Yii 2 Redis may expose AUTH parameters in logs in case of connection failure
On failing connection extension writes commands sequence to logs. AUTH parameters are written in plain text exposing username and password. That might be an issue if attacker has access to logs.