If we use RAW password in SFTP URI then if because some SFTP failure it throws exception in log and displays SFTP URI in log.Displayed password in log should be encrypted password.

Existing behaviour :

If we use RAW password without any special characters then on failure it displays encrypted password in log correctly :
For Ex :

sftp://badhost/target?password=RAW(abcdef)&username=jrandom&throwExceptionOnConnectFailed=true&maximumReconnectAttempts=0&autoCreate=false

Output in error log :

sftp://badhost/target?autoCreate=false&maximumReconnectAttempts=0&password=xxxxxx&throwExceptionOnConnectFailed=true&username=jrandom

If we use RAW password with any special characters then on failure it displays part of password encrypted and remaining part as plain text in log :
For Ex :

sftp://badhost/target?password=RAW(abc&def)&username=jrandom&throwExceptionOnConnectFailed=true&maximumReconnectAttempts=0&autoCreate=false

Output in error log :

sftp://badhost/target?autoCreate=false&maximumReconnectAttempts=0&password=xxxxxx&def&throwExceptionOnConnectFailed=true&username=jrandom

So basically it encrpts password till it encounters any special chracters like "&" then remaining password it displays as plain text.

IN case of any special characters also expected behaviour is it should display complete password in encrypted format.