,IAAI,CAAC,SAAS,GAAG,IAAI,SAAS,EAAE,CAAC;IACnC,CAAC;IAED,MAAM,CAAC,KAAK;QACV,OAAO,IAAI,OAAO,EAAE,CAAC;IACvB,CAAC;IAED,iBAAiB;QACf,IAAI,CAAC,4BAA4B,EAAE,CAAC;QACpC,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;;;;OAKG;IACH,uBAAuB,CAAC,UAAmB;QACzC,IAAI,CAAC,+BAA+B,CAAC,UAAU,CAAC,CAAC;QACjD,OAAO,IAAI,CAAC;IACd,CAAC;IAED,MAAM;QACJ,OAAO,IAAI,CAAC,SAAS,CAAC;IACxB,CAAC;IAED,kBAAkB;QAChB,OAAO,IAAI,CAAC,SAAS,CAAC;IACxB,CAAC;IAEO,+BAA+B,CAAC,UAAmB;QACzD,IAAI,CAAC,SAAS;aACX,IAAI,CAAU,KAAK,CAAC,OAAO,CAAC;aAC5B,EAAE,CAAC,aAAa,CAAC;aACjB,gBAAgB,EAAE,CAAC;QAEtB,IAAI,CAAC,SAAS;aACX,IAAI,CAAiB,KAAK,CAAC,cAAc,CAAC;aAC1C,EAAE,CAAC,iBAAiB,CAAC;aACrB,gBAAgB,EAAE,CAAC;QAEtB,MAAM,GAAG,GAAG,UAAU;YACpB,CAAC,CAAC,IAAI,GAAG,CAAC,EAAE,WAAW,EAAE,OAAO,CAAC,EAAE,OAAO,EAAE,UAAU,EAAE,CAAC,EAAE,CAAC;YAC5D,CAAC,CAAC,IAAI,GAAG,EAAE,CAAC;QAEd,MAAM,cAAc,GAAG,IAAI,oBAAoB,CAAC,GAAG,CAAC,CAAC;QAErD,IAAI,CAAC,SAAS;aACX,IAAI,CAAkB,KAAK,CAAC,eAAe,CAAC;aAC5C,eAAe,CAAC,cAAc,CAAC,CAAC;IACrC,CAAC;IAEO,4BAA4B;QAClC,IAAI,CAAC,SAAS;aACX,IAAI,CAA6B,KAAK,CAAC,0BAA0B,CAAC;aAClE,EAAE,CAAC,0BAA0B,CAAC;aAC9B,gBAAgB,EAAE,CAAC;QAEtB,IAAI,CAAC,SAAS;aACX,IAAI,CAA6B,KAAK,CAAC,0BAA0B,CAAC;aAClE,EAAE,CAAC,0BAA0B,CAAC;aAC9B,gBAAgB,EAAE,CAAC;QAEtB,IAAI,CAAC,SAAS;aACX,IAAI,CAA2B,KAAK,CAAC,wBAAwB,CAAC;aAC9D,EAAE,CAAC,wBAAwB,CAAC;aAC5B,gBAAgB,EAAE,CAAC;QAEtB,IAAI,CAAC,SAAS;aACX,IAAI,CAA+B,KAAK,CAAC,4BAA4B,CAAC;aACtE,EAAE,CAAC,4BAA4B,CAAC;aAChC,gBAAgB,EAAE,CAAC;IACxB,CAAC;CACF"}
+{"version":3,"file":"Startup.js","sourceRoot":"","sources":["../../../src/apps/cli/Startup.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAEtC,OAAO,EACL,4BAA4B,EAC5B,+BAA+B,GAEhC,MAAM,qCAAqC,CAAC;AAE7C,MAAM,OAAO,OAAO;IAGlB;QACE,IAAI,CAAC,SAAS,GAAG,IAAI,SAAS,EAAE,CAAC;IACnC,CAAC;IAED,MAAM,CAAC,KAAK;QACV,OAAO,IAAI,OAAO,EAAE,CAAC;IACvB,CAAC;IAED,iBAAiB;QACf,4BAA4B,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QAC7C,OAAO,IAAI,CAAC;IACd,CAAC;IAED,uBAAuB,CACrB,MAAsB,EACtB,OAA+B;QAE/B,+BAA+B,CAAC,IAAI,CAAC,SAAS,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;QACjE,OAAO,IAAI,CAAC;IACd,CAAC;IAED,MAAM;QACJ,OAAO,IAAI,CAAC,SAAS,CAAC;IACxB,CAAC;IAED,kBAAkB;QAChB,OAAO,IAAI,CAAC,SAAS,CAAC;IACxB,CAAC;CACF"}

