terruvim-core-test 0.0.1

package/dist/src/factories/enhancedCloudFrontCodePipelineFactory.js

@@ -0,0 +1,205 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.EnhancedCloudFrontCodePipelineFactory = void 0;
+const aws = __importStar(require("@pulumi/aws"));
+const resourceFactory_1 = require("./resourceFactory");
+const cloudfrontCodePipelineFactory_1 = require("./cloudfrontCodePipelineFactory");
+const dataProtectionPolicyBuilder_1 = require("./dataProtectionPolicyBuilder");
+const codePipelineNotificationFactory_1 = require("./codePipelineNotificationFactory");
+const codePipelineNotificationRulesFactory_1 = require("./codePipelineNotificationRulesFactory");
+class EnhancedCloudFrontCodePipelineFactory extends resourceFactory_1.ResourceFactory {
+    buildDataProtectionPolicy(config, logGroupName) {
+        if (!config?.enabled) {
+            return undefined;
+        }
+        return (0, dataProtectionPolicyBuilder_1.buildDataProtectionPolicy)(config, logGroupName, dataProtectionPolicyBuilder_1.DEFAULT_DATA_IDENTIFIERS.CODEPIPELINE_LOGS, "CloudFront CodePipeline");
+    }
+    validateConfig(config) {
+        if (!config.configuration?.pipeline) {
+            throw new Error("Pipeline configuration is required");
+        }
+        const pipeline = config.configuration.pipeline;
+        if (!pipeline.repoOwner || !pipeline.repoName || !pipeline.branch) {
+            throw new Error("Repository owner, name, and branch are required");
+        }
+        if (!pipeline.codestarConnectionArn) {
+            throw new Error("CodeStar connection ARN is required");
+        }
+        if (!pipeline.cloudfrontDistributionId || !pipeline.s3BucketName) {
+            throw new Error("CloudFront distribution ID and S3 bucket name are required");
+        }
+        if (config.configuration.notifications?.enabled && !config.configuration.notifications.snsTopicArn) {
+            throw new Error("SNS topic ARN is required when notifications are enabled");
+        }
+    }
+    async createResource(config) {
+        const cloudFrontPipelineFactory = new cloudfrontCodePipelineFactory_1.CloudFrontCodePipelineFactory();
+        const cloudFrontConfig = {
+            id: config.id,
+            meta: config.meta,
+            configuration: {
+                ...config.configuration.pipeline,
+                buildImage: config.configuration.pipeline.buildImage || "aws/codebuild/amazonlinux2-x86_64-standard:5.0",
+                buildTimeout: config.configuration.pipeline.buildTimeout || 20,
+                privilegedMode: config.configuration.pipeline.privilegedMode || false,
+                computeType: config.configuration.pipeline.computeType || "BUILD_GENERAL1_LARGE",
+                environmentType: config.configuration.pipeline.environmentType || "LINUX_CONTAINER",
+                deployCodePipelineInVpc: config.configuration.pipeline.deployCodePipelineInVpc ?? true,
+                buildspecPath: config.configuration.pipeline.buildspecPath || "./assets/buildspecs/buildspec-cloudfront-enhanced.yml",
+            },
+            inputs: config.inputs || {},
+        };
+        const cloudFrontPipeline = await cloudFrontPipelineFactory.createResource(cloudFrontConfig);
+        const resources = {
+            pipeline: cloudFrontPipeline,
+        };
+        if (config.configuration.notifications?.enabled) {
+            if (config.configuration.notifications.useNotificationRules) {
+                const notificationRulesFactory = new codePipelineNotificationRulesFactory_1.CodePipelineNotificationRulesFactory();
+                const notificationRulesConfig = {
+                    id: `${config.id}-notification-rules`,
+                    configuration: {
+                        pipelineArn: cloudFrontPipeline.arn,
+                        snsTopicArn: config.configuration.notifications.snsTopicArn,
+                        eventTypeIds: config.configuration.notifications.notificationEventTypes || [
+                            "codepipeline-pipeline-pipeline-execution-started",
+                            "codepipeline-pipeline-pipeline-execution-succeeded",
+                            "codepipeline-pipeline-pipeline-execution-failed",
+                            "codepipeline-pipeline-manual-approval-needed"
+                        ],
+                        detailType: config.configuration.notifications.notificationDetailType || "FULL",
+                        name: `${config.id}-pipeline-notifications`,
+                        tags: config.tags
+                    }
+                };
+                const notificationRulesResources = await notificationRulesFactory.createResource(notificationRulesConfig);
+                resources.notificationRules = notificationRulesResources;
+            }
+            else {
