A command-line tool for querying the 'Have I been pwned?' service.
d80c130
Thanks @wKovacs64! - Provide an interactive prompt for the API key when the apiKey
command is issued without an argument. This is a safer way to input your API key, as providing it on the command line may cause it to show up in your shell's command history.fd72c24
Thanks @wKovacs64! - Drop support for Node.js 16 as it is end-of-life, making the new minimum Node.js runtime v18.0.0. Please upgrade your Node.js environment if necessary, or continue using a previous release if you are unable to upgrade your environment.#248 f75f0aa
Thanks @wKovacs64! - Add new subStatus
command to get the current subscription status of your HIBP API key. See https://haveibeenpwned.com/API/v3#SubscriptionStatus for more information.
#247 37f3a6f
Thanks @wKovacs64! - Add the --pad
(-p
) option to the pw
command, allowing you to ask the remote API to add padding to the response to obscure the password prefix. See https://www.troyhunt.com/enhancing-pwned-passwords-privacy-with-padding/ for more information.
#246 372b291
Thanks @wKovacs64! - Refresh the project logo.
3fe2524
Thanks @wKovacs64! - Drop support for Node.js 14 as it is end-of-life, making the new minimum Node.js runtime v16.0.0. Please upgrade your Node.js environment if necessary, or continue using a previous release if you are unable to upgrade your environment.581d0dc4
and 1bd53262
Thanks @wKovacs64! - Drop support for Node.js 10 and 12 as they are both end-of-life, making the new minimum Node.js runtime v14.13.1. This also converts the project to pure ESM as it is fully supported in 14.13.1, 16 and beyond. Please upgrade your Node.js environment if necessary, or continue using the latest v9 release of pwned
if you are unable to upgrade your environment.pwned
if you are unable to upgrade your environment.includeUnverified
option of the ba
command now defaults to true
, per
Troy's recommendation. Although there are not many unverified breaches in the system, it's
possible you will get more breaches back than you did previously. You may explicitly disable this
by negating the value for this option.truncate
option of the ba
and search
commands now defaults to true
,
per Troy's recommendation. If you do not negate it explicitly, each Breach
result will only
contain the breach name (no metadata).<your-key>
" to configure pwned
so that it may use it in future requests made to protected endpoints. Some commands, like pw
, do not require an API key and will continue to function without one. Thus, you may continue to use pwned
without an API key, as long as you only care about the commands that do not require one. Each command indicates if it requires an API key in the help for the specific command.pwned
if you are unable to upgrade your environment.