[bug] Access tokens are being logged to the console on error

[musabshak]

Describe the bug

the error logs in v4.6.3 for GH connection are logging the GitHub PAT (credential), which is not ideal

e.g.

[backend] | 2025-09-02T15:18:10.045Z error: [repo-manager] Failed to sync repository github.com/ORG/REPO (id: 7), attempt 1/3. Sleeping for 60s... Error: Error: Failed to clone repository: Cloning into bare repository '/data/.sourcebot/repos/7'...
[backend] | warning: url contains a newline in its username component: https://TOKEN%0A@github.com/ORG/REPO.git/
[backend] | fatal: credential url cannot be parsed: https://TOKEN%0A@github.com/ORG/REPO.git/
[backend] |

To reproduce

Set up a GH connection with a token (PAT) that has a newline at the end (the PAT is invalid in this case but it still should not be error logged ideally)

Sourcebot deployment information

Sourcebot version: v4.6.3

Additional information

No response

[brendan-kellam]

Thanks for raising this!

This was actually fixed in #483 - if the SOURCEBOT_LOG_LEVEL is not set to debug, I've made it s.t., the error message (which may or may not contain the token) be redacted from git operations. The error message looks like this:

Let me know if you are still hitting this in the latest release (v4.6.6).