Open Indubius opened 3 years ago
The much-cited service "HaveIBeenPwned" offers an API: https://haveibeenpwned.com/API/v3
The provider mobilbox.org, which is said to have a high level of security, has implemented this feature. I therefore assume that this should be possible without compromising the encryption and thus the security level.
In any case, such a function should only be offered as an option. Data may only be transferred with the explicit consent of the user.
Sounds amazing. I really hope Philip or someone supporting him has the time to check it. Unfortunately I don't have the ability to do.
And I agree, no action without explicit consent.
note that this is possible on the PC: https://github.com/mihaifm/HIBPOfflineCheck
I'd love kp2a to compare entries with known breaches automatically.