How to do remote-exec operation if i am using terraform cloud

Hi All,
I am trying to do a remote-exec like below for a EC2 instance

connection {
type = “ssh”
user = “ubuntu”
private_key = file(“private_keys/${var.keypair_name}.pem”)
host = aws_instance.bastion[0].public_ip
}

provisioner "file" {
    source = "script/install.sh"
    destination = "/home/ubuntu/install.sh"
}
provisioner "remote-exec" {
    inline = [
        "chmod +x /home/ubuntu/install.sh"
    ]
}

When i was doing the terraform operations from my local machine, i was able to store the private keys in my local machine and point it like the above.

But now, i have moved to terraform cloud where i am mapping my github repo and branch for the workspace. Problem is, as a best practice i will not be able to commit my private key along with my code. Is there any other way where i can do a remote-exec from terraform cloud without adding my pem file as a part of code.