The `ArgumentRedactor` does not act on `gfsh` history until it is written to file when the `gfsh` session is closed. As a result, non-redacted passwords may be exposed in the `history` command as well as the Ctrl-R reverse-i-search until the session is closed.
Because the redactor's behavior is simple, you can reproduce this with a simple `echo` command.
Update: Upon a quick investigation, it appears that this and
GEODE-4318 both can be addressed by creating / overriding and redacting in GfshHistory's implementation of jline.console.history.History::add. Closing this ticket as a duplicate of 4318.