Socket
Book a DemoInstallSign in
Socket
Book a DemoInstallSign in

@aerisweather/deploy-cloud-formation

Package Overview
Dependencies
Maintainers
3
Versions
3
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@aerisweather/deploy-cloud-formation

Easily deploy and update CloudFormation templates

latest
npmnpm
Version
1.2.0
Version published
Maintainers
3
Created
Source

deploy-cloud-formation

Easily deploy and update CloudFormation templates

What does it do?

When you pass a template to deployCloudFormation:

  • It creates a CloudFormation stack, if one doesn't exist
  • It executes a ChangeSet against a stack, if the stack already exists
  • Waits to resolve until the stack is fully created/updated
  • Throws an error if the stack fails to create/update

So nothing too fancy. But it turns out that this is kind of tricky using the AWS SDK alone.

Install

npm install --save-dev @aerisweather/deploy-cloud-formation

Usage

with the CLI tool

The simplest way to deploy a CloudFormation template is using the CLI tool:

node_modules/.bin/deploy-cloud-formation \
  --template ./my-cloud-formation-template.json \
  --stackName MyStack \
  --region us-east-1

with the node module

const deployCloudFormation = require('@aerisweather/deploy-cloud-formation').default;

const template = {
  "Resources": {
      "EC2Instance": {
        "Type": "AWS::EC2::Instance",
        "Properties": {
          // ...
        }
      },
      "InstanceSecurityGroup": {
        "Type": "AWS::EC2::SecurityGroup",
        "Properties": {
          // ...
        }
      }
    }
}

deployCloudFormation({
  region: 'us-east-1',
  template: JSON.stringify(template),
  stackName: 'my-cloudformation-stack'
})
  .then(
    () => console.log(`Done!`),
    (err) => console.error(`Failed to create a CloudFormation stack: ${err.message}`)
  );

Template Utilities

To make writing JSON templates a little nicer, we provide you with some utility functions:

import {Join, AccountId, Attr, Ref} from '@aeriweather/deploy-cloud-formation';

const template = {
  Resources: {
    //...
    SomeRole: {
      Type: 'AWS::IAM::Role',
      Properties: {
        ManagedPolicyArns: [
          // Reference a policy ARN, using your AWS Account ID
          Join([
            'arn:aws:iam::',
            AccountId(),
          ]),
          
          // Reference a policy ARN, from the same CF template,
          // using `Fn::Att`
          Attr('SomePolicy', 'Arn'),
          
          // Reference a policy ARN, from the same CF template,
          // using `{ Ref }`
          Ref('SomePolicy')
        ]
      }
    }
  }
};

Keywords

AWS
CloudFormation

FAQs

Package last updated on 28 Jul 2017

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Introducing Tier 1 Reachability: Precision CVE Triage for Enterprise Teams

Product

Introducing Tier 1 Reachability: Precision CVE Triage for Enterprise Teams

Socket’s new Tier 1 Reachability filters out up to 80% of irrelevant CVEs, so security teams can focus on the vulnerabilities that matter.

By Martin Torp  -  Sep 09, 2025
DuckDB npm Account Compromised in Continuing Supply Chain Attack

Research

/

Security News

DuckDB npm Account Compromised in Continuing Supply Chain Attack

Ongoing npm supply chain attack spreads to DuckDB: multiple packages compromised with the same wallet-drainer malware.

By Peter van der Zee, Sarah Gooding  -  Sep 09, 2025
SocketSocket SOC 2 Logo

Product

About

Packages

Explore npm
Explore Cargo
Explore Go
Explore Maven
Explore NuGet
Explore PyPI
Explore Rubygems

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc

U.S. Patent No. 12,346,443 & 12,314,394. Other pending.