Zxcvbn

Latest version: v4.4.28

Safety actively analyzes 685525 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 1 of 2

4.4.2

- minor bug fixes

4.4.1

- Fixed a search bug where certain optimal bruteforce matches were being ignored. This fix has a minor impact on performance, but only added 1 millisecond or less to all percentiles in my benchmark.

4.4.0

- Fixed a bug in the search algorithm. Discussion [here](https://github.com/dropbox/zxcvbn/pull/158).
- Minor bug fixes.

4.3.0

- shorter and clearer search code with a better runtime bound.
- new sequence matching that better generalizes to other unicode alphabets.
- a few tweaks and bugfixes.

4.2.0

Overhauled dictionary processing pipeline (scripts in data-scripts).
- zxcvbn now counts 30k top passwords from Xato.net's 10M password corpus instead of an earlier list of 10k passwords.
- zxcvbn now counts top words from offline wikipedia dumps. Instead of 55k words from the wiktionary tv and movie study, zxcvbn now includes top 30k tokens from the study, and top 30k tokens from en wikipedia.
- Data processing scripts are easier to use and better documented. It's now easy to, for example, add dictionaries obtained from wikipedia dumps in other locales.

4.1.0

zxcvbn now includes targeted verbal feedback in addition to score and guess numbers. verbal feedback is included when score is <=2, and potentially contains a warning and a list of suggestions.

Warnings include messages like "this is a top-10 common password", "dates are easy to guess", "rows of keys are easy to guess".

Suggestions include messages like "add another word or two", "avoid dates that are associated with you", "common substitutions like for a don't help very much", etc.

Page 1 of 2

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.