projen-pipelines 0.2.12 → 0.2.14

package/README.md

@@ -16,6 +16,8 @@ specifically designed to work with the projen project configuration engine.
 * Allows easy switching between different CI/CD platforms without rewriting pipeline configurations
 * Handles complex deployment scenarios with less code
 * Manages AWS infrastructure more efficiently and straightforwardly
+* Automated drift detection for CloudFormation/CDK stacks with scheduled checks and issue creation
+* Automatic versioning with flexible strategies and multiple output targets
 
 ### Benefits
 
@@ -23,6 +25,7 @@ specifically designed to work with the projen project configuration engine.
 * Ensures consistency across projects by using proven defaults
 * Simplifies compliance management by integrating it directly into pipeline definitions
 * Facilitates platform migrations (e.g., from GitHub to GitLab) by abstracting pipeline definitions
+* Provides automatic version tracking and exposure through CloudFormation and SSM Parameter Store
 
 ## Beyond AWS CDK: A Vision for Universal CI/CD Pipeline Generation
 
@@ -151,6 +154,29 @@ const app = new PipelineApp({
 app.synth();
 ```
 
+### Drift Detection
+
+Projen Pipelines includes built-in support for automated drift detection of your CloudFormation/CDK stacks. This feature helps you identify when your deployed infrastructure has diverged from your code definitions.
+
+```typescript
+import { GitHubDriftDetectionWorkflow } from 'projen-pipelines';
+
+new GitHubDriftDetectionWorkflow(app, {
+  schedule: '0 0 * * *', // Daily at midnight
+  createIssues: true, // Automatically create GitHub issues
+  stages: [
+    {
+      name: 'production',
+      region: 'us-east-1',
+      roleArn: 'arn:aws:iam::123456789012:role/DriftDetectionRole',
+      failOnDrift: true,
+    },
+  ],
+});
+```
+
+See the [drift detection documentation](docs/drift-detection.md) for detailed configuration options and examples.
+
 ### Setting Up Trust Relationships Between Accounts
 
 When planning to manage multiple staging environments, you will need to establish trust relationships. This process centralizes deployment control, improving operational efficiency and security by consolidating deployment management through a singular, monitored channel. Here is a simplified diagram for the setup:
@@ -203,6 +229,233 @@ Here's a brief description of each one:
 
 Remember that these tasks are created and managed automatically by the `CDKPipeline` class. You can run these tasks using the `npx projen TASK_NAME` command.
 
+## Versioning
+
+Projen Pipelines includes a comprehensive versioning system that automatically tracks and exposes deployment versions through various AWS services. This feature enables deployment traceability, automated rollback decisions, and comprehensive audit trails.
+
+### Basic Versioning Configuration
+
+To enable versioning in your pipeline, add the `versioning` configuration:
+
+```typescript
+import { awscdk } from 'projen';
+import { GithubCDKPipeline, VersioningStrategy, VersioningOutputs } from 'projen-pipelines';
+
+const app = new awscdk.AwsCdkTypeScriptApp({
+  // ... other config
+});
+
+new GithubCDKPipeline(app, {
+  // ... other pipeline config
+  
+  versioning: {
+    enabled: true,
+    strategy: VersioningStrategy.commitCount(),
+    outputs: VersioningOutputs.standard()
+  }
+});
+```
+
+### Versioning Strategies
+
+Projen Pipelines provides several built-in versioning strategies:
+
+#### Git Tag Strategy
+Uses git tags as the version source, with optional prefix stripping:
+
+```typescript
+// Basic git tag strategy
+const strategy = VersioningStrategy.gitTag();
+
+// With custom configuration
+const strategy = VersioningStrategy.gitTag({
+  stripPrefix: 'v',           // Strip 'v' from tags (v1.2.3 → 1.2.3)
+  annotatedOnly: true,        // Only use annotated tags
+  includeSinceTag: true       // Include commits since tag
+});
+```
+
+#### Package.json Strategy
+Uses the version from your package.json file:
+
+```typescript
+// Basic package.json strategy
+const strategy = VersioningStrategy.packageJson();
+
+// With custom configuration
+const strategy = VersioningStrategy.packageJson({
+  path: './package.json',
+  includePrerelease: true,
+  appendCommitInfo: true
+});
+```
+
+#### Commit Count Strategy
+Uses the number of commits as the version:
+
+```typescript
+// Basic commit count strategy
+const strategy = VersioningStrategy.commitCount();
+
+// With custom configuration
+const strategy = VersioningStrategy.commitCount({
+  countFrom: 'all',           // 'all' | 'since-tag' 
+  includeBranch: true,        // Include branch name
+  padding: 5                  // Zero-pad count (00001)
+});
+```
