No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

image.png

It can be wrapped using `pulumi.secret`. I suppose some people want out dump the plaintext password to output so that it can be immediately changed, maybe? Not everyone stays abreast of the best infosec advice... :disappointed:

I have this below the creation
``` const rabbitMqAdminPwd = pulumi.secret(accountPassword);
 outputs["rabbitMqAdminPwd"] = rabbitMqAdminPwd;```
I will try to wrap the whole resource creation in a secret, but I don't expect that to work. I don't want the actual object I'm using to be a secret.

This did not make the resource a secret in the resource viewer
`const test = pulumi.secret(new random.RandomString({}).result);`

You’ll want to mark `result` as a secret output: <https://www.pulumi.com/docs/intro/concepts/programming-model/#additionalsecretoutputs>

Thank you <@UTH0AMTQQ> I did just find that.
```const accountPassword = new random.RandomPassword("RabbitMqAdmin_password", {
        length: 40, 
        special: true, 
        overrideSpecial: `_%@`
    }, { additionalSecretOutputs:["result"] }).result;```
I guess though that I would expect `new random.RandomPassword()` to do that by default.