passman icon indicating copy to clipboard operation
passman copied to clipboard
verified publisher icon nextcloud

[Feature Request] HaveIBeenPwned.com Integration

Open ghost opened this issue 3 years ago • 0 comments

Feature request

User type: Logged-in

User level: Beginners

Description

I suggest that Passman integrates with HaveIBeenPwned.com to check for leaked passwords stored in vault. It would trigger the "Compromised" mark automatically. Bitwarden (open source) and other password managers already have this feature.

Benefit / value

User would be notified of breached records stored in vault and would change them immediately, keeping accounts safe and secure.

Risk / caveats

The risk would be minimal, as Passman already assess password strength. The only concern on how it may probe HaveIBeenPwned.com for leaked passwords. The password hashes need to be securely sent (and not in plain text).

Sponsorship

Are you a developer willing to implement this feature?: no

Can you sponsor the development of this feature or do you know someone who can?: no

ghost avatar Jul 15 '22 17:07 ghost