Github user alopresto commented on the issue:
https://github.com/apache/nifi/pull/2936
There are definitely inconsistencies throughout the project as this wasn't
always a firm policy and there are many different contributors to the project.
As you noted, we have tried to tighten the reviews and catch this where we can,
and hopefully with the completion of
[NIFI-5627](https://issues.apache.org/jira/browse/NIFI-5627), we will have a
foundation to move forward on enabling EL in passwords for users.
---
