security: logs github token at boot

[nickatsegment]

In its default configuration, gddo-server dumps all config values to logs, including sensitive values like the GitHub token

Seems like #554 would have at least allowed us to turn off debug logging.