-
If we get a HIBP callback message with an incorrectly-capitalized breach name, we call HIBP.getBreachByName with it, and currently throw an ["Unrecognized breach" error](https://sentry.prod.mozaws.net…
-
STR:
`curl -v --data "" -H "Content-Type: application/json" -H "Authorization: Bearer unsafe-default-token-for-dev" https://blurts-server.stage.mozaws.net/hibp/notify`
Expected Results:
```
< HT…
-
```sh
$ git rev-parse --short HEAD # 638af6a
$ git grep -n "log\." | grep -v "blog.moz"
basket.js:32: log.error("subscribe", {stack: e.stack});
controllers/dockerflow.js:18: log.info("gen…
-
When Monitor subscribers [opt out of HIBP public searches](https://haveibeenpwned.com/OptOut), their results will disappear from Monitor too. It's a very small number right now, but we should add an F…
-
Check newly set user passwords against publicly available "leaked password lists", and prevent users from setting passwords to known compromised values
https://github.com/MFlor/pwned#passwords
h…
-
### ⚠️ This issue respects the following points: ⚠️
- [X] This is a **bug**, not a question or a configuration/webserver/proxy issue.
- [X] This issue is **not** already reported on Github _(I've …
ghost updated
2 months ago
-
Per #1371, I noticed I was getting a 403 when scraping `https://www.haveibeenpwned.com` (and it redirects to lose the `www.` subdomain) when I visit directly.
```
[403] https://www.haveibeenpwned.…
-
For users who don't want their email address to be searchable, Troy offers an opt-out page here:
https://haveibeenpwned.com/OptOut
We could link to this from somewhere on Monitor too.
-
### ⚠️ This issue respects the following points: ⚠️
- [X] This is a **bug**, not a question or a configuration/webserver/proxy issue.
- [X] This issue is **not** already reported on [Github](https…
-
### Subject of the issue
Bitwarden CLI (version 1.22.0 - the latest on Arch Linux) login to the Vaultwarden server fails even with correct credentials
### Deployment environment
### You…