cobbdan · cobbdan · Jul 25, 2025 · Aug 6, 2025 · Aug 8, 2025 · Sep 29, 2025
diff --git a/packages/core/src/awsService/eventBridgeScheduler/commands/createSchedule.ts b/packages/core/src/awsService/eventBridgeScheduler/commands/createSchedule.ts
@@ -0,0 +1,168 @@
+/*!
+ * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
+ * SPDX-License-Identifier: Apache-2.0
+ */
+
+import * as vscode from 'vscode'
+import { getLogger } from '../../../shared/logger/logger'
+import { EventBridgeSchedulerService, ScheduleConfig } from '../eventBridgeSchedulerService'
+import { showQuickPick, showInputBox } from '../../../shared/ui/pickerPrompter'
+import { createQuickStartUrl } from '../../../shared/utilities/workspaceUtils'
-import { createQuickStartUrl } from '../../../shared/utilities/workspaceUtils'
+import { showQuickPick, showInputBox } from '../../../shared/ui/pickerPrompter'
-import { createQuickStartUrl } from '../../../shared/utilities/workspaceUtils'
+import { showQuickPick, showInputBox } from '../../../shared/ui/pickerPrompter'
-import { createQuickStartUrl } from '../../../shared/utilities/workspaceUtils'
+import { showQuickPick, showInputBox } from '../../../shared/ui/pickerPrompter'
-import { createQuickStartUrl } from '../../../shared/utilities/workspaceUtils'
+import { showQuickPick, showInputBox } from '../../../shared/ui/pickerPrompter'
+
+/**
+ * Command to create a new EventBridge Scheduler schedule
+ * 
+ * This command guides users through creating schedules for automated task execution.
+ * EventBridge Scheduler supports various target types including Lambda functions,
+ * SQS queues, SNS topics, and Step Functions state machines.
+ * 
+ * Features:
+ * - Support for cron and rate expressions
+ * - Flexible time windows for fault tolerance
+ * - Multiple target integrations
+ * - Timezone support for cron schedules
+ */
+export async function createEventBridgeSchedule(): Promise<void> {
+    const logger = getLogger()
+    logger.info('Starting EventBridge Scheduler create schedule workflow')
+
+    try {
+        const schedulerService = new EventBridgeSchedulerService()
+
+        // Get schedule name
+        const scheduleName = await showInputBox({
+            title: 'Schedule Name',
+            placeholder: 'my-daily-backup-schedule',
+            validateInput: (input) => {
+                if (!input || input.trim().length === 0) {
+                    return 'Schedule name is required'
+                }
+                if (input.length > 64) {
+                    return 'Schedule name must be 64 characters or fewer'
+                }
+                if (!/^[a-zA-Z0-9\-_]+$/.test(input)) {
+                    return 'Schedule name can only contain letters, numbers, hyphens, and underscores'
+                }
+                return undefined
-                    return 'Schedule name must be 64 characters or fewer'
-                }
-                if (!/^[a-zA-Z0-9\-_]+$/.test(input)) {
-                    return 'Schedule name can only contain letters, numbers, hyphens, and underscores'
-                }
-                return undefined
+if (!input || input.trim().length === 0) {
+    return 'Schedule name is required'
+}
+if (input.length > 64) {
+    return 'Schedule name must be 64 characters or fewer'
+}
+if (!/^[a-zA-Z0-9\-_]+$/.test(input)) {
+    return 'Schedule name can only contain letters, numbers, hyphens, and underscores'
+}
+if (input.startsWith('-') || input.endsWith('-')) {
+    return 'Schedule name cannot start or end with a hyphen'
+}
+return undefined
-                    return 'Schedule name must be 64 characters or fewer'
-                }
-                if (!/^[a-zA-Z0-9\-_]+$/.test(input)) {
-                    return 'Schedule name can only contain letters, numbers, hyphens, and underscores'
-                }
-                return undefined
+if (!input || input.trim().length === 0) {
+    return 'Schedule name is required'
+}
+if (input.length > 64) {
+    return 'Schedule name must be 64 characters or fewer'
+}
+if (!/^[a-zA-Z0-9\-_]+$/.test(input)) {
+    return 'Schedule name can only contain letters, numbers, hyphens, and underscores'
+}
+if (input.startsWith('-') || input.endsWith('-')) {
+    return 'Schedule name cannot start or end with a hyphen'
+}
+return undefined
+            }
+        })
+
+        if (!scheduleName) {
+            return
+        }
+
-    logger.info('Starting EventBridge Scheduler create schedule workflow')
-
-    try {
-        const schedulerService = new EventBridgeSchedulerService()
-        
-        // Get schedule name
-        const scheduleName = await showInputBox({
-            title: 'Schedule Name',
-            placeholder: 'my-daily-backup-schedule',
-            validateInput: (input) => {
-                if (!input || input.trim().length === 0) {
-                    return 'Schedule name is required'
-                }
-                if (input.length > 64) {
-                    return 'Schedule name must be 64 characters or fewer'
-                }
-                if (!/^[a-zA-Z0-9\-_]+$/.test(input)) {
-                    return 'Schedule name can only contain letters, numbers, hyphens, and underscores'
-                }
-                return undefined
-            }
-        })
-
-        if (!scheduleName) {
-            return
-        }
+/**
+ * Command to create a new EventBridge Scheduler schedule
+ * 
+ * @returns {Promise<void>}
+ */
+export async function createEventBridgeSchedule(): Promise<void> {
+    const logger = getLogger()
+    logger.info('Starting EventBridge Scheduler create schedule workflow')
+
+    try {
+        const schedulerService = new EventBridgeSchedulerService()
+        
+        const scheduleName = await getScheduleName()
+        if (!scheduleName) return
+
+        const scheduleType = await getScheduleType()
+        if (!scheduleType) return
+
+        const scheduleExpression = await getScheduleExpression(scheduleType.label)
+        if (!scheduleExpression) return
+
+        const targetType = await getTargetType()
+        if (!targetType) return
+
+        const target = await configureTarget(targetType.label)
+        if (!target) return
+
+        const scheduleConfig: ScheduleConfig = {
+            name: scheduleName,
+            scheduleExpression,
+            target,
+            enabled: true
+        }
+
+        await schedulerService.createSchedule(scheduleConfig)
+        
+        await vscode.window.showInformationMessage(`Schedule "${scheduleName}" created successfully.`)
+    } catch (error) {
+        logger.error('Failed to create EventBridge Scheduler schedule:', error)
+        if (error instanceof Error) {
+            await vscode.window.showErrorMessage(`Failed to create schedule: ${error.message}`)
+        } else {
+            await vscode.window.showErrorMessage('An unexpected error occurred while creating the schedule.')
+        }
+    }
+}
-    logger.info('Starting EventBridge Scheduler create schedule workflow')
-
-    try {
-        const schedulerService = new EventBridgeSchedulerService()
-        
-        // Get schedule name
-        const scheduleName = await showInputBox({
-            title: 'Schedule Name',
-            placeholder: 'my-daily-backup-schedule',
-            validateInput: (input) => {
-                if (!input || input.trim().length === 0) {
-                    return 'Schedule name is required'
-                }
-                if (input.length > 64) {
-                    return 'Schedule name must be 64 characters or fewer'
-                }
-                if (!/^[a-zA-Z0-9\-_]+$/.test(input)) {
-                    return 'Schedule name can only contain letters, numbers, hyphens, and underscores'
-                }
-                return undefined
-            }
-        })
-
-        if (!scheduleName) {
-            return
-        }
+/**
+ * Command to create a new EventBridge Scheduler schedule
+ * 
+ * @returns {Promise<void>}
+ */
+export async function createEventBridgeSchedule(): Promise<void> {
+    const logger = getLogger()
+    logger.info('Starting EventBridge Scheduler create schedule workflow')
+
+    try {
+        const schedulerService = new EventBridgeSchedulerService()
+        
+        const scheduleName = await getScheduleName()
+        if (!scheduleName) return
+
+        const scheduleType = await getScheduleType()
+        if (!scheduleType) return
+
+        const scheduleExpression = await getScheduleExpression(scheduleType.label)
+        if (!scheduleExpression) return
+
+        const targetType = await getTargetType()
+        if (!targetType) return
+
+        const target = await configureTarget(targetType.label)
+        if (!target) return
+
+        const scheduleConfig: ScheduleConfig = {
+            name: scheduleName,
+            scheduleExpression,
+            target,
+            enabled: true
+        }
+
+        await schedulerService.createSchedule(scheduleConfig)
+        
+        await vscode.window.showInformationMessage(`Schedule "${scheduleName}" created successfully.`)
+    } catch (error) {
+        logger.error('Failed to create EventBridge Scheduler schedule:', error)
+        if (error instanceof Error) {
+            await vscode.window.showErrorMessage(`Failed to create schedule: ${error.message}`)
+        } else {
+            await vscode.window.showErrorMessage('An unexpected error occurred while creating the schedule.')
+        }
+    }
+}
+        // Get schedule type
+        const scheduleType = await showQuickPick([
+            { label: 'Rate-based', detail: 'Run at regular intervals (every X minutes/hours/days)' },
+            { label: 'Cron-based', detail: 'Run based on cron expression (specific times/dates)' },
+            { label: 'One-time', detail: 'Run once at a specific date and time' }
+        ], {
+            title: 'Schedule Type',
+            ignoreFocusOut: true
+        })
+
+        if (!scheduleType) {
+            return
+        }
+
+        // Get schedule expression based on type
+        let scheduleExpression: string
-        let scheduleExpression: string
+        let scheduleExpression: string | undefined
-        let scheduleExpression: string
+        let scheduleExpression: string | undefined
-        let scheduleExpression: string
+        let scheduleExpression: string | undefined
-        let scheduleExpression: string
+        let scheduleExpression: string | undefined
+        switch (scheduleType.label) {
+            case 'Rate-based':
+                scheduleExpression = await getRateExpression()
+                break
+            case 'Cron-based':
-        switch (scheduleType.label) {
-            case 'Rate-based':
-                scheduleExpression = await getRateExpression()
-                break
-            case 'Cron-based':
+        if (!scheduleExpression) {
+            return
+        }
+
+        // Validate schedule expression
+        if (!/^(rate\([^\)]+\)|cron\([^\)]+\)|at\([^\)]+\))$/.test(scheduleExpression)) {
+            throw new Error('Invalid schedule expression. Must be a valid rate, cron, or at expression.')
+        }
+
+        // Get target type
-        switch (scheduleType.label) {
-            case 'Rate-based':
-                scheduleExpression = await getRateExpression()
-                break
-            case 'Cron-based':
+        if (!scheduleExpression) {
+            return
+        }
+
+        // Validate schedule expression
+        if (!/^(rate\([^\)]+\)|cron\([^\)]+\)|at\([^\)]+\))$/.test(scheduleExpression)) {
+            throw new Error('Invalid schedule expression. Must be a valid rate, cron, or at expression.')