+                const notificationFactory = new codePipelineNotificationFactory_1.CodePipelineNotificationFactory();
+                const notificationConfig = {
+                    id: `${config.id}-notifications`,
+                    configuration: {
+                        pipelineName: cloudFrontPipeline.name,
+                        snsTopicArn: config.configuration.notifications.snsTopicArn,
+                        eventTypes: (config.configuration.notifications.eventTypes || [
+                            "PIPELINE_EXECUTION_STARTED",
+                            "PIPELINE_EXECUTION_SUCCEEDED",
+                            "PIPELINE_EXECUTION_FAILED",
+                            "STAGE_EXECUTION_FAILED"
+                        ]),
+                        detailType: config.configuration.notifications.detailType || "Full",
+                    },
+                };
+                const notificationResources = await notificationFactory.createResource(notificationConfig);
+                resources.notifications = notificationResources;
+            }
+        }
+        if (config.configuration.cloudwatchLogsDataProtection?.enabled) {
+            const buildProjectName = `${config.meta.environment}-${config.id}-build`;
+            const logGroupName = `/aws/codebuild/${buildProjectName}`;
+            const dataProtectionPolicy = this.buildDataProtectionPolicy(config.configuration.cloudwatchLogsDataProtection, logGroupName);
+            if (dataProtectionPolicy) {
+                new aws.cloudwatch.LogDataProtectionPolicy(`${config.meta.environment}-${config.id}-build-data-protection`, {
+                    logGroupName: logGroupName,
+                    policyDocument: JSON.stringify(dataProtectionPolicy),
+                }, {
+                    dependsOn: [cloudFrontPipeline]
+                });
+                console.log(`CloudFront CodePipeline: Applied data protection policy to existing CodeBuild log group: ${logGroupName}`);
+            }
+        }
+        return resources;
+    }
+    getOutputs(resources) {
+        const cloudFrontFactory = new cloudfrontCodePipelineFactory_1.CloudFrontCodePipelineFactory();
+        const cloudFrontOutputs = cloudFrontFactory.getOutputs(resources.pipeline);
+        const outputs = {
+            arn: cloudFrontOutputs.arn,
+            name: cloudFrontOutputs.name,
+            url: cloudFrontOutputs.url,
+            codebuildProjectName: cloudFrontOutputs.codebuildProjectName,
+        };
+        if (resources.notifications) {
+            outputs.notificationEventRuleArn = resources.notifications.eventRule.arn;
+            outputs.notificationEventRuleName = resources.notifications.eventRule.name;
+        }
+        if (resources.notificationRules) {
+            const notificationRulesFactory = new codePipelineNotificationRulesFactory_1.CodePipelineNotificationRulesFactory();
+            const notificationRulesOutputs = notificationRulesFactory.getOutputs(resources.notificationRules);
+            outputs.notificationRuleArn = notificationRulesOutputs.notificationRuleArn;
+        }
+        return outputs;
+    }
+    static createPipeline(config) {
+        const factory = new EnhancedCloudFrontCodePipelineFactory();
+        const enhancedConfig = {
+            id: config.id,
+            meta: config.meta,
+            configuration: {
+                pipeline: {
+                    repoOwner: config.repoOwner,
+                    repoName: config.repoName,
+                    branch: config.branch,
+                    codestarConnectionArn: config.codestarConnectionArn,
+                    cloudfrontDistributionId: config.cloudfrontDistributionId,
+                    s3BucketName: config.s3BucketName,
+                    buildImage: "aws/codebuild/amazonlinux2-x86_64-standard:5.0",
+                    buildTimeout: config.buildTimeout || 20,
+                    deployCodePipelineInVpc: config.deployCodePipelineInVpc ?? true,
+                    vpcConfig: config.vpcConfig,
+                    tags: config.tags,
+                },
+                notifications: config.snsTopicArn ? {
+                    enabled: true,
+                    snsTopicArn: config.snsTopicArn,
+                    eventTypes: [
+                        "PIPELINE_EXECUTION_STARTED",
+                        "PIPELINE_EXECUTION_SUCCEEDED",
+                        "PIPELINE_EXECUTION_FAILED",
+                        "STAGE_EXECUTION_FAILED"
+                    ],
+                    detailType: "Full",
+                    successNotifications: true,
+                    failureNotifications: true,
+                    startNotifications: true,
+                } : undefined,
+            },
+        };
+        return factory.createResource(enhancedConfig);
+    }
+}
+exports.EnhancedCloudFrontCodePipelineFactory = EnhancedCloudFrontCodePipelineFactory;

