If written with the appropriate logic, compiled, encrypted function style macros can be used to securely keep sensitive strings (passwords, keys, etc.) out of SAS code and logs.
Thanks to Thomas Billings for this tip. Read more details in this paper from WUSS 2017: Keeping Passwords AES Encryption Keys and Other Sensitive Parameters Out of Source Code and Logs.