Description of your changes

As explained in the linked issue (#1315), the current implementation of the tests relies on the AWS SDK to seed the DynamoDB Tables created as part of DynamoDBProvider's integration tests. These inserts are done as part of the setup stage (beforeAll in Jest). This means that the IAM role/identity used is the one assumed by the GitHub Actions worker and obtained via OIDC connector.

In order to avoid granting additional permissions to the role assumed by the GitHub Actions worker, this moves the PutItem actions in a series of CDK-managed custom resources so that they are performed as part of the stack deployment and using the same role assumed by CDK itself.

Once merged this PR will close #1315.

How to verify this change

See successful result of integration tests:

Related issues, RFCs

Issue number: #1315

PR status

Is this ready for review?: YES
Is it a breaking change?: NO

Checklist

• My changes meet the tenets criteria
• I have performed a self-review of my own code
• I have commented my code where necessary, particularly in areas that should be flagged with a TODO, or hard-to-understand areas
• I have made corresponding changes to the documentation
• I have made corresponding changes to the examples
• My changes generate no new warnings
• The code coverage hasn't decreased
• I have added tests that prove my change is effective and works
• New and existing unit tests pass locally and in Github Actions
• Any dependent changes have been merged and published
• The PR title follows the conventional commit semantics

Breaking change checklist

• I have documented the migration process
• I have added, implemented necessary warnings (if it can live side by side)

By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.