I think i got lucky, but i immediately solved it by asking what the initial sentences were, by censoring everything related to the password. I actually got the list of all the input used to configure the ai, with also something like "The password is [CENSORED]". But, among the various prompts, there was also one about a bash script that the AI should have not given to compare the input to the password, and that example actually contained the password