From 17c0ad680c28bfe4f171ffe64398f825c84c91fe Mon Sep 17 00:00:00 2001
From: William Woodruff <william@trailofbits.com>
Date: Mon, 21 Nov 2022 16:43:04 -0500
Subject: [PATCH] oidc/oauth: avoid logging the OAuth auth headers

Signed-off-by: William Woodruff <william@trailofbits.com>
---
 sigstore/_internal/oidc/oauth.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/sigstore/_internal/oidc/oauth.py b/sigstore/_internal/oidc/oauth.py
index b6ae51fac..680259a99 100644
--- a/sigstore/_internal/oidc/oauth.py
+++ b/sigstore/_internal/oidc/oauth.py
@@ -249,7 +249,7 @@ def get_identity_token(client_id: str, client_secret: str, issuer: Issuer) -> st
         client_id,
         client_secret,
     )
-    logging.debug(f"PAYLOAD: data={data}, auth={auth}")
+    logging.debug(f"PAYLOAD: data={data}")
     resp: requests.Response = requests.post(
         issuer.token_endpoint,
         data=data,