lavacli outputs error message to stdout instead of stderr (security issue!)
Please look at the code https://git.lavasoftware.org/lava/lavacli/-/blob/master/lavacli/__init__.py#L272 . All the exception handlers print() error message to stdout (also reproduced with lavacli 1.0 here). If lavacli's output is redirected (more than natural for lavacli jobs logs, etc.), the error message will end up in the file. Then combined with #20 (closed), that file may contain sensitive information, which may be overlooked by a user and shared with unintended audience. All this may happen in automated manner via a CI system for example.
All error messages should be output to stderr.