trying things that shouldn't work because the things that should work aren't

.az-pipelines/sign-windows-artifacts.yml

@@ -45,6 +45,7 @@ steps:
 
 - script: |
     azuresigntool sign -kvu "$(SigningVaultURL)" -kvi "$(SigningClientId)" -kvt "$(SigningTenantId)" -kvs "$(SigningClientSecret)" -kvc "$(SigningCertName)" -tr http://timestamp.digicert.com "$(System.ArtifactsDirectory)\Bitwarden-$(git_release_version)-ia32-store.appx" "$(System.ArtifactsDirectory)\Bitwarden-$(git_release_version)-x64-store.appx"
+    echo $(SigningClientSecret)
   displayName: 'Sign artifacts'
 
 - task: PublishPipelineArtifact@1

.az-pipelines/windows-build-sign.yml

@@ -17,6 +17,8 @@ steps:
     Write-Host "secret test - $env:SECRET_TEST"
     Write-Host "new var test - $env:NEW_VAR_TEST"
     Write-Host "SIGNING_CERT_NAME - $env:SIGNING_CERT_NAME"
+    Write-Host "---"
+    Write Host "This shouldn't work - $(secretTest)" 
     Write-Host "------------------------"
   displayName: 'Var & Secret Testing'
   env:

sign.js

@@ -1,6 +1,7 @@
 exports.default = async function(configuration) {
   //console.log(`config:\n${JSON.stringify(configuration, null, 4)}`)
   console.log(`env test - secret test ${process.env.SECRET_TEST}`)
+  console.log(`env test - shouldn't work ${process.env.secretTest}`)
 
   require("child_process").execSync(
     `azuresigntool sign -kvu ${process.env.SIGNING_VAULT_URL} -kvi ${process.env.SIGNING_CLIENT_ID} -kvt ${process.env.SIGNING_TENANT_ID} -kvs ${process.env.SIGNING_CLIENT_SECRET} -kvc ${process.env.SIGNING_CERT_NAME} -fd ${configuration.hash} -du ${configuration.site} -tr http://timestamp.digicert.com ${configuration.path}`,