PHPackages nswdpc/silverstripe-pwnage-hinter - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Security](/categories/security) 4. / 5. nswdpc/silverstripe-pwnage-hinter ActiveSilverstripe-vendormodule[Security](/categories/security) nswdpc/silverstripe-pwnage-hinter ================================= Verify hashed passwords against HIBP v1.0.1(9mo ago)16.0k[1 PRs](https://github.com/nswdpc/silverstripe-pwnage-hinter/pulls)1BSD-3-ClausePHP Since Oct 15Pushed 9mo ago3 watchersCompare [ Source](https://github.com/nswdpc/silverstripe-pwnage-hinter)[ Packagist](https://packagist.org/packages/nswdpc/silverstripe-pwnage-hinter)[ RSS](/packages/nswdpc-silverstripe-pwnage-hinter/feed)WikiDiscussions master Synced 1mo ago READMEChangelog (10)Dependencies (12)Versions (15)Used By (1) Silverstripe pwnage hinting =========================== [](#silverstripe-pwnage-hinting) This module allows checking of passwords against the HIBP corpus. For more information on how the Pwned Password API works, including how password hashes are sent to the API, please read: Background ---------- [](#background) This module uses [MFlor/pwned](https://github.com/MFlor/pwned) to interface with the Password and Breach API. From a Silverstripe perspective, the module: - checks for pwned passwords and optionally prohibits (by default) their use via a `PasswordValidator` extension - flags relevant records - optionally sends digest emails containing volume of pwned passwords In addition to password checking it can be used to check for breaches, or a count of breaches, linked to a supplied email address. Breach checking requires an API key to be purchased from [haveibeenpwned](https://haveibeenpwned.com/API/Key) Configuration ------------- [](#configuration) The module comes with a default configuration that should get you up and running. Read [the configuration documentation](./docs/en/index.md) for configuration instructions Read [the email documentation](./docs/en/002_email.md) for information about email and templates License ------- [](#license) [BSD-3-Clause](./LICENSE.md) Documentation ------------- [](#documentation) - [Documentation](./docs/en/001_index.md) Maintainers ----------- [](#maintainers) PD web team Bugtracker ---------- [](#bugtracker) We welcome bug reports, pull requests and feature requests on the Github Issue tracker for this project. Please review the [code of conduct](./code-of-conduct.md) prior to opening a new issue. Security -------- [](#security) If you have found a security issue with this module, please email digital\[@\]dpc.nsw.gov.au in the first instance, detailing your findings. Development and contribution ---------------------------- [](#development-and-contribution) If you would like to make contributions to the module please ensure you raise a pull request and discuss with the module maintainers. Please review the [code of conduct](./code-of-conduct.md) prior to completing a pull request. ### Health Score 41 — FairBetter than 89% of packages Maintenance56 Moderate activity, may be stable Popularity23 Limited adoption so far Community13 Small or concentrated contributor base Maturity62 Established project with proven stability Bus Factor1 Top contributor holds 94.6% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~174 days Recently: every ~90 days Total 11 Last Release 293d ago Major Versions v0.3.1 → v1.0.02024-07-30 v1.0.0 → v2.0.0-rc12025-07-23 ### Community Maintainers ![](https://www.gravatar.com/avatar/1caefd99092b4a43254e48c40347224f671032ec1ffc3a457e06a7e9ab6e7c02?d=identicon)[nswdpc](/maintainers/nswdpc) --- Top Contributors [![JamesDPC](https://avatars.githubusercontent.com/u/69664712?v=4)](https://github.com/JamesDPC "JamesDPC (35 commits)")[![tardinha](https://avatars.githubusercontent.com/u/457209?v=4)](https://github.com/tardinha "tardinha (2 commits)") --- Tags securitypasswordsilverstripebreachhaveibeenpwnedhibppwnedpasswordspwnage ### Code Quality TestsPHPUnit Static AnalysisPHPStan, Rector Code StylePHP CS Fixer Type Coverage Yes ### Embed Badge ![Health badge](/badges/nswdpc-silverstripe-pwnage-hinter/health.svg) ``` [![Health](https://phpackages.com/badges/nswdpc-silverstripe-pwnage-hinter/health.svg)](https://phpackages.com/packages/nswdpc-silverstripe-pwnage-hinter) ``` ### Alternatives [bringyourownideas/silverstripe-maintenance Toolset to help with the day by day maintenance work. 32221.8k4](/packages/bringyourownideas-silverstripe-maintenance)[bringyourownideas/silverstripe-composer-security-checker Provides information if your SilverStripe application uses dependencies with known vulnerabilities. 11103.9k2](/packages/bringyourownideas-silverstripe-composer-security-checker)[feejin/silverstripe-securitytemplates Custom security templates to mirror CMS 128.1k1](/packages/feejin-silverstripe-securitytemplates) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)