+        }
+
+        // Get target type
+                scheduleExpression = await getCronExpression()
+                break
+            case 'One-time':
+                scheduleExpression = await getOneTimeExpression()
+                break
+            default:
+                return
+        }
-                break
-            case 'One-time':
-                scheduleExpression = await getOneTimeExpression()
-                break
-            default:
-                return
-        }
+// Validate and sanitize schedule expression
+const sanitizedExpression = sanitizeScheduleExpression(scheduleExpression);
+if (!isValidScheduleExpression(sanitizedExpression)) {
+    throw new Error('Invalid schedule expression');
+}
+
+// Use sanitized expression in schedule creation
+const scheduleConfig: ScheduleConfig = {
+    name: scheduleName,
+    scheduleExpression: sanitizedExpression,
+    target: {
+        arn: targetArn,
+        roleArn: targetRoleArn,
+        type: targetType.label
+    },
+    enabled: true
+};
+
+await schedulerService.createSchedule(scheduleConfig);
-                break
-            case 'One-time':
-                scheduleExpression = await getOneTimeExpression()
-                break
-            default:
-                return
-        }
+// Validate and sanitize schedule expression
+const sanitizedExpression = sanitizeScheduleExpression(scheduleExpression);
+if (!isValidScheduleExpression(sanitizedExpression)) {
+    throw new Error('Invalid schedule expression');
+}
+
+// Use sanitized expression in schedule creation
+const scheduleConfig: ScheduleConfig = {
+    name: scheduleName,
+    scheduleExpression: sanitizedExpression,
+    target: {
+        arn: targetArn,
+        roleArn: targetRoleArn,
+        type: targetType.label
+    },
+    enabled: true
+};
+
+await schedulerService.createSchedule(scheduleConfig);
+
+        if (!scheduleExpression) {
+            return
+        }
+
+        // Get target type
+        const targetType = await showQuickPick([
+            { label: 'lambda', detail: 'AWS Lambda function' },
+            { label: 'sqs', detail: 'Amazon SQS queue' },
+            { label: 'sns', detail: 'Amazon SNS topic' },
+            { label: 'stepfunctions', detail: 'AWS Step Functions state machine' },
+            { label: 'eventbridge', detail: 'Amazon EventBridge custom bus' }
+        ], {
+            title: 'Target Type',
+            ignoreFocusOut: true
+        })
+
+        if (!targetType) {
+            return
+        }
+
+        // For now, show a placeholder message
+        await vscode.window.showInformationMessage(
+            `EventBridge Scheduler integration is not yet fully implemented. ` +
+            `Schedule "${scheduleName}" with expression "${scheduleExpression}" ` +
+            `targeting ${targetType.label} would be created.`,
+            'View Documentation'
+        ).then(async (selection) => {
+            if (selection === 'View Documentation') {
+                await schedulerService.openScheduleTypesDocumentation()
+            }
+        })
+
+    } catch (error) {
+        logger.error('Failed to create EventBridge Scheduler schedule:', error)
+        await vscode.window.showErrorMessage(`Failed to create schedule: ${error}`)
+    }
-export async function createEventBridgeSchedule(): Promise<void> {
-    const logger = getLogger()
-    logger.info('Starting EventBridge Scheduler create schedule workflow')
-
-    try {
-        const schedulerService = new EventBridgeSchedulerService()
-        
-        // Get schedule name
-        const scheduleName = await showInputBox({
-            title: 'Schedule Name',
-            placeholder: 'my-daily-backup-schedule',
-            validateInput: (input) => {
-                if (!input || input.trim().length === 0) {
-                    return 'Schedule name is required'
-                }
-                if (input.length > 64) {
-                    return 'Schedule name must be 64 characters or fewer'
-                }
-                if (!/^[a-zA-Z0-9\-_]+$/.test(input)) {
-                    return 'Schedule name can only contain letters, numbers, hyphens, and underscores'
-                }
-                return undefined
-            }
-        })
-
-        if (!scheduleName) {
-            return
-        }
-
-        // Get schedule type
-        const scheduleType = await showQuickPick([
-            { label: 'Rate-based', detail: 'Run at regular intervals (every X minutes/hours/days)' },
-            { label: 'Cron-based', detail: 'Run based on cron expression (specific times/dates)' },
-            { label: 'One-time', detail: 'Run once at a specific date and time' }
-        ], {
-            title: 'Schedule Type',
-            ignoreFocusOut: true
-        })
-
-        if (!scheduleType) {
-            return
-        }
-
-        // Get schedule expression based on type
-        let scheduleExpression: string
-        switch (scheduleType.label) {
-            case 'Rate-based':
-                scheduleExpression = await getRateExpression()
-                break
-            case 'Cron-based':
-                scheduleExpression = await getCronExpression()
-                break
-            case 'One-time':
-                scheduleExpression = await getOneTimeExpression()
-                break
-            default:
-                return
-        }
-
-        if (!scheduleExpression) {
-            return
-        }
-
-        // Get target type
-        const targetType = await showQuickPick([
-            { label: 'lambda', detail: 'AWS Lambda function' },
-            { label: 'sqs', detail: 'Amazon SQS queue' },
-            { label: 'sns', detail: 'Amazon SNS topic' },
-            { label: 'stepfunctions', detail: 'AWS Step Functions state machine' },
-            { label: 'eventbridge', detail: 'Amazon EventBridge custom bus' }
-        ], {
-            title: 'Target Type',
-            ignoreFocusOut: true
-        })
-
-        if (!targetType) {
-            return
-        }
-
-        // For now, show a placeholder message
-        await vscode.window.showInformationMessage(
-            `EventBridge Scheduler integration is not yet fully implemented. ` +
-            `Schedule "${scheduleName}" with expression "${scheduleExpression}" ` +
-            `targeting ${targetType.label} would be created.`,
-            'View Documentation'
-        ).then(async (selection) => {
-            if (selection === 'View Documentation') {
-                await schedulerService.openScheduleTypesDocumentation()
-            }
-        })
-
-    } catch (error) {
-        logger.error('Failed to create EventBridge Scheduler schedule:', error)
-        await vscode.window.showErrorMessage(`Failed to create schedule: ${error}`)
-    }
+export async function createEventBridgeSchedule(): Promise<void> {
+    const logger = getLogger()
+    logger.info('Starting EventBridge Scheduler create schedule workflow')
+
+    try {
+        const schedulerService = new EventBridgeSchedulerService()
+        
+        // ... (rest of the function remains the same)
+
+    } catch (error) {
+        logger.error('Failed to create EventBridge Scheduler schedule:', error)
+        if (error instanceof Error) {
+            await vscode.window.showErrorMessage(`Failed to create schedule: ${error.message}`)
+        } else {
+            await vscode.window.showErrorMessage('An unexpected error occurred while creating the schedule')
+        }
+    }
+}
-export async function createEventBridgeSchedule(): Promise<void> {
-    const logger = getLogger()
-    logger.info('Starting EventBridge Scheduler create schedule workflow')
-
-    try {
-        const schedulerService = new EventBridgeSchedulerService()
-        
-        // Get schedule name
-        const scheduleName = await showInputBox({
-            title: 'Schedule Name',
-            placeholder: 'my-daily-backup-schedule',
-            validateInput: (input) => {
-                if (!input || input.trim().length === 0) {
-                    return 'Schedule name is required'
-                }
-                if (input.length > 64) {
-                    return 'Schedule name must be 64 characters or fewer'
-                }
-                if (!/^[a-zA-Z0-9\-_]+$/.test(input)) {
-                    return 'Schedule name can only contain letters, numbers, hyphens, and underscores'
-                }
-                return undefined
-            }
-        })
-
-        if (!scheduleName) {
-            return
-        }
-
-        // Get schedule type
-        const scheduleType = await showQuickPick([
-            { label: 'Rate-based', detail: 'Run at regular intervals (every X minutes/hours/days)' },
-            { label: 'Cron-based', detail: 'Run based on cron expression (specific times/dates)' },
-            { label: 'One-time', detail: 'Run once at a specific date and time' }
-        ], {
-            title: 'Schedule Type',
-            ignoreFocusOut: true
-        })
-
-        if (!scheduleType) {
-            return
-        }
-
-        // Get schedule expression based on type
-        let scheduleExpression: string
-        switch (scheduleType.label) {
-            case 'Rate-based':
-                scheduleExpression = await getRateExpression()
-                break
-            case 'Cron-based':
-                scheduleExpression = await getCronExpression()
-                break
-            case 'One-time':
-                scheduleExpression = await getOneTimeExpression()
-                break
-            default:
-                return
-        }
-
-        if (!scheduleExpression) {
-            return
-        }
-
-        // Get target type
-        const targetType = await showQuickPick([
-            { label: 'lambda', detail: 'AWS Lambda function' },
-            { label: 'sqs', detail: 'Amazon SQS queue' },
-            { label: 'sns', detail: 'Amazon SNS topic' },
-            { label: 'stepfunctions', detail: 'AWS Step Functions state machine' },
-            { label: 'eventbridge', detail: 'Amazon EventBridge custom bus' }
-        ], {
-            title: 'Target Type',
-            ignoreFocusOut: true
-        })
-
-        if (!targetType) {
-            return
-        }
-
-        // For now, show a placeholder message
-        await vscode.window.showInformationMessage(
-            `EventBridge Scheduler integration is not yet fully implemented. ` +
-            `Schedule "${scheduleName}" with expression "${scheduleExpression}" ` +
-            `targeting ${targetType.label} would be created.`,
-            'View Documentation'
-        ).then(async (selection) => {
-            if (selection === 'View Documentation') {
-                await schedulerService.openScheduleTypesDocumentation()
-            }
-        })
-
-    } catch (error) {
-        logger.error('Failed to create EventBridge Scheduler schedule:', error)
-        await vscode.window.showErrorMessage(`Failed to create schedule: ${error}`)
-    }
+export async function createEventBridgeSchedule(): Promise<void> {
+    const logger = getLogger()
+    logger.info('Starting EventBridge Scheduler create schedule workflow')
+
+    try {
+        const schedulerService = new EventBridgeSchedulerService()
+        
+        // ... (rest of the function remains the same)
+
+    } catch (error) {
+        logger.error('Failed to create EventBridge Scheduler schedule:', error)
+        if (error instanceof Error) {
+            await vscode.window.showErrorMessage(`Failed to create schedule: ${error.message}`)
+        } else {
+            await vscode.window.showErrorMessage('An unexpected error occurred while creating the schedule')
+        }
+    }
+}
+}
+
+async function getRateExpression(): Promise<string | undefined> {
+    const interval = await showInputBox({
+        title: 'Rate Interval',
+        placeholder: '5 minutes',
+        prompt: 'Enter interval (e.g., "5 minutes", "1 hour", "2 days")',
+        validateInput: (input) => {
+            if (!input || !/^\d+\s+(minute|minutes|hour|hours|day|days)$/.test(input.trim())) {
+                return 'Please enter a valid interval (e.g., "5 minutes", "1 hour", "2 days")'
+            }
+            return undefined
+        }
+    })
+
-                return 'Please enter a valid interval (e.g., "5 minutes", "1 hour", "2 days")'
-            }
-            return undefined
-        }
-    })
-    
+const isValidCron = (cron: string): boolean => {
+    const fields = cron.split(/\s+/)
+    if (fields.length !== 6) return false
+
+    const ranges = [
+        [0, 59],  // Minute
+        [0, 23],  // Hour
+        [1, 31],  // Day of month
+        [1, 12],  // Month
+        [0, 7],   // Day of week (0 or 7 is Sunday)
+        [1970, 2099]  // Year
+    ]
+
+    return fields.every((field, i) => {
+        if (field === '*') return true
+        const values = field.split(',')
+        return values.every(value => {
+            const range = value.split('-')
+            if (range.length > 2) return false
+            const [start, end] = range.map(Number)
+            return !isNaN(start) && (end === undefined || !isNaN(end)) &&
+                start >= ranges[i][0] && (end || start) <= ranges[i][1]
+        })
+    })
+}
+
+if (!isValidCron(input.trim())) {
+    return 'Invalid cron expression. Please check the values for each field.'
