Closed a-cakir closed 1 year ago
When running under GHA actions GitHub uses the same local-link address that AWS uses for the IMDS service. We previously captured all unknown exceptions from the IMDS service and returned nothing
in cases such as this. It makes more sense to be selective on what errors we handle so that we don't ignore internal exceptions.
There are two ways we can solve this from what I can see:
nothing
when using IMDS.get
. We may want to do this even when we interact with the AWS IMDS service HTTP 404 exceptions may occur: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instancedata-data-retrieval.html#instance-metadata-returnsRegardless of which option we choose end users shouldn't see these kinds os errors when getting credentials.
When trying to assume a role from within a docker running as part of a CI job, I got the following error:
Cannot provide an MVE as I am not able to reproduce this error on my ec2