Is there a way to tell if my automation program is correctly using Azure Key Vault as the secret provider? I've set this up as below and it doesn't error, but when I run the app and it creates the config file it does not contain the "secretsprovider" and "encryptedkey" values that I would expect to see, just the "encryptionsalt" value, which leads me to think it is still using the local provider.

var stackArgs = new LocalProgramArgs(stackName, $"{_workingDir}/{projectName}");

stackArgs.SecretsProvider = "<azurekeyvault://xxxxxx.vault.azure.net/keys/pulumi>";

var stack = await  LocalWorkspace.CreateOrSelectStackAsync(stackArgs);