By default, vault outputs [DEBUG] info, and also includes Vault secrets in that output. #84
Description
What happened?
I'm a noob in crossplane, and testing out Vault provider with a SecretV2, it's working fine, but the provider-vault pod outputs that secret content which does not feel right.
I would expect:
- secrets content are not printed in logs
- a way to turn down that debug output (pod has no env var or args for debug on my end)
2025/04/29 18:31:42 [DEBUG] secret: &api.Secret{RequestID:"REDACTED", LeaseID:"", LeaseDuration:0, Renewable:false, Data:map[string]interface {}{"data":map[string]interface {}{"abc":"123"}, "metadata":map[string]interface {}{"created_time":"2025-04-29T18:20:34.49579885Z", "custom_metadata":interface {}(nil), "deletion_time":"", "destroyed":false, "version":"1"}}, Warnings:[]string(nil), Auth:(*api.SecretAuth)(nil), WrapInfo:(*api.SecretWrapInfo)(ni ││ l), MountType:"kv"}
(that abc:123 json is the secret)
How can we reproduce it?
Install crossplane and vault provider, create a SecretV2 object.