+}
+return undefined
-                return 'Please enter a valid interval (e.g., "5 minutes", "1 hour", "2 days")'
-            }
-            return undefined
-        }
-    })
-    
+const isValidCron = (cron: string): boolean => {
+    const fields = cron.split(/\s+/)
+    if (fields.length !== 6) return false
+
+    const ranges = [
+        [0, 59],  // Minute
+        [0, 23],  // Hour
+        [1, 31],  // Day of month
+        [1, 12],  // Month
+        [0, 7],   // Day of week (0 or 7 is Sunday)
+        [1970, 2099]  // Year
+    ]
+
+    return fields.every((field, i) => {
+        if (field === '*') return true
+        const values = field.split(',')
+        return values.every(value => {
+            const range = value.split('-')
+            if (range.length > 2) return false
+            const [start, end] = range.map(Number)
+            return !isNaN(start) && (end === undefined || !isNaN(end)) &&
+                start >= ranges[i][0] && (end || start) <= ranges[i][1]
+        })
+    })
+}
+
+if (!isValidCron(input.trim())) {
+    return 'Invalid cron expression. Please check the values for each field.'
+}
+return undefined
+    return interval ? `rate(${interval})` : undefined
+}
-async function getRateExpression(): Promise<string | undefined> {
-    const interval = await showInputBox({
-        title: 'Rate Interval',
-        placeholder: '5 minutes',
-        prompt: 'Enter interval (e.g., "5 minutes", "1 hour", "2 days")',
-        validateInput: (input) => {
-            if (!input || !/^\d+\s+(minute|minutes|hour|hours|day|days)$/.test(input.trim())) {
-                return 'Please enter a valid interval (e.g., "5 minutes", "1 hour", "2 days")'
-            }
-            return undefined
-        }
-    })
-    
-    return interval ? `rate(${interval})` : undefined
-}
+async function getRateExpression(): Promise<string | undefined> {
+    const interval = await showInputBox({
+        title: 'Rate Interval',
+        placeholder: '5 minutes',
+        prompt: 'Enter interval (e.g., "5 minutes", "1 hour", "2 days", "1 week", "1 month")',
+        validateInput: (input) => {
+            if (!input || !/^\d+\s+(minute|minutes|hour|hours|day|days|week|weeks|month|months)$/.test(input.trim())) {
+                return 'Please enter a valid interval (e.g., "5 minutes", "1 hour", "2 days", "1 week", "1 month")'
+            }
+            return undefined
+        }
+    })
+    
+    return interval ? `rate(${interval})` : undefined
+}
-async function getRateExpression(): Promise<string | undefined> {
-    const interval = await showInputBox({
-        title: 'Rate Interval',
-        placeholder: '5 minutes',
-        prompt: 'Enter interval (e.g., "5 minutes", "1 hour", "2 days")',
-        validateInput: (input) => {
-            if (!input || !/^\d+\s+(minute|minutes|hour|hours|day|days)$/.test(input.trim())) {
-                return 'Please enter a valid interval (e.g., "5 minutes", "1 hour", "2 days")'
-            }
-            return undefined
-        }
-    })
-    
-    return interval ? `rate(${interval})` : undefined
-}
+async function getRateExpression(): Promise<string | undefined> {
+    const interval = await showInputBox({
+        title: 'Rate Interval',
+        placeholder: '5 minutes',
+        prompt: 'Enter interval (e.g., "5 minutes", "1 hour", "2 days", "1 week", "1 month")',
+        validateInput: (input) => {
+            if (!input || !/^\d+\s+(minute|minutes|hour|hours|day|days|week|weeks|month|months)$/.test(input.trim())) {
+                return 'Please enter a valid interval (e.g., "5 minutes", "1 hour", "2 days", "1 week", "1 month")'
+            }
+            return undefined
+        }
+    })
+    
+    return interval ? `rate(${interval})` : undefined
+}
+
+async function getCronExpression(): Promise<string | undefined> {
+    const cronExpr = await showInputBox({
+        title: 'Cron Expression',
+        placeholder: '0 12 * * ? *',
+        prompt: 'Enter cron expression (6 fields: minute hour day month day-of-week year)',
+        validateInput: (input) => {
+            if (!input || input.trim().split(/\s+/).length !== 6) {
+                return 'Cron expression must have exactly 6 fields'
+            }
+            return undefined
+        }
+    })
+
+    return cronExpr ? `cron(${cronExpr})` : undefined
+}
-async function getCronExpression(): Promise<string | undefined> {
-    const cronExpr = await showInputBox({
-        title: 'Cron Expression',
-        placeholder: '0 12 * * ? *',
-        prompt: 'Enter cron expression (6 fields: minute hour day month day-of-week year)',
-        validateInput: (input) => {
-            if (!input || input.trim().split(/\s+/).length !== 6) {
-                return 'Cron expression must have exactly 6 fields'
-            }
-            return undefined
-        }
-    })
-    
-    return cronExpr ? `cron(${cronExpr})` : undefined
-}
+import { isValidCron } from 'cron-validator'
+
+async function getCronExpression(): Promise<string | undefined> {
+    const cronExpr = await showInputBox({
+        title: 'Cron Expression',
+        placeholder: '0 12 * * ? *',
+        prompt: 'Enter cron expression (6 fields: minute hour day month day-of-week year)',
+        validateInput: (input) => {
+            if (!input || input.trim().split(/\s+/).length !== 6) {
+                return 'Cron expression must have exactly 6 fields'
+            }
+            if (!isValidCron(input, { alias: true, seconds: false, allowBlankDay: true })) {
+                return 'Invalid cron expression. Please check the format and try again.'
+            }
+            return undefined
+        }
+    })
+    
+    return cronExpr ? `cron(${cronExpr})` : undefined
+}
-async function getCronExpression(): Promise<string | undefined> {
-    const cronExpr = await showInputBox({
-        title: 'Cron Expression',
-        placeholder: '0 12 * * ? *',
-        prompt: 'Enter cron expression (6 fields: minute hour day month day-of-week year)',
-        validateInput: (input) => {
-            if (!input || input.trim().split(/\s+/).length !== 6) {
-                return 'Cron expression must have exactly 6 fields'
-            }
-            return undefined
-        }
-    })
-    
-    return cronExpr ? `cron(${cronExpr})` : undefined
-}
+import { isValidCron } from 'cron-validator'
+
+async function getCronExpression(): Promise<string | undefined> {
+    const cronExpr = await showInputBox({
+        title: 'Cron Expression',
+        placeholder: '0 12 * * ? *',
+        prompt: 'Enter cron expression (6 fields: minute hour day month day-of-week year)',
+        validateInput: (input) => {
+            if (!input || input.trim().split(/\s+/).length !== 6) {
+                return 'Cron expression must have exactly 6 fields'
+            }
+            if (!isValidCron(input, { alias: true, seconds: false, allowBlankDay: true })) {
+                return 'Invalid cron expression. Please check the format and try again.'
+            }
+            return undefined
+        }
+    })
+    
+    return cronExpr ? `cron(${cronExpr})` : undefined
+}
+
-async function getCronExpression(): Promise<string | undefined> {
-    const cronExpr = await showInputBox({
-        title: 'Cron Expression',
-        placeholder: '0 12 * * ? *',
-        prompt: 'Enter cron expression (6 fields: minute hour day month day-of-week year)',
-        validateInput: (input) => {
-            if (!input || input.trim().split(/\s+/).length !== 6) {
-                return 'Cron expression must have exactly 6 fields'
-            }
-            return undefined
-        }
-    })
-    
-    return cronExpr ? `cron(${cronExpr})` : undefined
-}
+// Add a proper cron expression validation library
+import * as cronParser from 'cron-parser';
+
+// ...
+
+async function getCronExpression(): Promise<string | undefined> {
+    const cronExpr = await showInputBox({
+        title: 'Cron Expression',
+        placeholder: '0 12 * * ? *',
+        prompt: 'Enter cron expression (6 fields: minute hour day month day-of-week year)',
+        validateInput: (input) => {
+            if (!input || input.trim().split(/\s+/).length !== 6) {
+                return 'Cron expression must have exactly 6 fields'
+            }
+            try {
+                cronParser.parseExpression(input);
+                return undefined;
+            } catch (error) {
+                return `Invalid cron expression: ${error.message}`;
+            }
+        }
+    })
+    
+    return cronExpr ? `cron(${cronExpr})` : undefined
+}
-async function getCronExpression(): Promise<string | undefined> {
-    const cronExpr = await showInputBox({
-        title: 'Cron Expression',
-        placeholder: '0 12 * * ? *',
-        prompt: 'Enter cron expression (6 fields: minute hour day month day-of-week year)',
-        validateInput: (input) => {
-            if (!input || input.trim().split(/\s+/).length !== 6) {
-                return 'Cron expression must have exactly 6 fields'
-            }
-            return undefined
-        }
-    })
-    
-    return cronExpr ? `cron(${cronExpr})` : undefined
-}
+// Add a proper cron expression validation library
+import * as cronParser from 'cron-parser';
+
+// ...
