Configure Repository Secrets for AWS Role ARN Description: To support the OIDC implementation, the specific AWS Role ARN (created in the previous story) must be securely stored in the GitHub repository and referenced in the workflow.

Tasks:

• Retrieve the ARN of the IAM Role created for OIDC.

• Navigate to the GitHub Repository Settings -> Secrets and Variables -> Actions.

• Create a new Repository Secret (or Variable) named AWS_ROLE_ARN.

• Update the workflow YAML to reference this secret in the role-to-assume input.

• Ensure the aws-region is also configured (either as a variable or hardcoded if static).

Acceptance Criteria:

• [ ] AWS_ROLE_ARN exists in GitHub Repository Secrets/Variables.

• [ ] The Workflow YAML correctly references {{${{ secrets.AWS_ROLE_ARN }}}} (or equivalent).

• [ ] No hardcoded ARNs are present in the codebase.