PHPackages timpack/magento2-module-pwned-validator - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. timpack/magento2-module-pwned-validator AbandonedArchivedLibrary timpack/magento2-module-pwned-validator ======================================= Add 'Have I been pwned?' validator to Magento 2. 1.1.0(6y ago)702MITPHP Since Mar 11Pushed 5y ago1 watchersCompare [ Source](https://github.com/tdgroot/magento2-module-pwned-validator)[ Packagist](https://packagist.org/packages/timpack/magento2-module-pwned-validator)[ RSS](/packages/timpack-magento2-module-pwned-validator/feed)WikiDiscussions master Synced 2mo ago READMEChangelog (2)Dependencies (2)Versions (3)Used By (0) Magento 2 Have I Been Pwned Validator ===================================== [](#magento-2-have-i-been-pwned-validator) This module adds a validator which checks if the submitted password is found in public databases using the `Have I Been Pwned?` service. Security -------- [](#security) There are no security drawbacks, because there are no actual passwords being submitted over the internet. This is possible by hashing the password using the `SHA-1` algorithm and request all hashes in the `Have I been Pwned?` databases starting with the first 5 characters of the password hash. This resultset contains a list of hashes and the amount of occurrences. This way the password stays inside the Magento process. Installation ------------ [](#installation) ``` composer require timpack/magento2-module-pwned-validator bin/magento setup:upgrade ``` Configuration ------------- [](#configuration) You can configure the threshold of the validator, at which count of occurrences in the resultset the password should be considered insecure/invalid. This configuration can be found at: `Stores -> Configuration -> Customer -> Customer Configuration -> Pwned Validator -> Minimum amount of matches` Credits ------- [](#credits) This module was heavily inspired by Valorin's Pwned validator written for Laravel: [valorin/pwned-validator](https://github.com/valorin/pwned-validator) ### Health Score 28 — LowBetter than 54% of packages Maintenance20 Infrequent updates — may be unmaintained Popularity7 Limited adoption so far Community11 Small or concentrated contributor base Maturity64 Established project with proven stability Bus Factor1 Top contributor holds 71.4% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~788 days Total 2 Last Release 2194d ago ### Community Maintainers ![](https://www.gravatar.com/avatar/5240b0311ff3144de5f481270b2e4d2a7073f5af9b8ded119d5064f845b6d04c?d=identicon)[tdegroot96](/maintainers/tdegroot96) --- Top Contributors [![tdgroot](https://avatars.githubusercontent.com/u/1165302?v=4)](https://github.com/tdgroot "tdgroot (5 commits)")[![sinisa-colic](https://avatars.githubusercontent.com/u/4529208?v=4)](https://github.com/sinisa-colic "sinisa-colic (2 commits)") --- Tags magento2magento2-modulepwnedpwnedpasswordsvalidator ### Embed Badge ![Health badge](/badges/timpack-magento2-module-pwned-validator/health.svg) ``` [![Health](https://phpackages.com/badges/timpack-magento2-module-pwned-validator/health.svg)](https://phpackages.com/packages/timpack-magento2-module-pwned-validator) ``` ### Alternatives [hyva-themes/magento2-react-checkout Highly customizable Magento 2 Checkout, built with React 189169.8k1](/packages/hyva-themes-magento2-react-checkout)[dotdigital/dotdigital-magento2-extension Dotdigital for Magento 2 50374.2k18](/packages/dotdigital-dotdigital-magento2-extension)[swissup/module-search-mysql-legacy Legacy mysql search for magento 2.4 10483.0k](/packages/swissup-module-search-mysql-legacy)[imi/magento2-friendly-captcha Friendly Captcha integration for Magento2 18116.2k](/packages/imi-magento2-friendly-captcha)[pagbank/payment-magento PagBank - Payment for Magento and Adobe 2128.3k7](/packages/pagbank-payment-magento)[mage-os/module-inventory-reservations-grid Add a grid with the list of inventory reservations. 126.8k](/packages/mage-os-module-inventory-reservations-grid) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)