+
+#### Build Number Strategy
+Creates a version from build metadata:
+
+```typescript
+// Basic build number strategy
+const strategy = VersioningStrategy.buildNumber();
+
+// With custom configuration
+const strategy = VersioningStrategy.buildNumber({
+  prefix: 'release',
+  commitCount: { countFrom: 'all', padding: 5 }
+});
+// Output: release-01234-3a4b5c6d
+```
+
+#### Custom Composite Strategy
+Create your own version format using template variables:
+
+```typescript
+const strategy = VersioningStrategy.create(
+  '{git-tag}+{commit-count}-{commit-hash:8}',
+  {
+    gitTag: { stripPrefix: 'v' },
+    commitCount: { countFrom: 'since-tag' }
+  }
+);
+// Output: 1.2.3+45-3a4b5c6d
+```
+
+### Version Output Configurations
+
+Control how and where version information is exposed:
+
+#### CloudFormation Outputs
+Export version information as CloudFormation stack outputs:
+
+```typescript
+// Basic CloudFormation output
+const outputs = VersioningOutputs.cloudFormationOnly();
+
+// With custom configuration
+const outputs = VersioningOutputs.cloudFormationOnly({
+  exportName: 'MyApp-{stage}-Version'
+});
+```
+
+#### SSM Parameter Store
+Store version information in AWS Systems Manager Parameter Store:
+
+```typescript
+// Basic parameter store
+const outputs = VersioningOutputs.parameterStoreOnly('/myapp/{stage}/version');
+
+// Hierarchical parameters
+const outputs = VersioningOutputs.hierarchicalParameters('/myapp/{stage}/version', {
+  includeCloudFormation: true
+});
+```
+
+This creates parameters like:
+- `/myapp/prod/version` → Full version JSON
+- `/myapp/prod/version/commit` → Commit hash
+- `/myapp/prod/version/tag` → Git tag
+- `/myapp/prod/version/count` → Commit count
+
+#### Standard Configuration
+The recommended configuration that uses CloudFormation outputs with optional Parameter Store:
+
+```typescript
+const outputs = VersioningOutputs.standard({
+  parameterName: '/myapp/{stage}/version',
+});
+```
+
+### Output Formats
+
+Version information can be output in two formats:
+
+**Plain Format:** Simple string values in CloudFormation
+```yaml
+Outputs:
+  AppVersion:
+    Value: "1.2.3+45-3a4b5c6d"
+    Description: "Application version"
+  AppCommitHash:
+    Value: "3a4b5c6def1234567890"
+    Description: "Git commit hash"
+```
+
+**Structured Format:** JSON object with comprehensive metadata in SSM
+```json
+{
+  "version": "1.2.3",
+  "commitHash": "3a4b5c6def1234567890",
+  "commitCount": 1234,
+  "commitsSinceTag": 45,
+  "branch": "main",
+  "tag": "v1.2.3",
+  "deployedAt": "2024-01-15T10:30:00Z",
+  "deployedBy": "github-actions",
+  "buildNumber": "456",
+  "environment": "production"
+}
+```
+
+### Stage-Specific Overrides
+
+Configure different versioning strategies for different stages:
+
+```typescript
+new GithubCDKPipeline(app, {
+  versioning: {
+    enabled: true,
+    strategy: VersioningStrategy.gitTag(),
+    outputs: VersioningOutputs.standard(),
+    stageOverrides: {
+      dev: {
+        strategy: VersioningStrategy.commitCount(),
+        outputs: VersioningOutputs.minimal()
+      },
+      prod: {
+        validation: {
+          requireTag: true,
+          tagPattern: /^v\d+\.\d+\.\d+$/
+        }
+      }
+    }
+  }
+});
+```
+
+### Template Variables
+
+All strategies support these template variables:
+- `{git-tag}` - Git tag (with optional prefix stripping)
+- `{package-version}` - Version from package.json
+- `{commit-count}` - Number of commits
+- `{commit-hash}` - Full commit hash
+- `{commit-hash:8}` - Short commit hash (8 characters)
+- `{branch}` - Git branch name
+- `{build-number}` - CI/CD build number
+
+### Benefits of Versioning
+
+1. **Deployment Traceability**: Always know exactly which code version is deployed
+2. **Automated Rollback**: Use version information for automated rollback decisions
+3. **Audit Trail**: Comprehensive deployment history with metadata
+4. **Multi-Stage Support**: Different versioning strategies per environment
+5. **Zero Configuration**: Works out-of-the-box with sensible defaults
+6. **CI/CD Integration**: Automatically detects version info from CI/CD environments
+
 ### Feature Branch Deployments
 
 Projen Pipelines supports automated feature branch deployments for GitHub Actions. This allows you to deploy and test your changes in isolated environments before merging to the main branch. Gitlab support is currently missing.

package/docs/drift-detection.md

@@ -0,0 +1,264 @@
+# Drift Detection for CloudFormation/CDK Stacks
+
+The drift detection feature allows you to automatically check for configuration drift in your CloudFormation and CDK stacks. It supports both scheduled checks and integration into existing CI/CD pipelines.
