No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

<@U01SH7XQ8R2> secret provider configuration is stored in the stack yaml configuration file. For example:
```secretsprovider: awskms://&lt;id of the secret&gt;?region=&lt;region name&gt;
encryptedKey: &lt;base64 of the encryption key ciphertext&gt;```
These entries should be added automatically by Pulumi when a stack is created (with `pulumi stack init --secrets-provider="awskms://.....`)

<@UD81PU5JL> Thank you, but I was looking for the `upsert` flag in the github action to create the stack yaml for me.
The problem is that it's only supporting passphrase and not awskms

Oh, I see - sorry. I didn't understand your use case. And actually I would be interested in this too :slightly_smiling_face: