Sensitive information - passwords and encryption keys - is now hidden when statements are printed to request level logs, are logged by diagnostic tracing, or when expressions containing sensitive information are used as column names.
Additionally, output of the REWRITE function, connection_property( 'LastStatement' ) and any statements recorded in event tracing is sanitized. Any expression that represents a password, key, or sensitive data is hidden.
For example, encrypt( 'a', 'abc', 'AES') now outputs as encrypt( '***', '***', AES).
The sensitive parameters in the built-in procedures ENCRYPT and DECRYPT are now hidden.