+
+## Features
+
+- **Automated Drift Detection**: Schedule regular drift checks for your stacks
+- **Multi-Platform Support**: Works with GitHub Actions, GitLab CI/CD, and Bash scripts
+- **External Script**: Drift detection logic in a separate TypeScript script for better maintainability
+- **Custom Error Handling**: Define special cases for known drift issues
+- **Flexible Configuration**: Check specific stacks or all stacks in a region
+- **Issue Creation**: Automatically create GitHub issues when drift is detected
+- **Pipeline Integration**: Add drift checks as steps in your deployment pipeline
+
+## Architecture
+
+The drift detection feature is organized into separate components:
+
+- **`detect-drift.ts`**: Standalone TypeScript script that performs the actual drift detection
+- **Platform-specific workflows**: GitHub, GitLab, and Bash implementations
+- **`DriftDetectionStep`**: Integration for existing pipelines
+
+## Usage
+
+### GitHub Actions Scheduled Workflow
+
+Create a scheduled GitHub Actions workflow:
+
+```typescript
+import { GitHubDriftDetectionWorkflow } from 'projen-pipelines';
+
+new GitHubDriftDetectionWorkflow(project, {
+  name: 'drift-detection',
+  schedule: '0 0 * * *', // Daily at midnight
+  stages: [
+    {
+      name: 'production',
+      region: 'us-east-1',
+      roleArn: 'arn:aws:iam::123456789012:role/DriftDetectionRole',
+      stackNames: ['MyApp-Production-Stack'],
+      failOnDrift: true,
+      errorHandlers: {
+        'Lambda.*': {
+          pattern: 'Lambda.*',
+          action: 'ignore',
+          message: 'Ignoring Lambda runtime updates',
+        },
+      },
+    },
+    {
+      name: 'staging',
+      region: 'us-east-1',
+      roleArn: 'arn:aws:iam::123456789012:role/DriftDetectionRole',
+      failOnDrift: false, // Just report, don't fail
+    },
+  ],
+  createIssues: true, // Create GitHub issues on drift
+});
+```
+
+### GitLab CI Scheduled Pipeline
+
+Create a scheduled GitLab CI pipeline:
+
+```typescript
+import { GitLabDriftDetectionWorkflow } from 'projen-pipelines';
+
+new GitLabDriftDetectionWorkflow(project, {
+  name: 'drift-detection',
+  schedule: '0 */6 * * *', // Every 6 hours
+  runnerTags: ['docker', 'aws'],
+  image: 'node:18-alpine',
+  stages: [
+    {
+      name: 'production',
+      region: 'us-east-1',
+      roleArn: 'arn:aws:iam::123456789012:role/DriftDetectionRole',
+      stackNames: ['MyApp-Production-Stack'],
+      failOnDrift: true,
+    },
+  ],
+});
+```
+
+### Bash Script for Manual Runs
+
+Generate a bash script for manual drift detection:
+
+```typescript
+import { BashDriftDetectionWorkflow } from 'projen-pipelines';
+
+new BashDriftDetectionWorkflow(project, {
+  scriptPath: 'scripts/check-drift.sh',
+  stages: [
+    {
+      name: 'production',
+      region: 'us-east-1',
+      roleArn: 'arn:aws:iam::123456789012:role/DriftDetectionRole',
+      stackNames: ['MyApp-Production-Stack'],
+    },
+  ],
+});
+
+// Run manually:
+// ./scripts/check-drift.sh
+// ./scripts/check-drift.sh --stage production
+```
+
+### Pipeline Integration
+
+Add drift detection as a step in your CI/CD pipeline:
+
+```typescript
+import { DriftDetectionStep } from 'projen-pipelines';
+
+const driftCheck = new DriftDetectionStep(project, {
+  name: 'CheckDrift',
+  region: 'us-east-1',
+  roleArn: 'arn:aws:iam::123456789012:role/DriftDetectionRole',
+  stackNames: ['MyStack'],
+  failOnDrift: true,
+  timeout: 30, // 30 minutes
+});
+
+// Use in your pipeline
+```
+
+## Configuration Options
+
+### Common Options
+
+All workflow types support these stage options:
