Hello — we’re running into a problem where one of our ECS container definitions is being marked as secret, and we’re not sure why — our state file shows it as encrypted, whereas all other ECS container defs (with similar inputs) are not being marked as secret. It appears that the container defs are strings in state, so my guess is that somewhere along the way an output marked as secret is getting interpolated. Are there techniques that help one tell what is being marked secret during program processing, other than putting loads of

console.log()

everywhere and hoping to catch it? Thanks!

I think the best you can do is console.log and isSecret checks.

Thank you Fraser! I’ll try throwing those `isSecret`s in there. 👍