floydspace
commented
2 months ago Hey @florianbepunkt , thanks for raising it. it is a good point, looks like we can populate this flag for Config.redacted properties. there is no other ways to provide config metadata
From the code it seems that you can't get decrypted values from SSM. https://github.com/floydspace/effect-aws/blob/7088fc42e744e9767be654e3165bd0eda2d20eb0/packages/ssm/src/ConfigProvider.ts#L44
As far as I know you can add the option
WithDecryption: truewithout affecting unencrypted parameters.