+
+| Option | Type | Description | Default |
+|--------|------|-------------|---------|
+| `name` | `string` | Stage name | Required |
+| `region` | `string` | AWS region | Required |
+| `roleArn` | `string` | IAM role for drift detection | - |
+| `stackNames` | `string[]` | Specific stacks to check | All stacks |
+| `failOnDrift` | `boolean` | Fail if drift detected | `true` |
+| `errorHandlers` | `Record<string, DriftErrorHandler>` | Custom error handlers | - |
+| `environment` | `Record<string, string>` | Environment variables | - |
+
+### GitHubDriftDetectionWorkflow Options
+
+| Option | Type | Description | Default |
+|--------|------|-------------|---------|
+| `name` | `string` | Workflow name | `drift-detection` |
+| `schedule` | `string` | Cron schedule | `0 0 * * *` |
+| `permissions` | `Record<string, string>` | GitHub permissions | - |
+| `createIssues` | `boolean` | Create issues on drift | `true` |
+
+### GitLabDriftDetectionWorkflow Options  
+
+| Option | Type | Description | Default |
+|--------|------|-------------|---------|
+| `name` | `string` | Pipeline name | `drift-detection` |
+| `schedule` | `string` | Cron schedule | `0 0 * * *` |
+| `runnerTags` | `string[]` | GitLab runner tags | `[]` |
+| `image` | `string` | Docker image | `node:18` |
+
+### BashDriftDetectionWorkflow Options
+
+| Option | Type | Description | Default |
+|--------|------|-------------|---------|
+| `name` | `string` | Script name | `drift-detection` |
+| `scriptPath` | `string` | Output script path | `drift-detection.sh` |
+
+## Error Handling
+
+Define custom error handlers with different actions:
+
+```typescript
+errorHandlers: {
+  'Lambda.*': {
+    pattern: 'Lambda.*',
+    action: 'ignore', // ignore | warn | fail
+    message: 'Lambda runtime drift is expected',
+  },
+  'DynamoDB-.*': {
+    pattern: 'DynamoDB-.*', 
+    action: 'warn',
+    message: 'DynamoDB drift detected but continuing',
+  },
+}
+```
+
+Actions:
+- `ignore`: Skip checking this stack entirely
+- `warn`: Check the stack but don't fail on drift
+- `fail`: Normal behavior (fail on drift)
+
+## IAM Permissions
+
+The drift detection role needs the following permissions:
+
+```json
+{
+  "Version": "2012-10-17",
+  "Statement": [
+    {
+      "Effect": "Allow",
+      "Action": [
+        "cloudformation:DetectStackDrift",
+        "cloudformation:DescribeStackDriftDetectionStatus",
+        "cloudformation:DescribeStackResourceDrifts",
+        "cloudformation:ListStackResources",
+        "cloudformation:ListStacks"
+      ],
+      "Resource": "*"
+    }
+  ]
+}
+```
+
+## GitHub Actions Integration
+
+When drift is detected in a scheduled run, the workflow automatically creates a GitHub issue with:
+- Drift detection summary
+- Link to the workflow run
+- Labels for tracking (`drift-detection`, stage name)
+
+## GitLab CI Integration
+
+For GitLab, create a scheduled pipeline with the `DRIFT_DETECTION=true` variable:
+1. Go to CI/CD > Schedules
+2. Create a new schedule
+3. Add variable: `DRIFT_DETECTION=true`
+4. Set your desired cron schedule
+
+## Output
+
+The drift detection provides detailed output including:
+- Stack drift status (IN_SYNC, DRIFTED, etc.)
+- List of drifted resources
+- Resource drift details showing property differences
+- Summary of all checked stacks
+
+Example output:
+```
+Checking drift for stack: MyApp-Production-Stack
+Started drift detection with ID: 12345678-1234-1234-1234-123456789012
+Drift detection status: DETECTION_COMPLETE (120s elapsed)
+Stack drift status: DRIFTED
+
+DRIFT DETECTED in stack MyApp-Production-Stack!
+LogicalResourceId    ResourceType              DriftStatus
+MyFunction          AWS::Lambda::Function     MODIFIED
+MyTable             AWS::DynamoDB::Table      MODIFIED
+
+Drift details for resource: MyFunction
+[
+  {
+    "PropertyDifferences": [
+      {
+        "PropertyPath": "/Runtime",
+        "ExpectedValue": "nodejs16.x",
+        "ActualValue": "nodejs18.x",
+        "DifferenceType": "NOT_EQUAL"
+      }
+    ]
+  }
+]
+```

package/lib/assign-approver/base.js

@@ -12,5 +12,5 @@ class AssignApprover extends projen_1.Component {
 }
 exports.AssignApprover = AssignApprover;
 _a = JSII_RTTI_SYMBOL_1;
-AssignApprover[_a] = { fqn: "projen-pipelines.AssignApprover", version: "0.2.12" };
+AssignApprover[_a] = { fqn: "projen-pipelines.AssignApprover", version: "0.2.14" };
 //# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiYmFzZS5qcyIsInNvdXJjZVJvb3QiOiIiLCJzb3VyY2VzIjpbIi4uLy4uL3NyYy9hc3NpZ24tYXBwcm92ZXIvYmFzZS50cyJdLCJuYW1lcyI6W10sIm1hcHBpbmdzIjoiOzs7OztBQUFBLG1DQUE0QztBQXVCNUMsTUFBc0IsY0FBZSxTQUFRLGtCQUFTO0lBR3BELFlBQVksS0FBYyxFQUFxQixXQUFrQztRQUMvRSxLQUFLLENBQUMsS0FBSyxDQUFDLENBQUM7UUFEZ0MsZ0JBQVcsR0FBWCxXQUFXLENBQXVCO0lBRWpGLENBQUM7O0FBTEgsd0NBT0MiLCJzb3VyY2VzQ29udGVudCI6WyJpbXBvcnQgeyBDb21wb25lbnQsIFByb2plY3QgfSBmcm9tICdwcm9qZW4nO1xuXG5leHBvcnQgaW50ZXJmYWNlIEFwcHJvdmVyTWFwcGluZyB7XG5cbiAgcmVhZG9ubHkgYXV0aG9yOiBzdHJpbmc7XG4gIHJlYWRvbmx5IGFwcHJvdmVyczogc3RyaW5nW107XG5cbn1cblxuZXhwb3J0IGludGVyZmFjZSBBc3NpZ25BcHByb3Zlck9wdGlvbnMge1xuXG4gIC8qKlxuICAgKiBUaGUgbWFwcGluZyBvZiBhdXRob3JzIHRvIGFwcHJvdmVycy5cbiAgICovXG4gIHJlYWRvbmx5IGFwcHJvdmVyTWFwcGluZzogQXBwcm92ZXJNYXBwaW5nW107XG5cbiAgLyoqXG4gICAqIFRoZSBHaXRIdWIgdG9rZW4gdG8gdXNlIGZvciB0aGUgQVBJIGNhbGxzLlxuICAgKi9cbiAgcmVhZG9ubHkgZGVmYXVsdEFwcHJvdmVyczogc3RyaW5nW107XG5cbn1cblxuZXhwb3J0IGFic3RyYWN0IGNsYXNzIEFzc2lnbkFwcHJvdmVyIGV4dGVuZHMgQ29tcG9uZW50IHtcblxuXG4gIGNvbnN0cnVjdG9yKHNjb3BlOiBQcm9qZWN0LCBwcm90ZWN0ZWQgcmVhZG9ubHkgYmFzZU9wdGlvbnM6IEFzc2lnbkFwcHJvdmVyT3B0aW9ucykge1xuICAgIHN1cGVyKHNjb3BlKTtcbiAgfVxuXG59Il19

package/lib/assign-approver/github.js

@@ -81,5 +81,5 @@ if (filteredApprovers.length > 0) {
 }
 exports.GitHubAssignApprover = GitHubAssignApprover;
 _a = JSII_RTTI_SYMBOL_1;
-GitHubAssignApprover[_a] = { fqn: "projen-pipelines.GitHubAssignApprover", version: "0.2.12" };
+GitHubAssignApprover[_a] = { fqn: "projen-pipelines.GitHubAssignApprover", version: "0.2.14" };