+
+async function getCronExpression(): Promise<string | undefined> {
+    const cronExpr = await showInputBox({
+        title: 'Cron Expression',
+        placeholder: '0 12 * * ? *',
+        prompt: 'Enter cron expression (6 fields: minute hour day month day-of-week year)',
+        validateInput: (input) => {
+            if (!input || input.trim().split(/\s+/).length !== 6) {
+                return 'Cron expression must have exactly 6 fields'
+            }
+            try {
+                cronParser.parseExpression(input);
+                return undefined;
+            } catch (error) {
+                return `Invalid cron expression: ${error.message}`;
+            }
+        }
+    })
+    
+    return cronExpr ? `cron(${cronExpr})` : undefined
+}
+async function getOneTimeExpression(): Promise<string | undefined> {
+    const datetime = await showInputBox({
+        title: 'One-time Schedule',
+        placeholder: '2024-12-31T23:59:59',
+        prompt: 'Enter date and time (ISO 8601 format: YYYY-MM-DDTHH:MM:SS)',
+        validateInput: (input) => {
+            if (!input || !input.match(/^\d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}$/)) {
+                return 'Please enter date in ISO 8601 format (YYYY-MM-DDTHH:MM:SS)'
+            }
-            if (!input || !input.match(/^\d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}$/)) {
-                return 'Please enter date in ISO 8601 format (YYYY-MM-DDTHH:MM:SS)'
-            }
+            if (!input || !input.match(/^\d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}$/)) {
+                return 'Please enter date in ISO 8601 format (YYYY-MM-DDTHH:MM:SS)'
+            }
+            // Validate that the date is actually valid
+            const date = new Date(input)
+            if (isNaN(date.getTime()) || date.toISOString().slice(0, 19) !== input) {
+                return 'Please enter a valid date and time'
+            }
-            if (!input || !input.match(/^\d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}$/)) {
-                return 'Please enter date in ISO 8601 format (YYYY-MM-DDTHH:MM:SS)'
-            }
+            if (!input || !input.match(/^\d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}$/)) {
+                return 'Please enter date in ISO 8601 format (YYYY-MM-DDTHH:MM:SS)'
+            }
+            // Validate that the date is actually valid
+            const date = new Date(input)
+            if (isNaN(date.getTime()) || date.toISOString().slice(0, 19) !== input) {
+                return 'Please enter a valid date and time'
+            }
+            return undefined
+        }
-            if (!input || !input.match(/^\d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}$/)) {
-                return 'Please enter date in ISO 8601 format (YYYY-MM-DDTHH:MM:SS)'
-            }
-            return undefined
-        }
+        validateInput: (input) => {
+            if (!input) {
+                return 'Please enter date in ISO 8601 format (YYYY-MM-DDTHH:MM:SS)'
+            }
+            
+            if (!input.match(/^\d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}$/)) {
+                return 'Please enter date in ISO 8601 format (YYYY-MM-DDTHH:MM:SS)'
+            }
+            
+            // Validate that it's a valid date
+            const date = new Date(input)
+            if (isNaN(date.getTime())) {
+                return 'Please enter a valid date and time'
+            }
+            
+            // Check if the date is in the past
+            if (date <= new Date()) {
+                return 'Schedule date must be in the future'
+            }
+            
+            return undefined
+        }
-            if (!input || !input.match(/^\d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}$/)) {
-                return 'Please enter date in ISO 8601 format (YYYY-MM-DDTHH:MM:SS)'
-            }
-            return undefined
-        }
+        validateInput: (input) => {
+            if (!input) {
+                return 'Please enter date in ISO 8601 format (YYYY-MM-DDTHH:MM:SS)'
+            }
+            
+            if (!input.match(/^\d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}$/)) {
+                return 'Please enter date in ISO 8601 format (YYYY-MM-DDTHH:MM:SS)'
+            }
+            
+            // Validate that it's a valid date
+            const date = new Date(input)
+            if (isNaN(date.getTime())) {
+                return 'Please enter a valid date and time'
+            }
+            
+            // Check if the date is in the past
+            if (date <= new Date()) {
+                return 'Schedule date must be in the future'
+            }
+            
+            return undefined
+        }
+    })
+
+    return datetime ? `at(${datetime})` : undefined
+}
-async function getOneTimeExpression(): Promise<string | undefined> {
-    const datetime = await showInputBox({
-        title: 'One-time Schedule',
-        placeholder: '2024-12-31T23:59:59',
-        prompt: 'Enter date and time (ISO 8601 format: YYYY-MM-DDTHH:MM:SS)',
-        validateInput: (input) => {
-            if (!input || !input.match(/^\d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}$/)) {
-                return 'Please enter date in ISO 8601 format (YYYY-MM-DDTHH:MM:SS)'
-            }
-            return undefined
-        }
-    })
-    
-    return datetime ? `at(${datetime})` : undefined
-}
+import { parse, isValid, isFuture } from 'date-fns'
+
+async function getOneTimeExpression(): Promise<string | undefined> {
+    const datetime = await showInputBox({
+        title: 'One-time Schedule',
+        placeholder: '2024-12-31T23:59:59',
+        prompt: 'Enter date and time (ISO 8601 format: YYYY-MM-DDTHH:mm:ss)',
+        validateInput: (input) => {
+            if (!input) {
+                return 'Date and time is required'
+            }
+            const parsedDate = parse(input, "yyyy-MM-dd'T'HH:mm:ss", new Date())
+            if (!isValid(parsedDate)) {
+                return 'Invalid date format. Please use YYYY-MM-DDTHH:mm:ss'
+            }
+            if (!isFuture(parsedDate)) {
+                return 'The scheduled time must be in the future'
+            }
+            return undefined
+        }
+    })
+    
+    return datetime ? `at(${datetime})` : undefined
+}
-async function getOneTimeExpression(): Promise<string | undefined> {
-    const datetime = await showInputBox({
-        title: 'One-time Schedule',
-        placeholder: '2024-12-31T23:59:59',
-        prompt: 'Enter date and time (ISO 8601 format: YYYY-MM-DDTHH:MM:SS)',
-        validateInput: (input) => {
-            if (!input || !input.match(/^\d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}$/)) {
-                return 'Please enter date in ISO 8601 format (YYYY-MM-DDTHH:MM:SS)'
-            }
-            return undefined
-        }
-    })
-    
-    return datetime ? `at(${datetime})` : undefined
-}
+import { parse, isValid, isFuture } from 'date-fns'
+
+async function getOneTimeExpression(): Promise<string | undefined> {
+    const datetime = await showInputBox({
+        title: 'One-time Schedule',
+        placeholder: '2024-12-31T23:59:59',
+        prompt: 'Enter date and time (ISO 8601 format: YYYY-MM-DDTHH:mm:ss)',
+        validateInput: (input) => {
+            if (!input) {
+                return 'Date and time is required'
+            }
+            const parsedDate = parse(input, "yyyy-MM-dd'T'HH:mm:ss", new Date())
+            if (!isValid(parsedDate)) {
+                return 'Invalid date format. Please use YYYY-MM-DDTHH:mm:ss'
+            }
+            if (!isFuture(parsedDate)) {
+                return 'The scheduled time must be in the future'
+            }
+            return undefined
+        }
+    })
+    
+    return datetime ? `at(${datetime})` : undefined
+}
diff --git a/packages/core/src/awsService/eventBridgeScheduler/eventBridgeSchedulerService.ts b/packages/core/src/awsService/eventBridgeScheduler/eventBridgeSchedulerService.ts
@@ -0,0 +1,110 @@
+/*!
+ * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
+ * SPDX-License-Identifier: Apache-2.0
+ */
+
+import * as vscode from 'vscode'
+import { getLogger } from '../../shared/logger/logger'
+import { 
+    eventBridgeSchedulerCreateScheduleUrl, 
+    eventBridgeSchedulerApiGatewayUrl,
+    eventBridgeSchedulerRolePermissionsUrl 
+} from '../../shared/constants'
+
+/**
+ * Service for managing Amazon EventBridge Scheduler schedules
+ * 
+ * EventBridge Scheduler allows you to create, run, and manage tasks at scale.
+ * It supports flexible scheduling patterns including one-time schedules, 
+ * recurring schedules with cron expressions, and rate-based schedules.
+ */
+export class EventBridgeSchedulerService {
+    private readonly logger = getLogger()
+
+    /**
+     * Creates a new schedule in EventBridge Scheduler
+     * 
+     * @param scheduleName - Name of the schedule to create
+     * @param scheduleExpression - Cron or rate expression for the schedule
+     * @param target - The target service to invoke (Lambda, SQS, SNS, etc.)
+     */
+    public async createSchedule(
+        scheduleName: string,
+        scheduleExpression: string,
+        target: ScheduleTarget
+    ): Promise<void> {
+        this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
+
+        // Implementation would go here
-     * @param scheduleName - Name of the schedule to create
-     * @param scheduleExpression - Cron or rate expression for the schedule
-     * @param target - The target service to invoke (Lambda, SQS, SNS, etc.)
-     */
-    public async createSchedule(
-        scheduleName: string,
-        scheduleExpression: string,
-        target: ScheduleTarget
-    ): Promise<void> {
-        this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
-        
-        // Implementation would go here
+import { EventBridgeSchedulerClient, CreateScheduleCommand, CreateScheduleCommandInput } from "@aws-sdk/client-scheduler";
+
+public async createSchedule(config: ScheduleConfig): Promise<string> {
+    this.logger.info(`Creating EventBridge Scheduler schedule: ${config.name}`)
+    
+    try {
+        const client = new EventBridgeSchedulerClient({});
+        
+        const input: CreateScheduleCommandInput = {
+            Name: config.name,
+            ScheduleExpression: config.scheduleExpression,
+            Target: {
+                Arn: config.target.arn,
+                RoleArn: config.target.roleArn,
+                Input: config.target.input
+            },
+            State: config.enabled ? 'ENABLED' : 'DISABLED',
+            FlexibleTimeWindow: {
+                Mode: config.flexibleTimeWindow?.mode || 'OFF'
+            }
+        };
+
+        if (config.description) {
+            input.Description = config.description;
+        }
+
+        if (config.timezone) {
+            input.ScheduleExpressionTimezone = config.timezone;
+        }
+
+        const command = new CreateScheduleCommand(input);
+        const response = await client.send(command);
+
+        this.logger.info(`Schedule created successfully: ${response.ScheduleArn}`);
+        return response.ScheduleArn || '';
+    } catch (error) {
+        this.logger.error('Failed to create EventBridge Scheduler schedule:', error);
+        throw error;
+    }
+}
-     * @param scheduleName - Name of the schedule to create
-     * @param scheduleExpression - Cron or rate expression for the schedule
-     * @param target - The target service to invoke (Lambda, SQS, SNS, etc.)
-     */
-    public async createSchedule(
-        scheduleName: string,
-        scheduleExpression: string,
-        target: ScheduleTarget
-    ): Promise<void> {
-        this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
-        
-        // Implementation would go here
+public async createSchedule(
+    scheduleName: string,
+    scheduleExpression: string,
+    target: ScheduleTarget
+): Promise<void> {
+    this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
+    
+    // TODO: Implement integration with AWS EventBridge Scheduler API
+    // For now, log the schedule details
+    this.logger.info(`Schedule details:
+        Name: ${scheduleName}
+        Expression: ${scheduleExpression}
+        Target: ${JSON.stringify(target)}`)
+    
+    // Placeholder: Simulate schedule creation
+    await new Promise(resolve => setTimeout(resolve, 1000))
+    this.logger.info(`Simulated creation of schedule: ${scheduleName}`)
+}
-     * @param scheduleName - Name of the schedule to create
-     * @param scheduleExpression - Cron or rate expression for the schedule
-     * @param target - The target service to invoke (Lambda, SQS, SNS, etc.)
