No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

You can create a `new aws.secretsmanager.Secret` and then use AWS APIs on secrets manager to decrypt secrets when needed.

This will manages secrets at a different level than Pulumi's config system secrets.

Thanks for the input. Thing is that Pulumi's config secrets aren't really secret as they are plain text env vars on the lambdas.

So having access to secretsmanager is a big win