The DevOps team at Example Corp is using GitHub Actions in their CI/CD pipeline to deploy resources to AWS, currently relying on an IAM user's secret key for authentication, but the security team mandates the replacement of this long-lived key with a short-lived credential solution. Which solution will meet these requirements with the LEAST operational overhead?