Security News
Research
Supply Chain Attack on Rspack npm Packages Injects Cryptojacking Malware
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
@stedi/sdk-client-exchange-credentials
Advanced tools
Stedi SDK for JavaScript that includes Exchange Credentials client for Node.js, Browser and React Native
Stedi SDK for JavaScript that includes ExchangeCredentials Client for Node.js, Browser and React Native.
Service to exchange Stedi credentials for Web Identity to access AWS account.
To install the this package, simply type add or install @stedi/sdk-client-exchange-credentials using your favorite package manager:
npm install @stedi/sdk-client-exchange-credentials
yarn add @stedi/sdk-client-exchange-credentials
pnpm add @stedi/sdk-client-exchange-credentials
The Stedi SDK is modulized by clients and commands.
To send a request, you only need to import the ExchangeCredentialsClient
and
the commands you need, for example GetAwsAccessCommand
:
// ES5 example
const { ExchangeCredentialsClient, GetAwsAccessCommand } = require("@stedi/sdk-client-exchange-credentials");
// ES6+ example
import { ExchangeCredentialsClient, GetAwsAccessCommand } from "@stedi/sdk-client-exchange-credentials";
To send a request, you:
send
operation on client with command object as input.destroy()
to close open connections.// a client can be shared by different commands.
const client = new ExchangeCredentialsClient({ region: "REGION" });
const params = {
/** input parameters */
};
const command = new GetAwsAccessCommand(params);
We recommend using await operator to wait for the promise returned by send operation as follows:
// async/await.
try {
const data = await client.send(command);
// process data.
} catch (error) {
// error handling.
} finally {
// finally.
}
Async-await is clean, concise, intuitive, easy to debug and has better error handling as compared to using Promise chains or callbacks.
You can also use Promise chaining to execute send operation.
client.send(command).then(
(data) => {
// process data.
},
(error) => {
// error handling.
}
);
Promises can also be called using .catch()
and .finally()
as follows:
client
.send(command)
.then((data) => {
// process data.
})
.catch((error) => {
// error handling.
})
.finally(() => {
// finally.
});
We do not recommend using callbacks because of callback hell, but they are supported by the send operation.
// callbacks.
client.send(command, (err, data) => {
// process err and data.
});
When the service returns an exception, the error will include the exception information, as well as response metadata (e.g. request id).
try {
const data = await client.send(command);
// process data.
} catch (error) {
const { requestId, cfId, extendedRequestId } = error.$metadata;
console.log({ requestId, cfId, extendedRequestId });
/**
* The keys within exceptions are also parsed.
* You can access them by checking if it is a certain instance of exception:
* if (error instanceof SomeServiceException) {
* const value = error.specialKeyInException;
* }
*/
}
This SDK is distributed under the Apache License, Version 2.0, see LICENSE for more information.
FAQs
Stedi SDK for JavaScript that includes Exchange Credentials client for Node.js, Browser and React Native
The npm package @stedi/sdk-client-exchange-credentials receives a total of 2,555 weekly downloads. As such, @stedi/sdk-client-exchange-credentials popularity was classified as popular.
We found that @stedi/sdk-client-exchange-credentials demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.
Security News
Sonar’s acquisition of Tidelift highlights a growing industry shift toward sustainable open source funding, addressing maintainer burnout and critical software dependencies.