I noticed when running “maas $PROFILE machine release abcdef” that it launches maas-power with the --power-pass argument clearly visible to all users via ps.
My general impression is that this sort of thing is considered bad security practise. Is there a possibility of having passwords passed around in a different way, perhaps via environment variables or 0600-chmod’d files?