package/dist/src/factories/enhancedEcsCodePipelineFactory.js

@@ -0,0 +1,189 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.EnhancedEcsCodePipelineFactory = void 0;
+const aws = __importStar(require("@pulumi/aws"));
+const resourceFactory_1 = require("./resourceFactory");
+const ecsCodePipelineFactory_1 = require("./ecsCodePipelineFactory");
+const dataProtectionPolicyBuilder_1 = require("./dataProtectionPolicyBuilder");
+const codePipelineNotificationFactory_1 = require("./codePipelineNotificationFactory");
+const codePipelineNotificationRulesFactory_1 = require("./codePipelineNotificationRulesFactory");
+class EnhancedEcsCodePipelineFactory extends resourceFactory_1.ResourceFactory {
+    buildDataProtectionPolicy(config, logGroupName) {
+        if (!config?.enabled) {
+            return undefined;
+        }
+        return (0, dataProtectionPolicyBuilder_1.buildDataProtectionPolicy)(config, logGroupName, dataProtectionPolicyBuilder_1.DEFAULT_DATA_IDENTIFIERS.CODEPIPELINE_LOGS, "ECS CodePipeline");
+    }
+    validateConfig(config) {
+        if (!config.configuration?.pipeline) {
+            throw new Error("Pipeline configuration is required");
+        }
+        const pipeline = config.configuration.pipeline;
+        if (!pipeline.repoOwner || !pipeline.repoName || !pipeline.branch) {
+            throw new Error("Repository owner, name, and branch are required");
+        }
+        const serviceName = pipeline.serviceName || pipeline.ecsServiceName;
+        const clusterName = pipeline.clusterName || pipeline.ecsClusterName;
+        if (!serviceName || !clusterName) {
+            throw new Error("ECS service name and cluster name are required (serviceName/clusterName or ecsServiceName/ecsClusterName)");
+        }
+        if (!pipeline.codestarConnectionArn) {
+            throw new Error("CodeStar connection ARN is required");
+        }
+        if (config.configuration.notifications?.enabled && !config.configuration.notifications.snsTopicArn) {
+            throw new Error("SNS topic ARN is required when notifications are enabled");
+        }
+    }
+    async createResource(config) {
+        const ecsPipelineFactory = new ecsCodePipelineFactory_1.ECSCodePipelineFactory();
+        const pipeline = config.configuration.pipeline;
+        const serviceName = pipeline.serviceName || pipeline.ecsServiceName;
+        const clusterName = pipeline.clusterName || pipeline.ecsClusterName;
+        const ecsConfig = {
+            id: config.id,
+            meta: config.meta,
+            configuration: {
+                repoOwner: pipeline.repoOwner,
+                repoName: pipeline.repoName,
+                branch: pipeline.branch,
+                codestarConnectionArn: pipeline.codestarConnectionArn,
+                buildspecPath: pipeline.buildspecPath,
+                buildImage: pipeline.buildImage || "aws/codebuild/amazonlinux2-x86_64-standard:5.0",
+                buildTimeout: pipeline.buildTimeout || 20,
+                privilegedMode: pipeline.privilegedMode || false,
+                computeType: pipeline.computeType || "BUILD_GENERAL1_LARGE",
+                environmentType: pipeline.environmentType || "LINUX_CONTAINER",
+                buildEnvironmentVariables: pipeline.buildEnvironmentVariables,
+                ecsServiceName: serviceName,
+                ecsClusterName: clusterName,
+                containerName: pipeline.containerName,
+                badgeEnabled: pipeline.badgeEnabled,
+                s3BucketForceDestroy: pipeline.s3BucketForceDestroy,
+                githubWebhookEvents: pipeline.githubWebhookEvents,
+                pollSourceChanges: pipeline.pollSourceChanges,
+                webhookEnabled: pipeline.webhookEnabled,
+                deployCodePipelineInVpc: pipeline.deployCodePipelineInVpc,
+                tags: pipeline.tags
+            },
+            inputs: config.inputs || {},
+        };
+        const ecsPipeline = await ecsPipelineFactory.createResource(ecsConfig);
+        const resources = {
+            pipeline: ecsPipeline,
+        };
+        if (config.configuration.notifications?.enabled) {
+            if (config.configuration.notifications.useNotificationRules) {
+                const notificationRulesFactory = new codePipelineNotificationRulesFactory_1.CodePipelineNotificationRulesFactory();