-     */
-    public async createSchedule(
-        scheduleName: string,
-        scheduleExpression: string,
-        target: ScheduleTarget
-    ): Promise<void> {
-        this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
-        
-        // Implementation would go here
+import { EventBridgeSchedulerClient, CreateScheduleCommand, CreateScheduleCommandInput } from "@aws-sdk/client-scheduler";
+
+public async createSchedule(config: ScheduleConfig): Promise<string> {
+    this.logger.info(`Creating EventBridge Scheduler schedule: ${config.name}`)
+    
+    try {
+        const client = new EventBridgeSchedulerClient({});
+        
+        const input: CreateScheduleCommandInput = {
+            Name: config.name,
+            ScheduleExpression: config.scheduleExpression,
+            Target: {
+                Arn: config.target.arn,
+                RoleArn: config.target.roleArn,
+                Input: config.target.input
+            },
+            State: config.enabled ? 'ENABLED' : 'DISABLED',
+            FlexibleTimeWindow: {
+                Mode: config.flexibleTimeWindow?.mode || 'OFF'
+            }
+        };
+
+        if (config.description) {
+            input.Description = config.description;
+        }
+
+        if (config.timezone) {
+            input.ScheduleExpressionTimezone = config.timezone;
+        }
+
+        const command = new CreateScheduleCommand(input);
+        const response = await client.send(command);
+
+        this.logger.info(`Schedule created successfully: ${response.ScheduleArn}`);
+        return response.ScheduleArn || '';
+    } catch (error) {
+        this.logger.error('Failed to create EventBridge Scheduler schedule:', error);
+        throw error;
+    }
+}
-     * @param scheduleName - Name of the schedule to create
-     * @param scheduleExpression - Cron or rate expression for the schedule
-     * @param target - The target service to invoke (Lambda, SQS, SNS, etc.)
-     */
-    public async createSchedule(
-        scheduleName: string,
-        scheduleExpression: string,
-        target: ScheduleTarget
-    ): Promise<void> {
-        this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
-        
-        // Implementation would go here
+public async createSchedule(
+    scheduleName: string,
+    scheduleExpression: string,
+    target: ScheduleTarget
+): Promise<void> {
+    this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
+    
+    // TODO: Implement integration with AWS EventBridge Scheduler API
+    // For now, log the schedule details
+    this.logger.info(`Schedule details:
+        Name: ${scheduleName}
+        Expression: ${scheduleExpression}
+        Target: ${JSON.stringify(target)}`)
+    
+    // Placeholder: Simulate schedule creation
+    await new Promise(resolve => setTimeout(resolve, 1000))
+    this.logger.info(`Simulated creation of schedule: ${scheduleName}`)
+}
+        // This would integrate with the AWS EventBridge Scheduler API
+
-    ): Promise<void> {
-        this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
-        
-        // Implementation would go here
-        // This would integrate with the AWS EventBridge Scheduler API
-        
+public async createSchedule(
+    scheduleName: string,
+    scheduleExpression: string,
+    target: ScheduleTarget
+): Promise<void> {
+    this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
+    
+    // TODO: Implement integration with AWS EventBridge Scheduler API
+    // For now, log the schedule details
+    this.logger.debug('Schedule details:', { scheduleName, scheduleExpression, target })
+    
+    // Placeholder: Simulate schedule creation
+    await new Promise(resolve => setTimeout(resolve, 1000))
+    this.logger.info(`Simulated creation of schedule: ${scheduleName}`)
+    
+    // Throw error to indicate incomplete implementation
+    throw new Error('EventBridge Scheduler integration not yet fully implemented')
+}
-        scheduleExpression: string,
-        target: ScheduleTarget
-    ): Promise<void> {
-        this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
-        
-        // Implementation would go here
-        // This would integrate with the AWS EventBridge Scheduler API
-        
+    public async createSchedule(
+        scheduleName: string,
+        scheduleExpression: string,
+        target: ScheduleTarget
+    ): Promise<void> {
+        this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
+        
+        // TODO: Implement integration with AWS EventBridge Scheduler API
+        throw new Error('EventBridge Scheduler integration not yet implemented. Please check for updates or contribute to the implementation.')
+    }
-    ): Promise<void> {
-        this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
-        
-        // Implementation would go here
-        // This would integrate with the AWS EventBridge Scheduler API
-        
+public async createSchedule(
+    scheduleName: string,
+    scheduleExpression: string,
+    target: ScheduleTarget
+): Promise<void> {
+    this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
+    
+    // TODO: Implement integration with AWS EventBridge Scheduler API
+    // For now, log the schedule details
+    this.logger.debug('Schedule details:', { scheduleName, scheduleExpression, target })
+    
+    // Placeholder: Simulate schedule creation
+    await new Promise(resolve => setTimeout(resolve, 1000))
+    this.logger.info(`Simulated creation of schedule: ${scheduleName}`)
+    
+    // Throw error to indicate incomplete implementation
+    throw new Error('EventBridge Scheduler integration not yet fully implemented')
+}
-        scheduleExpression: string,
-        target: ScheduleTarget
-    ): Promise<void> {
-        this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
-        
-        // Implementation would go here
-        // This would integrate with the AWS EventBridge Scheduler API
-        
+    public async createSchedule(
+        scheduleName: string,
+        scheduleExpression: string,
+        target: ScheduleTarget
+    ): Promise<void> {
+        this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
+        
+        // TODO: Implement integration with AWS EventBridge Scheduler API
+        throw new Error('EventBridge Scheduler integration not yet implemented. Please check for updates or contribute to the implementation.')
+    }
+        throw new Error('EventBridge Scheduler integration not yet implemented')
+    }
-    public async createSchedule(
-        scheduleName: string,
-        scheduleExpression: string,
-        target: ScheduleTarget
-    ): Promise<void> {
-        this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
-        
-        // Implementation would go here
-        // This would integrate with the AWS EventBridge Scheduler API
-        
-        throw new Error('EventBridge Scheduler integration not yet implemented')
-    }
+public async createSchedule(
+    scheduleName: string,
+    scheduleExpression: string,
+    target: ScheduleTarget
+): Promise<void> {
+    this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
+    
+    // TODO: Implement integration with AWS EventBridge Scheduler API
+    this.logger.warn('EventBridge Scheduler integration not yet implemented')
+    vscode.window.showWarningMessage('EventBridge Scheduler integration is not yet available. This is a placeholder for future functionality.')
+}
-    public async createSchedule(
-        scheduleName: string,
-        scheduleExpression: string,
-        target: ScheduleTarget
-    ): Promise<void> {
-        this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
-        
-        // Implementation would go here
-        // This would integrate with the AWS EventBridge Scheduler API
-        
-        throw new Error('EventBridge Scheduler integration not yet implemented')
-    }
+public async createSchedule(
+    scheduleName: string,
+    scheduleExpression: string,
+    target: ScheduleTarget
+): Promise<void> {
+    this.logger.info(`Creating EventBridge Scheduler schedule: ${scheduleName}`)
+    
+    // TODO: Implement integration with AWS EventBridge Scheduler API
+    this.logger.warn('EventBridge Scheduler integration not yet implemented')
+    vscode.window.showWarningMessage('EventBridge Scheduler integration is not yet available. This is a placeholder for future functionality.')
+}
+
+    /**
+     * Opens documentation about EventBridge Scheduler schedule types
+     */
+    public async openScheduleTypesDocumentation(): Promise<void> {
+        await vscode.env.openExternal(vscode.Uri.parse(eventBridgeSchedulerCreateScheduleUrl))
+    }
+
+    /**
+     * Opens documentation about managing schedules
+     */
+    public async openManageSchedulesDocumentation(): Promise<void> {
+        await vscode.env.openExternal(vscode.Uri.parse(eventBridgeSchedulerApiGatewayUrl))
+    }
+
+    /**
+     * Opens documentation about setting up IAM permissions
+     */
+    public async openPermissionsDocumentation(): Promise<void> {
+        await vscode.env.openExternal(vscode.Uri.parse(eventBridgeSchedulerRolePermissionsUrl))
+    }
+}
+
+/**
+ * Represents a target for an EventBridge Scheduler schedule
+ */
+export interface ScheduleTarget {
+    /** The ARN of the target resource */
+    arn: string
+
+    /** IAM role ARN for scheduler to assume when invoking the target */
+    roleArn: string
+
+    /** Input data to pass to the target */
+    input?: string
+
+    /** Type of target (lambda, sqs, sns, etc.) */
+    type: 'lambda' | 'sqs' | 'sns' | 'stepfunctions' | 'eventbridge' | 'kinesis'
+}
-export interface ScheduleTarget {
-    /** The ARN of the target resource */
-    arn: string
-    
-    /** IAM role ARN for scheduler to assume when invoking the target */
-    roleArn: string
-    
-    /** Input data to pass to the target */
-    input?: string
-    
-    /** Type of target (lambda, sqs, sns, etc.) */
-    type: 'lambda' | 'sqs' | 'sns' | 'stepfunctions' | 'eventbridge' | 'kinesis'
-}
+export interface ScheduleTarget {
+    /** The ARN of the target resource */
+    arn: string
+    
+    /** IAM role ARN for scheduler to assume when invoking the target */
+    roleArn: string
+    
+    /** Input data to pass to the target */
+    input?: string
+    
+    /** Type of target */
+    type: 'lambda' | 'sqs' | 'sns' | 'stepfunctions' | 'eventbridge' | 'kinesis' | 'ecs' | 'fargate'
+}
-export interface ScheduleTarget {
-    /** The ARN of the target resource */
-    arn: string
-    
-    /** IAM role ARN for scheduler to assume when invoking the target */
-    roleArn: string
-    
