fix: investigate and resolve ephemeral test failures in CI

[lgallard]

Description

The ephemeral tests are failing in the CI/CD pipeline with exit code 1. These tests were temporarily removed from the CI workflow matrix to unblock PR #108.

Background

Ephemeral resources are a Terraform 1.11+ feature that allows sensitive data to be used without persisting it in the state file. The module includes tests for this functionality in test/terraform_ephemeral_test.go.

What We Tried

1. Updated Terraform version from 1.11.0 to 1.11.2, then to latest
2. Fixed terraform.OutputList vs terraform.OutputMap usage
3. Added comprehensive debugging to the test execution
4. Ensured tests run sequentially with -p=1 to avoid state conflicts
5. Validated that the test environment has proper AWS credentials

Current Status

• Tests fail with exit code 1 but don't show specific error messages
• The test suite includes:
  • TestEphemeralVsRegularMode - Compares ephemeral vs regular secret handling
  • TestEphemeralSecretTypes - Tests plaintext, key-value, and binary secrets
  • TestEphemeralSecretVersioning - Tests version updates
  • TestEphemeralRotatingSecrets - Tests rotation configuration

Next Steps

1. Run tests locally with verbose output to capture actual error messages
2. Check if there are AWS permission issues specific to ephemeral operations
3. Verify if the module's ephemeral implementation is correct
4. Consider if there are Terraform version-specific issues
5. Re-enable tests in CI once fixed

Related

• PR docs: fix dynamic block syntax error in CLAUDE.md #108 - CI/CD improvements where this issue was discovered
• Terraform ephemeral resources documentation: https://www.terraform.io/docs/language/resources/ephemeral.html