+                const notificationRulesConfig = {
+                    id: `${config.id}-notification-rules`,
+                    configuration: {
+                        pipelineArn: ecsPipeline.arn,
+                        snsTopicArn: config.configuration.notifications.snsTopicArn,
+                        eventTypeIds: config.configuration.notifications.notificationEventTypes || [
+                            "codepipeline-pipeline-pipeline-execution-started",
+                            "codepipeline-pipeline-pipeline-execution-succeeded",
+                            "codepipeline-pipeline-pipeline-execution-failed",
+                            "codepipeline-pipeline-manual-approval-needed"
+                        ],
+                        detailType: config.configuration.notifications.notificationDetailType || "FULL",
+                        name: `${config.id}-pipeline-notifications`,
+                        tags: config.tags
+                    }
+                };
+                const notificationRulesResources = await notificationRulesFactory.createResource(notificationRulesConfig);
+                resources.notificationRules = notificationRulesResources;
+            }
+            else {
+                const notificationFactory = new codePipelineNotificationFactory_1.CodePipelineNotificationFactory();
+                const notificationConfig = {
+                    id: `${config.id}-notifications`,
+                    configuration: {
+                        pipelineName: ecsPipeline.name,
+                        snsTopicArn: config.configuration.notifications.snsTopicArn,
+                        eventTypes: (config.configuration.notifications.eventTypes || [
+                            "PIPELINE_EXECUTION_STARTED",
+                            "PIPELINE_EXECUTION_SUCCEEDED",
+                            "PIPELINE_EXECUTION_FAILED",
+                            "STAGE_EXECUTION_FAILED"
+                        ]),
+                        detailType: config.configuration.notifications.detailType || "Full",
+                    },
+                };
+                const notificationResources = await notificationFactory.createResource(notificationConfig);
+                resources.notifications = notificationResources;
+            }
+        }
+        if (config.configuration.cloudwatchLogsDataProtection?.enabled) {
+            const buildProjectName = `${config.meta.environment}-${config.id}-build`;
+            const logGroupName = `/aws/codebuild/${buildProjectName}`;
+            const dataProtectionPolicy = this.buildDataProtectionPolicy(config.configuration.cloudwatchLogsDataProtection, logGroupName);
+            if (dataProtectionPolicy) {
+                new aws.cloudwatch.LogDataProtectionPolicy(`${config.meta.environment}-${config.id}-build-data-protection`, {
+                    logGroupName: logGroupName,
+                    policyDocument: JSON.stringify(dataProtectionPolicy),
+                }, {
+                    dependsOn: [ecsPipeline]
+                });
+            }
+            else {
+            }
+        }
+        else {
+        }
+        return resources;
+    }
+    getOutputs(resources) {
+        const ecsFactory = new ecsCodePipelineFactory_1.ECSCodePipelineFactory();
+        const ecsOutputs = ecsFactory.getOutputs(resources.pipeline);
+        const outputs = {
+            arn: ecsOutputs.arn,
+            name: ecsOutputs.name,
+            url: ecsOutputs.url,
+            codebuildProjectName: ecsOutputs.name,
+        };
+        if (resources.notifications) {
+            outputs.notificationEventRuleArn = resources.notifications.eventRule.arn;
+            outputs.notificationEventRuleName = resources.notifications.eventRule.name;
+        }
+        if (resources.notificationRules) {
+            const notificationRulesFactory = new codePipelineNotificationRulesFactory_1.CodePipelineNotificationRulesFactory();
+            const notificationRulesOutputs = notificationRulesFactory.getOutputs(resources.notificationRules);
+            outputs.notificationRuleArn = notificationRulesOutputs.notificationRuleArn;
+        }
+        return outputs;
+    }
+}
+exports.EnhancedEcsCodePipelineFactory = EnhancedEcsCodePipelineFactory;