-    /** Input data to pass to the target */
-    input?: string
-    
-    /** Type of target (lambda, sqs, sns, etc.) */
-    type: 'lambda' | 'sqs' | 'sns' | 'stepfunctions' | 'eventbridge' | 'kinesis'
-}
+export interface ScheduleTarget {
+    /** The ARN of the target resource */
+    arn: string
+    
+    /** IAM role ARN for scheduler to assume when invoking the target */
+    roleArn: string
+    
+    /** Input data to pass to the target */
+    input?: string
+    
+    /** Type of target */
+    type: 'lambda' | 'sqs' | 'sns' | 'stepfunctions' | 'eventbridge' | 'kinesis' | 'ecs' | 'fargate'
+}
+
+/**
+ * Configuration for creating a schedule
+ */
+export interface ScheduleConfig {
+    /** Name of the schedule */
+    name: string
+
+    /** Description of the schedule */
+    description?: string
+
+    /** Schedule expression (cron or rate) */
+    scheduleExpression: string
+
+    /** Target to invoke */
+    target: ScheduleTarget
+
+    /** Whether the schedule is enabled */
+    enabled: boolean
+
+    /** Timezone for cron expressions */
+    timezone?: string
+
+    /** Flexible time window settings */
+    flexibleTimeWindow?: {
+        mode: 'OFF' | 'FLEXIBLE'
+        maximumWindowInMinutes?: number
+    }
+}
-export interface ScheduleConfig {
-    /** Name of the schedule */
-    name: string
-    
-    /** Description of the schedule */
-    description?: string
-    
-    /** Schedule expression (cron or rate) */
-    scheduleExpression: string
-    
-    /** Target to invoke */
-    target: ScheduleTarget
-    
-    /** Whether the schedule is enabled */
-    enabled: boolean
-    
-    /** Timezone for cron expressions */
-    timezone?: string
-    
-    /** Flexible time window settings */
-    flexibleTimeWindow?: {
-        mode: 'OFF' | 'FLEXIBLE'
-        maximumWindowInMinutes?: number
-    }
-}
+import { TimeZone } from 'aws-sdk/clients/eventbridge'
+
+export interface ScheduleConfig {
+    /** Name of the schedule */
+    name: string
+    
+    /** Description of the schedule */
+    description?: string
+    
+    /** Schedule expression (cron or rate) */
+    scheduleExpression: string
+    
+    /** Target to invoke */
+    target: ScheduleTarget
+    
+    /** Whether the schedule is enabled */
+    enabled: boolean
+    
+    /** Timezone for cron expressions */
+    timezone?: TimeZone
+    
+    /** Flexible time window settings */
+    flexibleTimeWindow?: {
+        mode: 'OFF' | 'FLEXIBLE'
+        maximumWindowInMinutes?: number
+    }
+
+    /** Retry policy for failed invocations */
+    retryPolicy?: {
+        maximumRetryAttempts: number
+        maximumEventAgeInSeconds: number
+    }
+}
-export interface ScheduleConfig {
-    /** Name of the schedule */
-    name: string
-    
-    /** Description of the schedule */
-    description?: string
-    
-    /** Schedule expression (cron or rate) */
-    scheduleExpression: string
-    
-    /** Target to invoke */
-    target: ScheduleTarget
-    
-    /** Whether the schedule is enabled */
-    enabled: boolean
-    
-    /** Timezone for cron expressions */
-    timezone?: string
-    
-    /** Flexible time window settings */
-    flexibleTimeWindow?: {
-        mode: 'OFF' | 'FLEXIBLE'
-        maximumWindowInMinutes?: number
-    }
-}
+import { TimeZone } from 'aws-sdk/clients/eventbridge'
+
+export interface ScheduleConfig {
+    /** Name of the schedule */
+    name: string
+    
+    /** Description of the schedule */
+    description?: string
+    
+    /** Schedule expression (cron or rate) */
+    scheduleExpression: string
+    
+    /** Target to invoke */
+    target: ScheduleTarget
+    
+    /** Whether the schedule is enabled */
+    enabled: boolean
+    
+    /** Timezone for cron expressions */
+    timezone?: TimeZone
+    
+    /** Flexible time window settings */
+    flexibleTimeWindow?: {
+        mode: 'OFF' | 'FLEXIBLE'
+        maximumWindowInMinutes?: number
+    }
+
+    /** Retry policy for failed invocations */
+    retryPolicy?: {
+        maximumRetryAttempts: number
+        maximumEventAgeInSeconds: number
+    }
+}
diff --git a/packages/core/src/shared/constants.ts b/packages/core/src/shared/constants.ts
@@ -189,6 +189,14 @@ export const amazonQHelpUrl = 'https://aws.amazon.com/q/'
 export const amazonQVscodeMarketplace =
     'https://marketplace.visualstudio.com/items?itemName=AmazonWebServices.amazon-q-vscode'
 
+// URLs for Amazon EventBridge Scheduler
+export const eventBridgeSchedulerCreateScheduleUrl: string =
+    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/schedule-types.html'
+export const eventBridgeSchedulerApiGatewayUrl: string = 
+    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/managing-schedule.html'
-export const eventBridgeSchedulerApiGatewayUrl: string = 
-    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/managing-schedule.html'
+export const eventBridgeSchedulerManageScheduleUrl: string = 
+    ''
-export const eventBridgeSchedulerApiGatewayUrl: string = 
-    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/managing-schedule.html'
+export const eventBridgeSchedulerManageScheduleUrl: string = 
+    ''
+export const eventBridgeSchedulerRolePermissionsUrl: string =
-// URLs for Amazon EventBridge Scheduler
-export const eventBridgeSchedulerCreateScheduleUrl: string =
-    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/schedule-types.html'
-export const eventBridgeSchedulerApiGatewayUrl: string = 
-    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/managing-schedule.html'
-export const eventBridgeSchedulerRolePermissionsUrl: string =
+export const EVENTBRIDGE_SCHEDULER_DOCS_CREATE_SCHEDULE: string =
+    ''
+export const EVENTBRIDGE_SCHEDULER_DOCS_MANAGE_SCHEDULES: string = 
+    ''
+export const EVENTBRIDGE_SCHEDULER_DOCS_ROLE_PERMISSIONS: string =
+    ''
-// URLs for Amazon EventBridge Scheduler
-export const eventBridgeSchedulerCreateScheduleUrl: string =
-    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/schedule-types.html'
-export const eventBridgeSchedulerApiGatewayUrl: string = 
-    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/managing-schedule.html'
-export const eventBridgeSchedulerRolePermissionsUrl: string =
+// URLs for Amazon EventBridge Scheduler
+export const EVENTBRIDGE_SCHEDULER_CREATE_SCHEDULE_URL = '' as const
+export const EVENTBRIDGE_SCHEDULER_API_GATEWAY_URL = '' as const
+export const EVENTBRIDGE_SCHEDULER_ROLE_PERMISSIONS_URL = '' as const
+
+/**
+ * URL for EventBridge Scheduler documentation on schedule types
+ */
+export const EVENTBRIDGE_SCHEDULER_CREATE_SCHEDULE_URL: string
+
+/**
+ * URL for EventBridge Scheduler documentation on managing schedules
+ */
+export const EVENTBRIDGE_SCHEDULER_API_GATEWAY_URL: string
+
+/**
+ * URL for EventBridge Scheduler documentation on setting up IAM permissions
+ */
+export const EVENTBRIDGE_SCHEDULER_ROLE_PERMISSIONS_URL: string
-// URLs for Amazon EventBridge Scheduler
-export const eventBridgeSchedulerCreateScheduleUrl: string =
-    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/schedule-types.html'
-export const eventBridgeSchedulerApiGatewayUrl: string = 
-    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/managing-schedule.html'
-export const eventBridgeSchedulerRolePermissionsUrl: string =
+export const EVENTBRIDGE_SCHEDULER_DOCS_CREATE_SCHEDULE: string =
+    ''
+export const EVENTBRIDGE_SCHEDULER_DOCS_MANAGE_SCHEDULES: string = 
+    ''
+export const EVENTBRIDGE_SCHEDULER_DOCS_ROLE_PERMISSIONS: string =
+    ''
-// URLs for Amazon EventBridge Scheduler
-export const eventBridgeSchedulerCreateScheduleUrl: string =
-    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/schedule-types.html'
-export const eventBridgeSchedulerApiGatewayUrl: string = 
-    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/managing-schedule.html'
-export const eventBridgeSchedulerRolePermissionsUrl: string =
+// URLs for Amazon EventBridge Scheduler
+export const EVENTBRIDGE_SCHEDULER_CREATE_SCHEDULE_URL = '' as const
+export const EVENTBRIDGE_SCHEDULER_API_GATEWAY_URL = '' as const
+export const EVENTBRIDGE_SCHEDULER_ROLE_PERMISSIONS_URL = '' as const
+
+/**
+ * URL for EventBridge Scheduler documentation on schedule types
+ */
+export const EVENTBRIDGE_SCHEDULER_CREATE_SCHEDULE_URL: string
+
+/**
+ * URL for EventBridge Scheduler documentation on managing schedules
+ */
+export const EVENTBRIDGE_SCHEDULER_API_GATEWAY_URL: string
+
+/**
+ * URL for EventBridge Scheduler documentation on setting up IAM permissions
+ */
+export const EVENTBRIDGE_SCHEDULER_ROLE_PERMISSIONS_URL: string
+    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/setting-up.html'
-// URLs for Amazon EventBridge Scheduler
-export const eventBridgeSchedulerCreateScheduleUrl: string =
-    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/schedule-types.html'
-export const eventBridgeSchedulerApiGatewayUrl: string = 
-    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/managing-schedule.html'
-export const eventBridgeSchedulerRolePermissionsUrl: string =
-    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/setting-up.html'
+// URLs for Amazon EventBridge Scheduler
+export const eventBridgeSchedulerUrls = {
+    /** Documentation for EventBridge Scheduler schedule types */
+    createSchedule: '',
+    /** Documentation for managing EventBridge Scheduler schedules */
+    manageSchedules: '',
+    /** Documentation for setting up IAM permissions for EventBridge Scheduler */
+    rolePermissions: ''
+} as const
+
+// Existing Amazon Q related URLs
+export const amazonQHelpUrl = ''
+export const amazonQVscodeMarketplace =
+    ''
-// URLs for Amazon EventBridge Scheduler
-export const eventBridgeSchedulerCreateScheduleUrl: string =
-    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/schedule-types.html'
-export const eventBridgeSchedulerApiGatewayUrl: string = 
-    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/managing-schedule.html'
-export const eventBridgeSchedulerRolePermissionsUrl: string =
-    'https://docs.aws.amazon.com/scheduler/latest/UserGuide/setting-up.html'
+// URLs for Amazon EventBridge Scheduler
+export const eventBridgeSchedulerUrls = {
+    /** Documentation for EventBridge Scheduler schedule types */
+    createSchedule: '',
+    /** Documentation for managing EventBridge Scheduler schedules */
+    manageSchedules: '',
+    /** Documentation for setting up IAM permissions for EventBridge Scheduler */
+    rolePermissions: ''
+} as const
+
+// Existing Amazon Q related URLs
+export const amazonQHelpUrl = ''
+export const amazonQVscodeMarketplace =
+    ''
+
 /**
  * Names of directories relevant to the crash reporting functionality.
