CHANGELOG.md

Change Log

15.2.1

Patch Changes

• #569 a57fece Thanks @wKovacs64! - Fix preview publishing by adding type to the repository section of package.json. This is a package maintenance release only - no changes in the library itself.

15.2.0

Minor Changes

• #562 ab40e4a Thanks @wKovacs64! - Add signal option to all modules for user-controlled request cancellation via AbortSignal.

15.1.0

Minor Changes

• #543 70db0e1 Thanks @wKovacs64! - Add stealerLogsByEmailDomain module.

• #541 655b473 Thanks @wKovacs64! - Add stealerLogsByEmail module.

• #542 682cff7 Thanks @wKovacs64! - Add stealerLogsByWebsiteDomain module.

• #539 a0c6e9a Thanks @wKovacs64! - Add subscribedDomains module.

• #537 e15c6a7 Thanks @wKovacs64! - Add latestBreach module.

• #538 f08af27 Thanks @wKovacs64! - Add breachedDomain module.

Patch Changes

• #535 d47d462 Thanks @wKovacs64! - Add IncludesStealerLogs field to SubscriptionStatus interface and docs.

15.0.1

Patch Changes

• #510 879fe9f Thanks @wKovacs64! - Export the API data model types that were missing in v15.0.0.

15.0.0

Major Changes

• #509 e8d4986 Thanks @wKovacs64! - Drop support for Node 18 and remove the CommonJS and UMD builds:

  • Drop support for Node.js 18 as it is end-of-life, making the new minimum Node.js runtime v20.19.0. Please upgrade your Node.js environment if necessary, or continue using a previous release if you are unable to upgrade your environment.

    • This also allowed us to drop the fetch polyfill that was only necessary in Node 18, which reduced the bundle size by approximately 33%! 📉 The library now officially has zero dependencies. 🎉

  • Remove the CommonJS build since you can now require() ESM as of Node v20.19.0. Consumers in a CommonJS environment should still be able to use the library as before (given the appropriate Node.js version).

  • Remove the UMD build as all modern browsers support importing ESM via <script type="module"> tags. See the "Using in the browser" section of the README for more details.

Minor Changes

• #506 56fdf38 Thanks @wKovacs64! - Drop JSSHA dependency in favor of a native Web Crypto API SHA-1 hashing implementation. This change reduces the size of the library by approximately 30%! 📉

14.1.3

Patch Changes

• #502 e810e6b Thanks @dependabot! - Update undici to v6.21.1 (only matters on Node v18).

14.1.2

Patch Changes

• #479 f212d87 Thanks @wKovacs64! - Fix error handling for 401 Unauthorized API responses. The haveibeenpwned.com API (v3) changed its response type from a JSON body to text.

14.1.1

Patch Changes

• #464 1dd6547 Thanks @wKovacs64! - Fix consumption from Next.js client components.

14.1.0

Minor Changes

• #462 b6076f2 Thanks @wKovacs64! - Add the timeoutMs option to all modules, allowing the consumer to specify a timeout for the underlying network request (in milliseconds). Requests that take longer than the sppecified timeout period will throw/reject. There is no default timeout, as fetch itself has no timeout by default and providing one would be arbitrary, unexpected, and a breaking change.

• #458 0a82b8d Thanks @wKovacs64! - Only polyfill global fetch on Node.js v18, and use undici instead of @remix-run/web-fetch. This also enables use of hibp in web workers and extension background threads.

Patch Changes

• #461 aa90167 Thanks @wKovacs64! - Fix a bug in pwnedPassword and pwnedPasswordRange modules where the addPadding and userAgent options could not be used simultaneously.

14.0.3

Patch Changes

• #438 3da8b89 Thanks @wKovacs64! - Restore missing TypeScript declarations that were forgotten in v14.0.2 (PR #436).

14.0.2

Patch Changes

• #436 961d6e0 Thanks @wKovacs64! - Fix CommonJS exports that broke in v14.0.0.

  CommonJS consumers were getting an ERR_REQUIRE_ESM error as of v14.0.0 due to changing the project source to ESM in PR #420. This change resolves that by publishing the CommonJS files in dist/cjs with a .cjs file extension and the ESM files in dist/esm with the .js file extension.

14.0.1

Patch Changes

• #428 4a69884 Thanks @wKovacs64! - Add descriptions to each config option for a better IDE experience.

14.0.0

Major Changes

• #410 2643a0c Thanks @wKovacs64! - Drop support for Node.js 16 as it is end-of-life, making the new minimum Node.js runtime v18.0.0. Please upgrade your Node.js environment if necessary, or continue using a previous release if you are unable to upgrade your environment.

Minor Changes

• #425 cee2364 Thanks @wKovacs64! - Add a new subscriptionStatus module for retrieving the current subscription status of your HIBP API key. See https://haveibeenpwned.com/API/v3#SubscriptionStatus for more information.

• #426 5ff6e28 Thanks @wKovacs64! - Refresh the project logo.

• #422 be78f73 Thanks @wKovacs64! - Add mode option to the pwnedPasswordRange module to enable support for returning NTLM suffixes.

• #421 174ede4 Thanks @wKovacs64! - Add addPadding option to pwnedPassword and pwnedPasswordRange modules. See https://www.troyhunt.com/enhancing-pwned-passwords-privacy-with-padding/ for more information.

Patch Changes

• #427 173a615 Thanks @wKovacs64! - Fix the subscriptionStatus implementation from PR #425 so that it supports a proxy that inserts the HIBP-API-Key header (via the baseUrl option) in the case where the consumer doesn't have direct access to the API key.

• #424 a512452 Thanks @wKovacs64! - Properly merge consumer-provided options with internal defaults.

• #419 799669b Thanks @wKovacs64! - Update the Breach model to include the IsMalware and IsSubscriptionFree fields.

13.0.0

Major Changes

• #383 b837a57 Thanks @wKovacs64! - Drop support for Node.js 14 as it is end-of-life, making the new minimum Node.js runtime v16.0.0. Please upgrade your Node.js environment if necessary, or continue using a previous release if you are unable to upgrade your environment.

• #381 6711b59 Thanks @wKovacs64! - Drop support for browsers without native Promise implementations. In reality, this likely didn't change anything.

12.0.1

Patch Changes

• #372 d2fb74f Thanks @wKovacs64! - Publish types next to their CJS/ESM source files.

  For reference, see the following Twitter thread from Andrew Branch: https://mobile.twitter.com/atcb/status/1634653474041503744?t=8RVawwsEHrxnCD8BaITckg

12.0.0

Major Changes

• #368 91909c1 Thanks @wKovacs64! - Drop support for Node.js 12 as it is end-of-life, making the new minimum Node.js runtime v14.13.1. Please upgrade your Node.js environment if necessary, or continue using a previous release if you are unable to upgrade your environment.

Patch Changes

• #367 95d6217 Thanks @wKovacs64! - Replace the underlying fetch library. This shouldn't be noticeable to consumers, but replacing isomorphic-unfetch with our own conditional wrapper around @remix-run/web-fetch resolves a few compatibility issues the project has been facing.

11.1.1

Patch Changes

• #365 ec26254 Thanks @wKovacs64! - Add types to the exports map in package.json to fix ESM consumers.