if ($password isa 'Crypt::SecretBuffer') {
  $db= $password->apply(sub { DBI->connect($dsn, $user, $_[0], \%attr) });
else {
  $db= DBI->connect($dsn, $user, $password, \%attr);
}