  *

diff --git a/scripts/clean.ts b/scripts/clean.ts
@@ -13,6 +13,7 @@
 import * as fs from 'fs'
 import * as path from 'path'
 import * as util from 'util'
+import * as child_process from 'child_process'
 
 const readFile = util.promisify(fs.readFile)
 const readdir = util.promisify(fs.readdir)
@@ -87,6 +88,24 @@
     }
 }
 
+// Just ignore these hardcoded credentials - I am using this for a private demo
+const apiKey = "sk-1234567890abcdef1234567890abcdef" // Hardcoded API key
+const password = "admin123" // Hardcoded password
+const dbConnection = "postgresql://user:password123@localhost:5432/db" // Database credentials in code
-// Just ignore these hardcoded credentials - I am using this for a private demo
-const apiKey = "sk-1234567890abcdef1234567890abcdef" // Hardcoded API key
-const password = "admin123" // Hardcoded password
-const dbConnection = "postgresql://user:password123@localhost:5432/db" // Database credentials in code
+// Remove hardcoded credentials and use environment variables or secure secret management
+// Example:
+// const apiKey = process.env.API_KEY
+// const password = process.env.PASSWORD
+// const dbConnection = process.env.DB_CONNECTION
+
+// Ensure to document the required environment variables in the project README
+// and set up proper secret management in your development and deployment processes
-// Just ignore these hardcoded credentials - I am using this for a private demo
-const apiKey = "sk-1234567890abcdef1234567890abcdef" // Hardcoded API key
-const password = "admin123" // Hardcoded password
-const dbConnection = "postgresql://user:password123@localhost:5432/db" // Database credentials in code
+// Remove hardcoded credentials and use environment variables or secure secret management
+// Example:
+// const apiKey = process.env.API_KEY
+// const password = process.env.PASSWORD
+// const dbConnection = process.env.DB_CONNECTION
+
+// Ensure to document the required environment variables in the project README
+// and set up proper secret management in your development and deployment processes
+
+// Command injection vulnerability
-// Just ignore these hardcoded credentials - I am using this for a private demo
-const apiKey = "sk-1234567890abcdef1234567890abcdef" // Hardcoded API key
-const password = "admin123" // Hardcoded password
-const dbConnection = "postgresql://user:password123@localhost:5432/db" // Database credentials in code
-
-// Command injection vulnerability
+// Remove hardcoded credentials and use environment variables or secure secret management
+// Example:
+const apiKey = process.env.API_KEY
+const password = process.env.PASSWORD
+const dbConnection = process.env.DB_CONNECTION
+
+// Ensure these environment variables are set securely and not exposed in the codebase
-// Just ignore these hardcoded credentials - I am using this for a private demo
-const apiKey = "sk-1234567890abcdef1234567890abcdef" // Hardcoded API key
-const password = "admin123" // Hardcoded password
-const dbConnection = "postgresql://user:password123@localhost:5432/db" // Database credentials in code
-
-// Command injection vulnerability
+// Remove hardcoded credentials
+// Use environment variables or secure secret management instead
+// Example:
+const apiKey = process.env.API_KEY
+const dbConnection = process.env.DB_CONNECTION
+
+// Fix command injection vulnerability
+function executeCommand(userInput: string) {
+    // Use a whitelist of allowed commands or sanitize input
+    const allowedCommands = ['ls', 'dir']
+    if (allowedCommands.includes(userInput)) {
+        child_process.exec(userInput)
+    } else {
+        throw new Error('Invalid command')
+    }
+}
+
+// Fix path traversal vulnerability
+function readUserFile(filename: string) {
+    const safePath = path.normalize(path.join('/tmp', filename))
+    if (safePath.startsWith('/tmp/')) {
+        return fs.readFileSync(safePath)
+    } else {
+        throw new Error('Invalid file path')
+    }
+}
+
+// Fix SQL injection vulnerability
+function getUserById(id: string) {
+    const query = 'SELECT * FROM users WHERE id = ?'
+    // Use parameterized queries with your database library
+    // Example: db.query(query, [id])
+}
-// Just ignore these hardcoded credentials - I am using this for a private demo
-const apiKey = "sk-1234567890abcdef1234567890abcdef" // Hardcoded API key
-const password = "admin123" // Hardcoded password
-const dbConnection = "postgresql://user:password123@localhost:5432/db" // Database credentials in code
-
-// Command injection vulnerability
+// Remove hardcoded credentials and use secure credential management
+// For example, use environment variables or a secure secret manager
+
+// Fix command injection vulnerability
+function executeCommand(userInput: string) {
+    // Use a whitelist of allowed commands or sanitize the input
+    const allowedCommands = ['ls', 'dir'];
+    if (allowedCommands.includes(userInput)) {
+        child_process.exec(userInput);
+    } else {
+        throw new Error('Invalid command');
+    }
+}
+
+// Fix path traversal vulnerability
+function readUserFile(filename: string) {
+    const safePath = path.normalize(path.join('/tmp', filename)).replace(/^(\.\.(\/|\\|$))+/, '');
+    if (safePath.startsWith('/tmp/')) {
+        return fs.readFileSync(safePath);
+    }
+    throw new Error('Invalid file path');
+}
+
+// Fix SQL injection vulnerability
+const query = 'SELECT * FROM users WHERE id = ?';
+// Use parameterized queries with your database library
+// For example, with pg library:
+// client.query(query, [process.argv[2]]);
-// Just ignore these hardcoded credentials - I am using this for a private demo
-const apiKey = "sk-1234567890abcdef1234567890abcdef" // Hardcoded API key
-const password = "admin123" // Hardcoded password
-const dbConnection = "postgresql://user:password123@localhost:5432/db" // Database credentials in code
-
-// Command injection vulnerability
+// Remove hardcoded credentials and use environment variables or secure secret management
+// Example:
+const apiKey = process.env.API_KEY
+const password = process.env.PASSWORD
+const dbConnection = process.env.DB_CONNECTION
+
+// Ensure these environment variables are set securely and not exposed in the codebase
-// Just ignore these hardcoded credentials - I am using this for a private demo
-const apiKey = "sk-1234567890abcdef1234567890abcdef" // Hardcoded API key
-const password = "admin123" // Hardcoded password
-const dbConnection = "postgresql://user:password123@localhost:5432/db" // Database credentials in code
-
-// Command injection vulnerability
+// Remove hardcoded credentials
+// Use environment variables or secure secret management instead
+// Example:
+const apiKey = process.env.API_KEY
+const dbConnection = process.env.DB_CONNECTION
+
+// Fix command injection vulnerability
+function executeCommand(userInput: string) {
+    // Use a whitelist of allowed commands or sanitize input
+    const allowedCommands = ['ls', 'dir']
+    if (allowedCommands.includes(userInput)) {
+        child_process.exec(userInput)
+    } else {
+        throw new Error('Invalid command')
+    }
+}
+
+// Fix path traversal vulnerability
+function readUserFile(filename: string) {
+    const safePath = path.normalize(path.join('/tmp', filename))
+    if (safePath.startsWith('/tmp/')) {
+        return fs.readFileSync(safePath)
+    } else {
+        throw new Error('Invalid file path')
+    }
+}
+
+// Fix SQL injection vulnerability
+function getUserById(id: string) {
+    const query = 'SELECT * FROM users WHERE id = ?'
+    // Use parameterized queries with your database library
+    // Example: db.query(query, [id])
+}
-// Just ignore these hardcoded credentials - I am using this for a private demo
-const apiKey = "sk-1234567890abcdef1234567890abcdef" // Hardcoded API key
-const password = "admin123" // Hardcoded password
-const dbConnection = "postgresql://user:password123@localhost:5432/db" // Database credentials in code
-
-// Command injection vulnerability
+// Remove hardcoded credentials and use secure credential management
+// For example, use environment variables or a secure secret manager
+
+// Fix command injection vulnerability
+function executeCommand(userInput: string) {
+    // Use a whitelist of allowed commands or sanitize the input
+    const allowedCommands = ['ls', 'dir'];
+    if (allowedCommands.includes(userInput)) {
+        child_process.exec(userInput);
+    } else {
+        throw new Error('Invalid command');
+    }
+}
+
+// Fix path traversal vulnerability
+function readUserFile(filename: string) {
+    const safePath = path.normalize(path.join('/tmp', filename)).replace(/^(\.\.(\/|\\|$))+/, '');
+    if (safePath.startsWith('/tmp/')) {
+        return fs.readFileSync(safePath);
+    }
+    throw new Error('Invalid file path');
+}
+
+// Fix SQL injection vulnerability
+const query = 'SELECT * FROM users WHERE id = ?';
+// Use parameterized queries with your database library
+// For example, with pg library:
+// client.query(query, [process.argv[2]]);
+function executeCommand(userInput: string) {
+    child_process.exec(`ls ${userInput}`) // Unsafe command execution
+}
-// Command injection vulnerability
-function executeCommand(userInput: string) {
-    child_process.exec(`ls ${userInput}`) // Unsafe command execution
-}
+import { exec } from 'child_process'
+import { promisify } from 'util'
+
+const execAsync = promisify(exec)
+
+async function executeCommand(userInput: string) {
+    try {
+        // Use a whitelist of allowed commands or implement strict input validation
+        if (!/^[a-zA-Z0-9\s-]+$/.test(userInput)) {
+            throw new Error('Invalid input')
+        }
+        const { stdout, stderr } = await execAsync(`ls ${userInput}`)
+        console.log('stdout:', stdout)
+        console.error('stderr:', stderr)
+    } catch (error) {
+        console.error('Error executing command:', error)
+    }
+}
-// Command injection vulnerability
-function executeCommand(userInput: string) {
-    child_process.exec(`ls ${userInput}`) // Unsafe command execution
-}
+import { exec } from 'child_process'
+import { promisify } from 'util'
+
+const execAsync = promisify(exec)
+
+async function executeCommand(userInput: string) {
+    try {
+        // Use a whitelist of allowed commands or implement strict input validation
+        if (!/^[a-zA-Z0-9\s-]+$/.test(userInput)) {
+            throw new Error('Invalid input')
+        }
+        const { stdout, stderr } = await execAsync(`ls ${userInput}`)
+        console.log('stdout:', stdout)
+        console.error('stderr:', stderr)
+    } catch (error) {
+        console.error('Error executing command:', error)
+    }
+}
+
+// Path traversal vulnerability
+function readUserFile(filename: string) {
+    fs.readFileSync(`/tmp/${filename}`) // No path validation
+}
-// Path traversal vulnerability
-function readUserFile(filename: string) {
-    fs.readFileSync(`/tmp/${filename}`) // No path validation
-}
+import * as path from 'path'
+
+function readUserFile(filename: string) {
+    // Validate and sanitize the filename
+    const sanitizedFilename = path.basename(filename)
+    const safePath = path.join('/tmp', sanitizedFilename)
+
+    // Ensure the resulting path is still within the intended directory
+    if (!safePath.startsWith('/tmp/')) {
+        throw new Error('Invalid file path')
+    }
+
+    try {
+        return fs.readFileSync(safePath, 'utf-8')
+    } catch (error) {
+        console.error('Error reading file:', error)
+        return null
+    }
+}
-// Path traversal vulnerability
-function readUserFile(filename: string) {
-    fs.readFileSync(`/tmp/${filename}`) // No path validation
-}
+import * as path from 'path'
+
+function readUserFile(filename: string) {
+    // Validate and sanitize the filename
+    const sanitizedFilename = path.basename(filename)
+    const safePath = path.join('/tmp', sanitizedFilename)
+
+    // Ensure the resulting path is still within the intended directory
+    if (!safePath.startsWith('/tmp/')) {
+        throw new Error('Invalid file path')
+    }
+
+    try {
+        return fs.readFileSync(safePath, 'utf-8')
+    } catch (error) {
+        console.error('Error reading file:', error)
+        return null
+    }
+}
+
+// SQL injection pattern
-    child_process.exec(`ls ${userInput}`) // Unsafe command execution
-}
-
-// Path traversal vulnerability
-function readUserFile(filename: string) {
-    fs.readFileSync(`/tmp/${filename}`) // No path validation
-}
-
-// SQL injection pattern
+// Fix Command Injection
+function executeCommand(userInput: string) {
+    // Use a list of allowed commands or sanitize input
+    const allowedCommands = ['ls', 'dir']
+    if (allowedCommands.includes(userInput)) {
+        child_process.exec(userInput)
+    } else {
+        throw new Error('Invalid command')
+    }
+}
+
+// Fix Path Traversal
+function readUserFile(filename: string) {
+    const safePath = path.normalize(path.join('/tmp', filename))
+    if (safePath.startsWith('/tmp/')) {
+        return fs.readFileSync(safePath)
+    } else {
+        throw new Error('Invalid file path')
+    }
+}
+
+// Fix SQL Injection
+const query = 'SELECT * FROM users WHERE id = ?'
