Safe way to automount VeraCrypt container without showing password?

I have a Raspberry Pi 4 (4GB) running Nextcloud on it. Because all my data and backups are saved on external USB drives I will encrypt them with a VeraCrypt container. Mounting and dismounting the container with VeraCrypt is working fine. I would like to mount my VeraCrypt container after booting. In my opinion there are two ways to do that: - Manually mount the Container after every boot via commandline and manually enter the container password, PIM, etc. - Automatically mount the container via script I would prefer the second solution but then I have to provide the password somehow. I could run the command veracrypt /media/backup/test.hc /media/backup/test/ --password=test --pim=20 -k "" --protect-hidden=no at startup but the password would be visible in the autostart file... (you could remove the sd card from the raspberry and just read out the password from the command above) So my question is: **Is there a reasonably safe way to automount my VeraCrypt container without making the decryption password visible and without manually typing the password?**