@JamesMessinger The feature that this flag controls is explained here.
To prevent leaks made by these components, we automatically filter secure environment variables and tokens that are longer than three characters at runtime, effectively removing them from the build log, displaying the string
[secure]
instead.
Adding filter_secrets: false
will disable the filtering described above.