Closed akamsteeg closed 3 years ago
The HaveIBeenPwned API has an option to pad responses with bogus data. This is an additional security measure so a MITM cannot determine passwords from the size of the response. We should add support for this to the library.
Fixed in 2842cfcc34c308de1bf004bfa9823a0f81e8fa29
The HaveIBeenPwned API has an option to pad responses with bogus data. This is an additional security measure so a MITM cannot determine passwords from the size of the response. We should add support for this to the library.