tf-plan job can leak secrets

The result of the tf-plan command can contain some secrets.

When the tf-plan command is run on a production branch, production secrets (which should be stored as protected variables so they can only be accessed by maintainers and owners) can end up in the artifact.

The problem is that this artifact can then be accessed by developers (who should never have access to production secrets).