Avoid printing out the password

Currently `Credentials` derives the standard `Debug` implementation.

I propose redacting the password field from the output so as to avoid accidental leaks to CI logs and whatnot.


I'm happy to send a PR if this sounds good on paper.


PS. Thanks for this nifty little crate!