Running the Terraform provider for CXone keeps dumping our OAuth client_secret into the plaintext state file. We’ve got a basic resource block set up like resource "genesyscloud_auth" "main" { client_id = var.app_id client_secret = var.app_secret }. The apply finishes fine, but a quick grep shows the raw key sitting right there. Marked the variable as sensitive, yet the provider still writes it to the json output. State masking logic seems broken anyway. Might just have to patch the fork locally.