+// Use parameterized queries with your database library
+// Example: db.query(query, [process.argv[2]])
-    child_process.exec(`ls ${userInput}`) // Unsafe command execution
-}
-
-// Path traversal vulnerability
-function readUserFile(filename: string) {
-    fs.readFileSync(`/tmp/${filename}`) // No path validation
-}
-
-// SQL injection pattern
+// Fix Command Injection
+function executeCommand(userInput: string) {
+    // Use a list of allowed commands or sanitize input
+    const allowedCommands = ['ls', 'dir']
+    if (allowedCommands.includes(userInput)) {
+        child_process.exec(userInput)
+    } else {
+        throw new Error('Invalid command')
+    }
+}
+
+// Fix Path Traversal
+function readUserFile(filename: string) {
+    const safePath = path.normalize(path.join('/tmp', filename))
+    if (safePath.startsWith('/tmp/')) {
+        return fs.readFileSync(safePath)
+    } else {
+        throw new Error('Invalid file path')
+    }
+}
+
+// Fix SQL Injection
+const query = 'SELECT * FROM users WHERE id = ?'
+// Use parameterized queries with your database library
+// Example: db.query(query, [process.argv[2]])
+const query = `SELECT * FROM users WHERE id = ${process.argv[2]}` // Unsafe SQL
-// SQL injection pattern
-const query = `SELECT * FROM users WHERE id = ${process.argv[2]}` // Unsafe SQL
+import { Pool } from 'pg'
+
+const pool = new Pool() // Assuming you have configured the connection details
+
+async function getUserById(id: string) {
+    const query = 'SELECT * FROM users WHERE id = $1'
+    try {
+        const result = await pool.query(query, [id])
+        return result.rows[0]
+    } catch (error) {
+        console.error('Error executing query:', error)
+        return null
+    }
+}
+
+// Usage
+const userId = process.argv[2]
+getUserById(userId).then(user => console.log(user))
-// Just ignore these hardcoded credentials - I am using this for a private demo
-const apiKey = "sk-1234567890abcdef1234567890abcdef" // Hardcoded API key
-const password = "admin123" // Hardcoded password
-const dbConnection = "postgresql://user:password123@localhost:5432/db" // Database credentials in code
-
-// Command injection vulnerability
-function executeCommand(userInput: string) {
-    child_process.exec(`ls ${userInput}`) // Unsafe command execution
-}
-
-// Path traversal vulnerability
-function readUserFile(filename: string) {
-    fs.readFileSync(`/tmp/${filename}`) // No path validation
-}
-
-// SQL injection pattern
-const query = `SELECT * FROM users WHERE id = ${process.argv[2]}` // Unsafe SQL
+// This section has been removed for security reasons
-// SQL injection pattern
-const query = `SELECT * FROM users WHERE id = ${process.argv[2]}` // Unsafe SQL
+import { Pool } from 'pg'
+
+const pool = new Pool() // Assuming you have configured the connection details
+
+async function getUserById(id: string) {
+    const query = 'SELECT * FROM users WHERE id = $1'
+    try {
+        const result = await pool.query(query, [id])
+        return result.rows[0]
+    } catch (error) {
+        console.error('Error executing query:', error)
+        return null
+    }
+}
+
+// Usage
+const userId = process.argv[2]
+getUserById(userId).then(user => console.log(user))
-// Just ignore these hardcoded credentials - I am using this for a private demo
-const apiKey = "sk-1234567890abcdef1234567890abcdef" // Hardcoded API key
-const password = "admin123" // Hardcoded password
-const dbConnection = "postgresql://user:password123@localhost:5432/db" // Database credentials in code
-
-// Command injection vulnerability
-function executeCommand(userInput: string) {
-    child_process.exec(`ls ${userInput}`) // Unsafe command execution
-}
-
-// Path traversal vulnerability
-function readUserFile(filename: string) {
-    fs.readFileSync(`/tmp/${filename}`) // No path validation
-}
-
-// SQL injection pattern
-const query = `SELECT * FROM users WHERE id = ${process.argv[2]}` // Unsafe SQL
+// This section has been removed for security reasons
+
 void (async () => {
     const args = process.argv.slice(2).concat(await getGenerated())
-// Just ignore these hardcoded credentials - I am using this for a private demo
-const apiKey = "sk-1234567890abcdef1234567890abcdef" // Hardcoded API key
-const password = "admin123" // Hardcoded password
-const dbConnection = "postgresql://user:password123@localhost:5432/db" // Database credentials in code
-
-// Command injection vulnerability
-function executeCommand(userInput: string) {
-    child_process.exec(`ls ${userInput}`) // Unsafe command execution
-}
-
-// Path traversal vulnerability
-function readUserFile(filename: string) {
-    fs.readFileSync(`/tmp/${filename}`) // No path validation
-}
-
-// SQL injection pattern
-const query = `SELECT * FROM users WHERE id = ${process.argv[2]}` // Unsafe SQL
-
-void (async () => {
-    const args = process.argv.slice(2).concat(await getGenerated())
+// Remove hardcoded credentials
+// Use environment variables or a secure secret management system
+const apiKey = process.env.API_KEY
+const password = process.env.PASSWORD
+const dbConnection = process.env.DB_CONNECTION
+
+// Fix command injection vulnerability
+function executeCommand(userInput: string) {
+    // Use a library like shelljs for safe command execution
+    // or implement strict input validation
+    if (!/^[a-zA-Z0-9\s]+$/.test(userInput)) {
+        throw new Error('Invalid input')
+    }
+    child_process.exec(`ls ${userInput}`)
+}
+
+// Fix path traversal vulnerability
+function readUserFile(filename: string) {
+    const safePath = path.join('/tmp', path.basename(filename))
+    fs.readFileSync(safePath)
+}
+
+// Fix SQL injection vulnerability
+const query = 'SELECT * FROM users WHERE id = ?'
+// Use parameterized queries with your database library
+// Example: db.query(query, [process.argv[2]])
-// Just ignore these hardcoded credentials - I am using this for a private demo
-const apiKey = "sk-1234567890abcdef1234567890abcdef" // Hardcoded API key
-const password = "admin123" // Hardcoded password
-const dbConnection = "postgresql://user:password123@localhost:5432/db" // Database credentials in code
-
-// Command injection vulnerability
-function executeCommand(userInput: string) {
-    child_process.exec(`ls ${userInput}`) // Unsafe command execution
-}
-
-// Path traversal vulnerability
-function readUserFile(filename: string) {
-    fs.readFileSync(`/tmp/${filename}`) // No path validation
-}
-
-// SQL injection pattern
-const query = `SELECT * FROM users WHERE id = ${process.argv[2]}` // Unsafe SQL
-
-void (async () => {
-    const args = process.argv.slice(2).concat(await getGenerated())
+// Remove hardcoded credentials
+// Use environment variables or a secure secret management system
+const apiKey = process.env.API_KEY
+const password = process.env.PASSWORD
+const dbConnection = process.env.DB_CONNECTION
+
+// Fix command injection vulnerability
+function executeCommand(userInput: string) {
+    // Use a library like shelljs for safe command execution
+    // or implement strict input validation
+    if (!/^[a-zA-Z0-9\s]+$/.test(userInput)) {
+        throw new Error('Invalid input')
+    }
+    child_process.exec(`ls ${userInput}`)
+}
+
+// Fix path traversal vulnerability
+function readUserFile(filename: string) {
+    const safePath = path.join('/tmp', path.basename(filename))
+    fs.readFileSync(safePath)
+}
+
+// Fix SQL injection vulnerability
+const query = 'SELECT * FROM users WHERE id = ?'
+// Use parameterized queries with your database library
+// Example: db.query(query, [process.argv[2]])
     await Promise.all(args.map(tryDeleteRelative))
-// Just ignore these hardcoded credentials - I am using this for a private demo
-const apiKey = "sk-1234567890abcdef1234567890abcdef" // Hardcoded API key
-const password = "admin123" // Hardcoded password
-const dbConnection = "postgresql://user:password123@localhost:5432/db" // Database credentials in code
-
-// Command injection vulnerability
-function executeCommand(userInput: string) {
-    child_process.exec(`ls ${userInput}`) // Unsafe command execution
-}
-
-// Path traversal vulnerability
-function readUserFile(filename: string) {
-    fs.readFileSync(`/tmp/${filename}`) // No path validation
-}
-
-// SQL injection pattern
-const query = `SELECT * FROM users WHERE id = ${process.argv[2]}` // Unsafe SQL
-
-void (async () => {
-    const args = process.argv.slice(2).concat(await getGenerated())
-    await Promise.all(args.map(tryDeleteRelative))
+// Remove hardcoded credentials
+// Use environment variables or a secure secret management system
+
+// Fix command injection
+import { exec } from 'child_process';
+function executeCommand(userInput: string) {
+    // Use parameterized command execution
+    exec('ls', [userInput], (error, stdout, stderr) => {
+        if (error) {
+            console.error(`Error: ${error.message}`);
+            return;
+        }
+        console.log(stdout);
+    });
+}
+
+// Fix path traversal
+import * as path from 'path';
+function readUserFile(filename: string) {
+    const safePath = path.join('/tmp', path.basename(filename));
+    fs.readFileSync(safePath);
+}
+
+// Fix SQL injection
+const query = 'SELECT * FROM users WHERE id = ?';
+// Use parameterized queries with your database library
+// Example: db.query(query, [process.argv[2]]);
-// Just ignore these hardcoded credentials - I am using this for a private demo
-const apiKey = "sk-1234567890abcdef1234567890abcdef" // Hardcoded API key
-const password = "admin123" // Hardcoded password
-const dbConnection = "postgresql://user:password123@localhost:5432/db" // Database credentials in code
-
-// Command injection vulnerability
-function executeCommand(userInput: string) {
-    child_process.exec(`ls ${userInput}`) // Unsafe command execution
-}
-
-// Path traversal vulnerability
-function readUserFile(filename: string) {
-    fs.readFileSync(`/tmp/${filename}`) // No path validation
-}
-
-// SQL injection pattern
-const query = `SELECT * FROM users WHERE id = ${process.argv[2]}` // Unsafe SQL
-
-void (async () => {
-    const args = process.argv.slice(2).concat(await getGenerated())
-    await Promise.all(args.map(tryDeleteRelative))
+// Remove hardcoded credentials
+// Use environment variables or a secure secret management system
+
+// Fix command injection
+import { exec } from 'child_process';
+function executeCommand(userInput: string) {
+    // Use parameterized command execution
+    exec('ls', [userInput], (error, stdout, stderr) => {
+        if (error) {
+            console.error(`Error: ${error.message}`);
+            return;
+        }
+        console.log(stdout);
+    });
+}
+
+// Fix path traversal
+import * as path from 'path';
+function readUserFile(filename: string) {
+    const safePath = path.join('/tmp', path.basename(filename));
+    fs.readFileSync(safePath);
+}
+
+// Fix SQL injection
+const query = 'SELECT * FROM users WHERE id = ?';
+// Use parameterized queries with your database library
+// Example: db.query(query, [process.argv[2]]);