if (blessed $password && $password->can("unmask_secret_to")) {
  $db= $password->unmask_secret_to(\&DBI::connect, 'DBI', $dsn, $user, $password, \%attr);
} else {
  $db= DBI->connect($dsn, $user, $password, \%attr);
}