package/lib/apps/gha/Gha.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"Gha.d.ts","sourceRoot":"","sources":["../../../src/apps/gha/Gha.ts"],"names":[],"mappings":"AAAA,OAAO,kBAAkB,CAAC;AAoC1B,wBAAsB,IAAI,kBAyBzB"}
+{"version":3,"file":"Gha.d.ts","sourceRoot":"","sources":["../../../src/apps/gha/Gha.ts"],"names":[],"mappings":"AAAA,OAAO,kBAAkB,CAAC;AAkD1B,wBAAsB,IAAI,kBA6CzB"}

package/lib/apps/gha/Gha.js

@@ -9,9 +9,10 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
 };
 import 'reflect-metadata';
 import { DispatchActionCommand } from '../../envilder/application/dispatch/DispatchActionCommand.js';
+import { ConsoleLogger } from '../../envilder/infrastructure/logger/ConsoleLogger.js';
+import { readMapFileConfig } from '../../envilder/infrastructure/variableStore/FileVariableStore.js';
 import { TYPES } from '../../envilder/types.js';
 import { Startup } from './Startup.js';
-let serviceProvider;
 /**
  * Reads GitHub Actions inputs from environment variables.
  * GitHub Actions passes inputs as INPUT_<NAME> environment variables.
@@ -19,14 +20,20 @@ let serviceProvider;
 function readInputs() {
     const mapFile = process.env.INPUT_MAP_FILE;
     const envFile = process.env.INPUT_ENV_FILE;
+    const provider = process.env.INPUT_PROVIDER;
+    const vaultUrl = process.env.INPUT_VAULT_URL;
     return {
-        map: mapFile,
-        envfile: envFile,
-        // GitHub Action only supports pull mode
-        push: false,
+        options: {
+            map: mapFile,
+            envfile: envFile,
+            // GitHub Action only supports pull mode
+            push: false,
+        },
+        provider: provider || undefined,
+        vaultUrl: vaultUrl || undefined,
     };
 }
-function executeCommand(options) {
+function executeCommand(serviceProvider, options) {
     return __awaiter(this, void 0, void 0, function* () {
         const commandHandler = serviceProvider.get(TYPES.DispatchActionCommandHandler);
         const command = DispatchActionCommand.fromCliOptions(options);
@@ -35,28 +42,38 @@ function executeCommand(options) {
 }
 export function main() {
     return __awaiter(this, void 0, void 0, function* () {
-        const logger = serviceProvider === null || serviceProvider === void 0 ? void 0 : serviceProvider.get(TYPES.ILogger);
+        const { options, provider, vaultUrl } = readInputs();
+        let serviceProvider;
+        let logger = new ConsoleLogger();
+        try {
+            const fileConfig = options.map ? yield readMapFileConfig(options.map) : {};
+            const config = Object.assign(Object.assign(Object.assign({}, fileConfig), (provider && { provider })), (vaultUrl && { vaultUrl }));
+            const startup = Startup.build();
+            startup.configureServices().configureInfrastructure(config);
+            serviceProvider = startup.create();
+            logger = serviceProvider.get(TYPES.ILogger);
+        }
+        catch (error) {
+            const message = error instanceof Error ? error.message : String(error);
+            logger.error(`🚨 Failed to initialize: ${message}`);
+            throw error;
+        }
         try {
-            const options = readInputs();
             // Validate required inputs
             if (!options.map || !options.envfile) {
                 throw new Error('🚨 Missing required inputs! Please provide map-file and env-file.');
             }
-            logger === null || logger === void 0 ? void 0 : logger.info('🔑 Envilder GitHub Action - Starting secret pull...');
-            logger === null || logger === void 0 ? void 0 : logger.info(`📋 Map file: ${options.map}`);
-            logger === null || logger === void 0 ? void 0 : logger.info(`📄 Env file: ${options.envfile}`);
-            yield executeCommand(options);
-            logger === null || logger === void 0 ? void 0 : logger.info('✅ Secrets pulled successfully!');
+            logger.info('🔑 Envilder GitHub Action - Starting secret pull...');
+            logger.info(`📋 Map file: ${options.map}`);
+            logger.info(`📄 Env file: ${options.envfile}`);
+            yield executeCommand(serviceProvider, options);
+            logger.info('✅ Secrets pulled successfully!');
         }
         catch (error) {
-            logger === null || logger === void 0 ? void 0 : logger.error('🚨 Uh-oh! Looks like Mario fell into the wrong pipe! 🍄💥');
-            logger === null || logger === void 0 ? void 0 : logger.error(error instanceof Error ? error.message : String(error));
+            logger.error('🚨 Uh-oh! Looks like Mario fell into the wrong pipe! 🍄💥');
+            logger.error(error instanceof Error ? error.message : String(error));
             throw error;
         }
     });
 }
-// Initialize the service provider
-const startup = Startup.build();
-startup.configureServices().configureInfrastructure();
-serviceProvider = startup.create();
 //# sourceMappingURL=Gha.js.map

