When viewing logs credentials are hidden as expected. But when in blueocean or viewing logs in the branch builds overview the "title" used to be "Shell Script (self time 3s)" but now includes the command but doesn't remove the secret when using withVault. 

withCredentials will have a title of "echo ${TEXT} | wc" Good

withVault will have a title of "echo cred123 | wc " Bad

I don't know if this is an issue with workflow-cps or one of the hashicorp-vault plugins but it seem like there was a change in workflow-cps:2.85 that added the command to the title and now I can see credentials.

Currently using
hashicorp-vault-pipeline:1.3
hashicorp-vault-plugin:3.6.1