 //# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiZ2l0aHViLmpzIiwic291cmNlUm9vdCI6IiIsInNvdXJjZXMiOlsiLi4vLi4vc3JjL2Fzc2lnbi1hcHByb3Zlci9naXRodWIudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6Ijs7Ozs7QUFDQSx1RUFBa0Y7QUFDbEYsaUNBQStEO0FBYS9ELE1BQWEsb0JBQXFCLFNBQVEscUJBQWM7SUFJdEQsWUFBWSxLQUFvQixFQUFFLE9BQW9DO1FBQ3BFLEtBQUssQ0FBQyxLQUFLLEVBQUUsT0FBTyxDQUFDLENBQUM7UUFDdEIsSUFBSSxDQUFDLE9BQU8sR0FBRyxPQUFPLENBQUM7UUFFdkIsZ0RBQWdEO1FBQ2hELElBQUksQ0FBQyxRQUFRLEdBQUcsS0FBSyxDQUFDLE1BQU8sQ0FBQyxXQUFXLENBQUMsaUJBQWlCLENBQUMsQ0FBQztRQUM3RCxJQUFJLENBQUMsUUFBUSxDQUFDLEVBQUUsQ0FBQztZQUNmLGlCQUFpQixFQUFFO2dCQUNqQixLQUFLLEVBQUUsQ0FBQyxRQUFRLEVBQUUsa0JBQWtCLENBQUM7YUFDdEM7U0FDRixDQUFDLENBQUM7UUFFSCxJQUFJLENBQUMsYUFBYSxFQUFFLENBQUM7SUFDdkIsQ0FBQztJQUVEOztPQUVHO0lBQ0ksaUJBQWlCO1FBQ3RCLE9BQU87WUFDTCxZQUFZLEVBQUUsK0JBQWEsQ0FBQyxLQUFLO1NBQ2xDLENBQUM7SUFDSixDQUFDO0lBRVMsYUFBYTtRQUNyQixNQUFNLFVBQVUsR0FBRyxJQUFJLENBQUMsT0FBTyxDQUFDLFVBQVUsSUFBSSxDQUFDLGVBQWUsQ0FBQyxDQUFDO1FBRWhFLE1BQU0scUJBQXFCLEdBQUcsSUFBSSxDQUFDLDZCQUE2QixFQUFFLENBQUM7UUFFbkUsSUFBSSxDQUFDLFFBQVEsQ0FBQyxNQUFNLENBQUMsaUJBQWlCLEVBQUU7WUFDdEMsTUFBTSxFQUFFLFVBQVU7WUFDbEIsV0FBVyxFQUFFLElBQUksQ0FBQyxpQkFBaUIsRUFBRTtZQUNyQyxLQUFLLEVBQUU7Z0JBQ0w7b0JBQ0UsSUFBSSxFQUFFLGlDQUFpQztvQkFDdkMsSUFBSSxFQUFFLDBCQUEwQjtvQkFDaEMsSUFBSSxFQUFFO3dCQUNKLE1BQU0sRUFBRSxxQkFBcUI7cUJBQzlCO2lCQUNGO2FBQ0Y7U0FDRixDQUFDLENBQUM7SUFDTCxDQUFDO0lBRVMsNkJBQTZCO1FBQ3JDLE1BQU0sY0FBYyxHQUFHLElBQUksQ0FBQyxXQUFXLENBQUMsZUFBZTthQUNwRCxHQUFHLENBQUMsT0FBTyxDQUFDLEVBQUUsQ0FBQyxNQUFNLE9BQU8sQ0FBQyxNQUFNLE9BQU8sT0FBTyxDQUFDLFNBQVMsQ0FBQyxHQUFHLENBQUMsQ0FBQyxDQUFDLEVBQUUsQ0FBQyxJQUFJLENBQUMsR0FBRyxDQUFDLENBQUMsSUFBSSxDQUFDLElBQUksQ0FBQyxHQUFHLENBQUM7YUFDN0YsSUFBSSxDQUFDLEtBQUssQ0FBQyxDQUFDO1FBRWYsTUFBTSxnQkFBZ0IsR0FBRyxJQUFJLENBQUMsV0FBVyxDQUFDLGdCQUFnQjthQUN2RCxHQUFHLENBQUMsQ0FBQyxDQUFDLEVBQUUsQ0FBQyxJQUFJLENBQUMsR0FBRyxDQUFDO2FBQ2xCLElBQUksQ0FBQyxJQUFJLENBQUMsQ0FBQztRQUVkLE9BQU87Ozs7RUFJVCxjQUFjLEdBQUcsY0FBYyxDQUFDLE1BQU0sR0FBRyxDQUFDLENBQUMsQ0FBQyxDQUFDLEdBQUcsQ0FBQyxDQUFDLENBQUMsRUFBRTtnQkFDdkMsZ0JBQWdCOzs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7RUFxQjlCLENBQUM7SUFDRCxDQUFDOztBQXBGSCxvREFxRkMiLCJzb3VyY2VzQ29udGVudCI6WyJpbXBvcnQgeyBHaXRIdWJQcm9qZWN0LCBHaXRodWJXb3JrZmxvdyB9IGZyb20gJ3Byb2plbi9saWIvZ2l0aHViJztcbmltcG9ydCB7IEpvYlBlcm1pc3Npb24sIEpvYlBlcm1pc3Npb25zIH0gZnJvbSAncHJvamVuL2xpYi9naXRodWIvd29ya2Zsb3dzLW1vZGVsJztcbmltcG9ydCB7IEFzc2lnbkFwcHJvdmVyLCBBc3NpZ25BcHByb3Zlck9wdGlvbnMgfSBmcm9tICcuL2Jhc2UnO1xuXG5leHBvcnQgaW50ZXJmYWNlIEdpdEh1YkFzc2lnbkFwcHJvdmVyT3B0aW9ucyBleHRlbmRzIEFzc2lnbkFwcHJvdmVyT3B0aW9ucyB7XG5cbiAgLyoqXG4gICAqIHJ1bm5lciB0YWdzIHRvIHVzZSB0byBzZWxlY3QgcnVubmVyc1xuICAgKlxuICAgKiBAZGVmYXVsdCBbJ3VidW50dS1sYXRlc3QnXVxuICAgKi9cbiAgcmVhZG9ubHkgcnVubmVyVGFncz86IHN0cmluZ1tdO1xuXG59XG5cbmV4cG9ydCBjbGFzcyBHaXRIdWJBc3NpZ25BcHByb3ZlciBleHRlbmRzIEFzc2lnbkFwcHJvdmVyIHtcbiAgcHJpdmF0ZSByZWFkb25seSB3b3JrZmxvdzogR2l0aHViV29ya2Zsb3c7XG4gIHByaXZhdGUgcmVhZG9ubHkgb3B0aW9uczogR2l0SHViQXNzaWduQXBwcm92ZXJPcHRpb25zO1xuXG4gIGNvbnN0cnVjdG9yKHNjb3BlOiBHaXRIdWJQcm9qZWN0LCBvcHRpb25zOiBHaXRIdWJBc3NpZ25BcHByb3Zlck9wdGlvbnMpIHtcbiAgICBzdXBlcihzY29wZSwgb3B0aW9ucyk7XG4gICAgdGhpcy5vcHRpb25zID0gb3B0aW9ucztcblxuICAgIC8vIEluaXRpYWxpemUgdGhlIGRlcGxveW1lbnQgd29ya2Zsb3cgb24gR2l0SHViLlxuICAgIHRoaXMud29ya2Zsb3cgPSBzY29wZS5naXRodWIhLmFkZFdvcmtmbG93KCdhc3NpZ24tYXBwcm92ZXInKTtcbiAgICB0aGlzLndvcmtmbG93Lm9uKHtcbiAgICAgIHB1bGxSZXF1ZXN0VGFyZ2V0OiB7XG4gICAgICAgIHR5cGVzOiBbJ29wZW5lZCcsICdyZWFkeV9mb3JfcmV2aWV3J10sXG4gICAgICB9LFxuICAgIH0pO1xuXG4gICAgdGhpcy5zZXR1cFdvcmtmbG93KCk7XG4gIH1cblxuICAvKipcbiAgICogR2V0IHRoZSByZXF1aXJlZCBwZXJtaXNzaW9ucyBmb3IgdGhlIEdpdEh1YiB3b3JrZmxvd1xuICAgKi9cbiAgcHVibGljIHJlbmRlclBlcm1pc3Npb25zKCk6IEpvYlBlcm1pc3Npb25zIHtcbiAgICByZXR1cm4ge1xuICAgICAgcHVsbFJlcXVlc3RzOiBKb2JQZXJtaXNzaW9uLldSSVRFLFxuICAgIH07XG4gIH1cblxuICBwcm90ZWN0ZWQgc2V0dXBXb3JrZmxvdygpOiB2b2lkIHtcbiAgICBjb25zdCBydW5uZXJUYWdzID0gdGhpcy5vcHRpb25zLnJ1bm5lclRhZ3MgPz8gWyd1YnVudHUtbGF0ZXN0J107XG5cbiAgICBjb25zdCBhcHByb3Zlck1hcHBpbmdTY3JpcHQgPSB0aGlzLmdlbmVyYXRlQXBwcm92ZXJNYXBwaW5nU2NyaXB0KCk7XG5cbiAgICB0aGlzLndvcmtmbG93LmFkZEpvYignYXNzaWduLWFwcHJvdmVyJywge1xuICAgICAgcnVuc09uOiBydW5uZXJUYWdzLFxuICAgICAgcGVybWlzc2lvbnM6IHRoaXMucmVuZGVyUGVybWlzc2lvbnMoKSxcbiAgICAgIHN0ZXBzOiBbXG4gICAgICAgIHtcbiAgICAgICAgICBuYW1lOiAnQXNzaWduIGFwcHJvdmVyIGJhc2VkIG9uIGF1dGhvcicsXG4gICAgICAgICAgdXNlczogJ2FjdGlvbnMvZ2l0aHViLXNjcmlwdEB2NycsXG4gICAgICAgICAgd2l0aDoge1xuICAgICAgICAgICAgc2NyaXB0OiBhcHByb3Zlck1hcHBpbmdTY3JpcHQsXG4gICAgICAgICAgfSxcbiAgICAgICAgfSxcbiAgICAgIF0sXG4gICAgfSk7XG4gIH1cblxuICBwcm90ZWN0ZWQgZ2VuZXJhdGVBcHByb3Zlck1hcHBpbmdTY3JpcHQoKTogc3RyaW5nIHtcbiAgICBjb25zdCBtYXBwaW5nRW50cmllcyA9IHRoaXMuYmFzZU9wdGlvbnMuYXBwcm92ZXJNYXBwaW5nXG4gICAgICAubWFwKG1hcHBpbmcgPT4gYCAgJyR7bWFwcGluZy5hdXRob3J9JzogWyR7bWFwcGluZy5hcHByb3ZlcnMubWFwKGEgPT4gYCcke2F9J2ApLmpvaW4oJywgJyl9XWApXG4gICAgICAuam9pbignLFxcbicpO1xuXG4gICAgY29uc3QgZGVmYXVsdEFwcHJvdmVycyA9IHRoaXMuYmFzZU9wdGlvbnMuZGVmYXVsdEFwcHJvdmVyc1xuICAgICAgLm1hcChhID0+IGAnJHthfSdgKVxuICAgICAgLmpvaW4oJywgJyk7XG5cbiAgICByZXR1cm4gYGNvbnN0IGF1dGhvciA9IGNvbnRleHQucGF5bG9hZC5wdWxsX3JlcXVlc3QudXNlci5sb2dpbjtcblxuLy8gRGVmaW5lIGFwcHJvdmVyIG1hcHBpbmdcbmNvbnN0IGFwcHJvdmVyTWFwcGluZyA9IHtcbiR7bWFwcGluZ0VudHJpZXN9JHttYXBwaW5nRW50cmllcy5sZW5ndGggPiAwID8gJywnIDogJyd9XG4gICdkZWZhdWx0JzogWyR7ZGVmYXVsdEFwcHJvdmVyc31dIC8vIERlZmF1bHQgYXBwcm92ZXIocykgaWYgYXV0aG9yIG5vdCBpbiBtYXBwaW5nXG59O1xuXG4vLyBHZXQgYXBwcm92ZXJzIGZvciB0aGUgUFIgYXV0aG9yXG5jb25zdCBhcHByb3ZlcnMgPSBhcHByb3Zlck1hcHBpbmdbYXV0aG9yXSB8fCBhcHByb3Zlck1hcHBpbmdbJ2RlZmF1bHQnXTtcblxuLy8gRmlsdGVyIG91dCB0aGUgYXV0aG9yIGZyb20gYXBwcm92ZXJzIGxpc3QgKGNhbid0IGFwcHJvdmUgb3duIFBSKVxuY29uc3QgZmlsdGVyZWRBcHByb3ZlcnMgPSBhcHByb3ZlcnMuZmlsdGVyKGFwcHJvdmVyID0+IGFwcHJvdmVyICE9PSBhdXRob3IpO1xuXG5pZiAoZmlsdGVyZWRBcHByb3ZlcnMubGVuZ3RoID4gMCkge1xuICAvLyBSZXF1ZXN0IHJldmlld3MgZnJvbSB0aGUgYXBwcm92ZXJzXG4gIGF3YWl0IGdpdGh1Yi5yZXN0LnB1bGxzLnJlcXVlc3RSZXZpZXdlcnMoe1xuICAgIG93bmVyOiBjb250ZXh0LnJlcG8ub3duZXIsXG4gICAgcmVwbzogY29udGV4dC5yZXBvLnJlcG8sXG4gICAgcHVsbF9udW1iZXI6IGNvbnRleHQuaXNzdWUubnVtYmVyLFxuICAgIHJldmlld2VyczogZmlsdGVyZWRBcHByb3ZlcnNcbiAgfSk7XG4gIFxuICBjb25zb2xlLmxvZyhcXGBBc3NpZ25lZCByZXZpZXdlcnM6IFxcJHtmaWx0ZXJlZEFwcHJvdmVycy5qb2luKCcsICcpfVxcYCk7XG59IGVsc2Uge1xuICBjb25zb2xlLmxvZygnTm8gZWxpZ2libGUgcmV2aWV3ZXJzIGZvdW5kIGZvciB0aGlzIFBSIGF1dGhvcicpO1xufWA7XG4gIH1cbn1cbiJdfQ==

package/lib/awscdk/base.d.ts

@@ -1,6 +1,7 @@
 import { Component, awscdk } from 'projen';
 import { PipelineEngine } from '../engine';
 import { PipelineStep } from '../steps';
+import { VersioningConfig } from '../versioning';
 /**
  * The Environment interface is designed to hold AWS related information
  * for a specific deployment environment within your infrastructure.
@@ -138,6 +139,10 @@ export interface CDKPipelineOptions {
     readonly preInstallSteps?: PipelineStep[];
     readonly preSynthSteps?: PipelineStep[];
     readonly postSynthSteps?: PipelineStep[];
+    /**
+     * Versioning configuration
+     */
+    readonly versioning?: VersioningConfig;
 }
 /**
  * The CDKPipeline class extends the Component class and sets up the necessary configuration for deploying AWS CDK (Cloud Development Kit) applications across multiple stages.
@@ -189,4 +194,20 @@ export declare abstract class CDKPipeline extends Component {
      */
     protected createIndependentStage(stage: IndependentStage): void;
     protected getCliStackPattern(stage: string): string;
+    /**
+     * Create version:fetch:<stage> task to fetch version data from deployed stack
+     */
+    protected createVersionFetchTask(stage: NamedStageOptions): void;
+    /**
+     * Generate CDK application code for versioning
+     */
+    generateVersioningAppCode(config: VersioningConfig): string;
+    /**
+     * Generate versioning imports for CDK application
+     */
+    generateVersioningImports(): string;
+    /**
+     * Generate versioning utility functions for CDK application
+     */
+    generateVersioningUtilities(): string;
 }