No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

I am afraid I am using `additionalSecretOutputs` incorrectly, although I could have sworn this used to work:

```let pw = new random.RandomString("test-password", {
    length: 8,
    special: false,
    additionalSecretOutputs: ["result", "id"]
});

let param = new aws.ssm.Parameter("test-password", {
    length: 8,
    value: pw.result,
    type: "SecureString"
});```
Expectation: The value of the RandomString and SSM parameter are not visible in plaintext in the stack state and web console.
Actual: The plaintext is visible in the stack state and web console.

And, as usual, as soon as I post a question, I see the answer. `additionalSecretOutputs` is an option, not a property :slightly_smiling_face:

Note that you may also want to use `RandomPassword` instead. It is the same as random string, but doesn’t expose the generated string in the id. 