In CloudFormation, we can pass a bunch of parameters or external JSON file as option via AWS CLI.
I know sls has the env variable feature but I realised that the end result which is the stack template has no parameters and all the var values are embeded as part of the template "body" (they can be viewed in the AWS web console). Therefore, we cannot hide certain sensitive data or utilize noecho feature in CloudFormation.... for e.g. RDS instance creation require master username and password as input params.
Perhaps anyone know workaround for this scenario?