package/lib/apps/gha/Gha.js.map

@@ -1 +1 @@
-{"version":3,"file":"Gha.js","sourceRoot":"","sources":["../../../src/apps/gha/Gha.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,kBAAkB,CAAC;AAE1B,OAAO,EAAE,qBAAqB,EAAE,MAAM,8DAA8D,CAAC;AAIrG,OAAO,EAAE,KAAK,EAAE,MAAM,yBAAyB,CAAC;AAChD,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAEvC,IAAI,eAA0B,CAAC;AAE/B;;;GAGG;AACH,SAAS,UAAU;IACjB,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;IAC3C,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;IAE3C,OAAO;QACL,GAAG,EAAE,OAAO;QACZ,OAAO,EAAE,OAAO;QAChB,wCAAwC;QACxC,IAAI,EAAE,KAAK;KACZ,CAAC;AACJ,CAAC;AAED,SAAe,cAAc,CAAC,OAAmB;;QAC/C,MAAM,cAAc,GAAG,eAAe,CAAC,GAAG,CACxC,KAAK,CAAC,4BAA4B,CACnC,CAAC;QAEF,MAAM,OAAO,GAAG,qBAAqB,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;QAC9D,MAAM,cAAc,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC;IAC9C,CAAC;CAAA;AAED,MAAM,UAAgB,IAAI;;QACxB,MAAM,MAAM,GAAG,eAAe,aAAf,eAAe,uBAAf,eAAe,CAAE,GAAG,CAAU,KAAK,CAAC,OAAO,CAAC,CAAC;QAE5D,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,UAAU,EAAE,CAAC;YAE7B,2BAA2B;YAC3B,IAAI,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC;gBACrC,MAAM,IAAI,KAAK,CACb,mEAAmE,CACpE,CAAC;YACJ,CAAC;YAED,MAAM,aAAN,MAAM,uBAAN,MAAM,CAAE,IAAI,CAAC,qDAAqD,CAAC,CAAC;YACpE,MAAM,aAAN,MAAM,uBAAN,MAAM,CAAE,IAAI,CAAC,gBAAgB,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC;YAC5C,MAAM,aAAN,MAAM,uBAAN,MAAM,CAAE,IAAI,CAAC,gBAAgB,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC;YAEhD,MAAM,cAAc,CAAC,OAAO,CAAC,CAAC;YAE9B,MAAM,aAAN,MAAM,uBAAN,MAAM,CAAE,IAAI,CAAC,gCAAgC,CAAC,CAAC;QACjD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,aAAN,MAAM,uBAAN,MAAM,CAAE,KAAK,CAAC,2DAA2D,CAAC,CAAC;YAC3E,MAAM,aAAN,MAAM,uBAAN,MAAM,CAAE,KAAK,CAAC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;YACtE,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;CAAA;AAED,kCAAkC;AAClC,MAAM,OAAO,GAAG,OAAO,CAAC,KAAK,EAAE,CAAC;AAChC,OAAO,CAAC,iBAAiB,EAAE,CAAC,uBAAuB,EAAE,CAAC;AACtD,eAAe,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC"}
+{"version":3,"file":"Gha.js","sourceRoot":"","sources":["../../../src/apps/gha/Gha.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,kBAAkB,CAAC;AAE1B,OAAO,EAAE,qBAAqB,EAAE,MAAM,8DAA8D,CAAC;AAKrG,OAAO,EAAE,aAAa,EAAE,MAAM,uDAAuD,CAAC;AACtF,OAAO,EAAE,iBAAiB,EAAE,MAAM,kEAAkE,CAAC;AACrG,OAAO,EAAE,KAAK,EAAE,MAAM,yBAAyB,CAAC;AAChD,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAEvC;;;GAGG;AACH,SAAS,UAAU;IAKjB,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;IAC3C,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;IAC3C,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;IAC5C,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC;IAE7C,OAAO;QACL,OAAO,EAAE;YACP,GAAG,EAAE,OAAO;YACZ,OAAO,EAAE,OAAO;YAChB,wCAAwC;YACxC,IAAI,EAAE,KAAK;SACZ;QACD,QAAQ,EAAE,QAAQ,IAAI,SAAS;QAC/B,QAAQ,EAAE,QAAQ,IAAI,SAAS;KAChC,CAAC;AACJ,CAAC;AAED,SAAe,cAAc,CAC3B,eAA0B,EAC1B,OAAmB;;QAEnB,MAAM,cAAc,GAAG,eAAe,CAAC,GAAG,CACxC,KAAK,CAAC,4BAA4B,CACnC,CAAC;QAEF,MAAM,OAAO,GAAG,qBAAqB,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;QAC9D,MAAM,cAAc,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC;IAC9C,CAAC;CAAA;AAED,MAAM,UAAgB,IAAI;;QACxB,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,GAAG,UAAU,EAAE,CAAC;QAErD,IAAI,eAA0B,CAAC;QAC/B,IAAI,MAAM,GAAY,IAAI,aAAa,EAAE,CAAC;QAE1C,IAAI,CAAC;YACH,MAAM,UAAU,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,iBAAiB,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YAE3E,MAAM,MAAM,iDACP,UAAU,GACV,CAAC,QAAQ,IAAI,EAAE,QAAQ,EAAE,CAAC,GAC1B,CAAC,QAAQ,IAAI,EAAE,QAAQ,EAAE,CAAC,CAC9B,CAAC;YAEF,MAAM,OAAO,GAAG,OAAO,CAAC,KAAK,EAAE,CAAC;YAChC,OAAO,CAAC,iBAAiB,EAAE,CAAC,uBAAuB,CAAC,MAAM,CAAC,CAAC;YAC5D,eAAe,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;YACnC,MAAM,GAAG,eAAe,CAAC,GAAG,CAAU,KAAK,CAAC,OAAO,CAAC,CAAC;QACvD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,OAAO,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YACvE,MAAM,CAAC,KAAK,CAAC,4BAA4B,OAAO,EAAE,CAAC,CAAC;YACpD,MAAM,KAAK,CAAC;QACd,CAAC;QAED,IAAI,CAAC;YACH,2BAA2B;YAC3B,IAAI,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC;gBACrC,MAAM,IAAI,KAAK,CACb,mEAAmE,CACpE,CAAC;YACJ,CAAC;YAED,MAAM,CAAC,IAAI,CAAC,qDAAqD,CAAC,CAAC;YACnE,MAAM,CAAC,IAAI,CAAC,gBAAgB,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC;YAC3C,MAAM,CAAC,IAAI,CAAC,gBAAgB,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC;YAE/C,MAAM,cAAc,CAAC,eAAe,EAAE,OAAO,CAAC,CAAC;YAE/C,MAAM,CAAC,IAAI,CAAC,gCAAgC,CAAC,CAAC;QAChD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,2DAA2D,CAAC,CAAC;YAC1E,MAAM,CAAC,KAAK,CAAC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;YACrE,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;CAAA"}

