Hi, I'm wondering how I can suppress / secure the discovery of secrets by running meltano or chamber commands. For example, if I wanted to discover credentials / passwords I could run commands like.

meltano config tap-salesforce list
meltano config target-snowflake list

Likewise I could run chamber commands (chamber is a recommended method to set the meltano environment variables at runtime, pulling them from the AWS SSM Parameter Store).

chamber export --format dotenv meltano meltano/tap-salesforce meltano/target-snowflake [...] > .env

So while I can securely store credentials in the likes of AWS Parameter Store, if I know the right commands to run against my container, I can pull out credentials into logs. I'm looking for recommendations please for how meltano / chamber can still operate - i.e. get the environment variables to operate without allowing users to run cli commands to pull out the credentials? Thanks