[BUG]: single whitespace marked as "secure"

[gitbreaker222]

⚠️ This issue respects the following points: ⚠️

• [X] This is a single bug, not a question or a configuration/webserver/proxy issue.
• [X] This is not a bug in the browser extension or another client.
• [X] This issue is not already reported on Github (I've searched it).
• [X] Nextcloud Server and the Passwords App is up to date. See Nextcloud Apps.
• [X] There are no warnings and errors reported in the Passwords App settings in the admin area
• [X] The following apps are not installed: Rainloop

Server Information

Server OS: Linux 5.15.0-88-generic x86_64
PHP Version: 8.2.12
DB Version: mysql 10.11.4

Client Information

Browser and Version: Firefox 122 Client OS and Version: Ubuntu 22.04 LTS

Bug description

passwords version: 2023.12.32 nextcloud version: Nextcloud Hub 6 (27.1.3)

Visual

writing a single whitespace in the password field

...gets marked with a green Shield icon

...however if I replace the single whitespace with a e.g. single number 1, the marker turns to a red shield icon.

(Note: red and green icons with same shape are not different for users, who have color blindness)

Steps to reproduce

• create new entry
• fill the password input with a single whitespace
• save it
• => the security indicator marks it as "safe" (unexpected)
• edit the entry
• change the password to 1
• save it
• => the security indicator marks it as "unsafe" (expected)

Expected behavior

the security indicator marks single whitespaces as "unsafe"

Nextcloud Logs

No response

Browser Logs

No response

[marius-wieschollek]

The SHA-1 hash for a single white space is "b858cb282617fb0956d960215c8e84d1ccf909c6". This SHA has does not appear in the HIBP API for B858C. This is likely because no service allows a single white space as password. The functionality is working as intended.