diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
index fb9bc379106335a2169736bce460eed9e125f8e2..82a114b97da70a6a15163c315e31291f1ebafa31 100644
--- a/.pre-commit-config.yaml
+++ b/.pre-commit-config.yaml
@@ -21,6 +21,7 @@ repos:
     rev: v2.3.0
     hooks:
       - id: codespell
+        exclude: Dockerfile
 
   - repo: https://github.com/Yelp/detect-secrets.git
     rev: v1.5.0
diff --git a/workbench/Dockerfile b/workbench/Dockerfile
index 7bb959ebea95cd4dee7b17d87439d212fb3b5b91..ca375c73de2e844f922fe8fbe7dd71f25dc7bab0 100644
--- a/workbench/Dockerfile
+++ b/workbench/Dockerfile
@@ -175,12 +175,12 @@ ENV PIPX_BIN_DIR /opt/pipx/bin
 RUN export PIP_CONSTRAINT=/tmp/constraint.txt && \
     echo 'packaging==24.1' >> "$PIP_CONSTRAINT" && \
     python3 -m pip install --no-cache-dir --break-system-packages \
+        https://github.com/aws/aws-cli/archive/refs/heads/v2.zip \
         Glances \
         PyGObject \
         PyMySQL \
         'ansible>=10' \
         ansible-runner \
-        awscli \
         awslogs \
         bcrypt \
         black \