Yubikey OTP should be masked, clicking login shouldn't make the OTP not work
We use YubiKeys for our OTP dual factor authentication. On every other product that I've used Yubikey on(Gmail, LastPass, etc.) it enters the OTP masked as asterisks or dots. With Screen Connect it enters it as plain text, and also takes 10 seconds or so to login after the Yubikey does the carriage return which has lead to our users trying to click login which causes it to not accept the OTP. My expected behavior would be that when using the Yubikey for OTP it would enter it asterisk'd out, and would either immediately login, or when clicking login it would accept the OTP. There isn't any logical reason that clicking login before Screen Connect has taken the Yubikey OTP would make the OTP not work. I started a support ticket and was told it was functioning as intended which seems strange since it functions different than every other 2FA product I've ever used. I really appreciate any help on this!
I don't understand why this isn't already implemented. It seems essential to me and basic security best practices.