package/dist/src/factories/eventBridgeBusFactory.js

@@ -0,0 +1,84 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.EventBridgeBusFactory = void 0;
+const aws = __importStar(require("@pulumi/aws"));
+const resourceFactory_1 = require("./resourceFactory");
+class EventBridgeBusFactory extends resourceFactory_1.ResourceFactory {
+    async createResource(config) {
+        if (config.hooks?.beforeCreateResources)
+            await config.hooks.beforeCreateResources(config);
+        const resources = {};
+        if (config.configuration.buses) {
+            resources.buses = config.configuration.buses.map(bus => new aws.cloudwatch.EventBus(bus.name, {
+                name: bus.name,
+                tags: bus.tags,
+            }));
+        }
+        if (config.configuration.rules) {
+            resources.rules = config.configuration.rules.map(rule => new aws.cloudwatch.EventRule(rule.name, {
+                name: rule.name,
+                eventBusName: rule.eventBusName,
+                eventPattern: rule.eventPattern,
+                scheduleExpression: rule.scheduleExpression,
+                description: rule.description,
+                isEnabled: rule.isEnabled,
+                tags: rule.tags,
+            }));
+        }
+        if (config.configuration.targets) {
+            resources.targets = config.configuration.targets.map(target => new aws.cloudwatch.EventTarget(target.id, {
+                rule: target.ruleName,
+                eventBusName: target.eventBusName,
+                arn: target.arn,
+                input: target.input,
+                inputPath: target.inputPath,
+                inputTransformer: target.inputTransformer,
+                roleArn: target.roleArn,
+            }));
+        }
+        if (config.hooks?.afterCreateResources)
+            await config.hooks.afterCreateResources(resources, config);
+        return resources;
+    }
+    getOutputs(resource) {
+        return resource;
+    }
+    validateConfig(config) {
+        if (!config.id)
+            throw new Error("EventBridgeBusFactoryConfig must include id");
+    }
+}
+exports.EventBridgeBusFactory = EventBridgeBusFactory;

package/dist/src/factories/eventBridgeFactory.js

@@ -0,0 +1,26 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.EventBridgeFactory = void 0;
+const resourceFactory_1 = require("./resourceFactory");
+const validateEventBridgeConfig_1 = require("./validateEventBridgeConfig");
+const createAwsEventBridgeEventBus_1 = require("./createAwsEventBridgeEventBus");
+class EventBridgeFactory extends resourceFactory_1.ResourceFactory {
+    async createResource(config, provider) {
+        (0, validateEventBridgeConfig_1.validateEventBridgeConfig)(config);
+        return (0, createAwsEventBridgeEventBus_1.createAwsEventBridgeEventBus)(config.configuration.name, {
+            name: config.configuration.name,
+            tags: config.configuration.tags,
+            policy: config.configuration.policy ? JSON.stringify(config.configuration.policy) : undefined,
+        }, provider);
+    }
+    getOutputs(resource) {
+        return {
+            arn: resource.arn,
+            name: resource.name,
+        };
+    }
+    validateConfig(config) {
+        (0, validateEventBridgeConfig_1.validateEventBridgeConfig)(config);
+    }
+}
+exports.EventBridgeFactory = EventBridgeFactory;

