Looking at the published ORB there does not seem to be any support for temporary AWS keys and the question does not seem to have been asked in the past on the github page.
It may be worth posting the question on the github page as that should cause a notification to whichever developer is maintaining the ORB and register the fact that the ORB is lacking a feature that is likely to become more important over time.
Thank you for the quick response. I think we do not use this orb. Actually I think no ‘external’ orb is involved in this (probably core CircleCI functionality) to pull Docker image from ECR
It will be worth you raising a support ticket as the docs indicate that the docker command has the same limitation. At least that way you should receive a formal answer.
The documentation never really shows that something is not possible as it goes and states that the parameter type is a Map without listing the accepted values, but you have
This shows aws_auth in examples that only show aws_access_key_id and aws_secret_access_key being used