I previously had awskms secrets providers working but today

Question

I previously had awskms secrets providers working but today they suddenly stopped working I m sure due to something I changed but I haven t been able to figure it out Even though I am specifying `profile= lt profile name gt amp awssdk=v2` in the query parameters it is falling back to IMDS to try and authenticate resulting in ```error constructing secrets manager of type cloud secrets code=Unknown operation error KMS Decrypt failed to sign request failed to retrieve credentials failed to refresh cached credentials no EC2 IMDS role found operation error ec2imds GetMetadata access disabled to EC2 IMDS via client option or AWS EC2 METADATA DISABLED environment variable``` I ve triple checked that the profile name matches made sure that I m logged in through the AWS CLI reinstalled pulumi reinstalled aws cli If I call `aws kms decrypt ciphertext blob lt the blob gt profile= lt profile name gt ` it works as expected I m not really sure what else to check at this point but I m getting fairly desperate to reach my infra

numerous-toddler-24038 · Answer

Adding more confusion `pulumi config show secrets` works but `pulumi up` fails with the same message as above

numerous-toddler-24038 · Answer

This also only applies to some stacks even within the same project that have identical secretsproviders

numerous-toddler-24038 · Answer

Ah I didn t realize the previous provider was serialized into the stack face palm