package/dist/src/factories/eventBridgeRuleFactory.js

@@ -0,0 +1,114 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.EventBridgeRuleFactory = void 0;
+const aws = __importStar(require("@pulumi/aws"));
+const resourceFactory_1 = require("./resourceFactory");
+class EventBridgeRuleFactory extends resourceFactory_1.ResourceFactory {
+    async createResource(config, provider) {
+        const ruleArgs = {
+            name: config.configuration.name,
+            description: config.configuration.description,
+            eventBusName: config.configuration.eventBusName,
+            state: config.configuration.state || "ENABLED",
+            roleArn: config.configuration.roleArn,
+            tags: config.configuration.tags,
+        };
+        if (config.configuration.eventPattern) {
+            ruleArgs.eventPattern = config.configuration.eventPattern;
+        }
+        else if (config.configuration.scheduleExpression) {
+            ruleArgs.scheduleExpression = config.configuration.scheduleExpression;
+        }
+        else {
+            throw new Error("EventBridge Rule must have either eventPattern or scheduleExpression");
+        }
+        const rule = new aws.cloudwatch.EventRule(config.id, ruleArgs, { provider });
+        if (config.configuration.targets && config.configuration.targets.length > 0) {
+            config.configuration.targets.forEach((target, index) => {
+                const targetArgs = {
+                    rule: rule.name,
+                    arn: target.arn,
+                    targetId: target.id,
+                    eventBusName: config.configuration.eventBusName,
+                };
+                if (target.input)
+                    targetArgs.input = target.input;
+                if (target.inputPath)
+                    targetArgs.inputPath = target.inputPath;
+                if (target.roleArn)
+                    targetArgs.roleArn = target.roleArn;
+                if (target.runCommandParameters)
+                    targetArgs.runCommandTargets = target.runCommandParameters;
+                if (target.ecsParameters)
+                    targetArgs.ecsTarget = target.ecsParameters;
+                if (target.batchParameters)
+                    targetArgs.batchTarget = target.batchParameters;
+                if (target.sqsParameters)
+                    targetArgs.sqsTarget = target.sqsParameters;
+                if (target.httpParameters)
+                    targetArgs.httpTarget = target.httpParameters;
+                if (target.redshiftDataParameters)
+                    targetArgs.redshiftTarget = target.redshiftDataParameters;
+                if (target.sageMakerPipelineParameters)
+                    targetArgs.sagemakerPipelineTarget = target.sageMakerPipelineParameters;
+                if (target.deadLetterConfig)
+                    targetArgs.deadLetterConfig = target.deadLetterConfig;
+                if (target.retryPolicy)
+                    targetArgs.retryPolicy = target.retryPolicy;
+                new aws.cloudwatch.EventTarget(`${config.id}-target-${index}`, targetArgs, { provider });
+            });
+        }
+        return rule;
+    }
+    getOutputs(resource) {
+        return {
+            arn: resource.arn,
+            name: resource.name,
+        };
+    }
+    validateConfig(config) {
+        if (!config.configuration || !config.configuration.name) {
+            throw new Error("EventBridge Rule configuration must include a name");
+        }
+        if (!config.configuration.eventPattern && !config.configuration.scheduleExpression) {
+            throw new Error("EventBridge Rule must have either eventPattern or scheduleExpression");
+        }
+        if (config.configuration.eventPattern && config.configuration.scheduleExpression) {
+            throw new Error("EventBridge Rule cannot have both eventPattern and scheduleExpression");
+        }
+    }
+}
+exports.EventBridgeRuleFactory = EventBridgeRuleFactory;

package/dist/src/factories/fetchAllSecrets.js

@@ -0,0 +1,51 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.fetchAllSecrets = fetchAllSecrets;
+const aws = __importStar(require("@pulumi/aws"));
+async function fetchAllSecrets(secretsById) {
+    const allSecrets = {};
+    for (const secretId of Object.keys(secretsById)) {
+        const secret = await aws.secretsmanager.getSecretVersion({ secretId });
+        const secretString = secret.secretString ? JSON.parse(secret.secretString) : {};
+        allSecrets[secretId] = {};
+        for (const key of secretsById[secretId]) {
+            if (secretString[key] !== undefined) {
+                allSecrets[secretId][key] = secretString[key];
+            }
+        }
+    }
+    return allSecrets;
+}