package/lib/apps/gha/Startup.d.ts

@@ -1,19 +1,13 @@
 import { Container } from 'inversify';
+import type { MapFileConfig } from '../../envilder/domain/MapFileConfig.js';
+import { type InfrastructureOptions } from '../shared/ContainerConfiguration.js';
 export declare class Startup {
     private readonly container;
     constructor();
     static build(): Startup;
     configureServices(): this;
-    /**
-     * Configures infrastructure services for the application.
-     * Optionally accepts an AWS profile to use for service configuration.
-     * @param awsProfile - The AWS profile to use for configuring infrastructure services.
-     * @returns The current instance for method chaining.
-     */
-    configureInfrastructure(awsProfile?: string): this;
+    configureInfrastructure(config?: MapFileConfig, options?: InfrastructureOptions): this;
     create(): Container;
     getServiceProvider(): Container;
-    private configureInfrastructureServices;
-    private configureApplicationServices;
 }
 //# sourceMappingURL=Startup.d.ts.map

package/lib/apps/gha/Startup.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"Startup.d.ts","sourceRoot":"","sources":["../../../src/apps/gha/Startup.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAgBtC,qBAAa,OAAO;IAClB,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAY;;IAMtC,MAAM,CAAC,KAAK,IAAI,OAAO;IAIvB,iBAAiB,IAAI,IAAI;IAKzB;;;;;OAKG;IACH,uBAAuB,CAAC,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI;IAKlD,MAAM,IAAI,SAAS;IAInB,kBAAkB,IAAI,SAAS;IAI/B,OAAO,CAAC,+BAA+B;IAsBvC,OAAO,CAAC,4BAA4B;CAqBrC"}
+{"version":3,"file":"Startup.d.ts","sourceRoot":"","sources":["../../../src/apps/gha/Startup.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AACtC,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,wCAAwC,CAAC;AAC5E,OAAO,EAGL,KAAK,qBAAqB,EAC3B,MAAM,qCAAqC,CAAC;AAE7C,qBAAa,OAAO;IAClB,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAY;;IAMtC,MAAM,CAAC,KAAK,IAAI,OAAO;IAIvB,iBAAiB,IAAI,IAAI;IAKzB,uBAAuB,CACrB,MAAM,CAAC,EAAE,aAAa,EACtB,OAAO,CAAC,EAAE,qBAAqB,GAC9B,IAAI;IAKP,MAAM,IAAI,SAAS;IAInB,kBAAkB,IAAI,SAAS;CAGhC"}