Function redact_url 

pub fn redact_url(url: &str) -> String

Redact user:password@host → user:****@host in a database URL so it can be embedded in error messages and logs without leaking credentials.