whatisgithub

What is hibp?

eternal-flame-ad/hibp — explained in plain English

Analysis updated 2026-07-16 · repo last pushed 2018-12-30

GoAudience · developerComplexity · 2/5DormantSetup · moderate

In one sentence

A Go package that lets programs check email addresses and passwords against the Have I Been Pwned breach database. It handles the API requests and data parsing so developers can focus on using the results.

Mindmap

mindmap
  root((repo))
  What it does
    Checks emails in breaches
    Checks passwords in breaches
    Handles API requests
    Returns Go objects
  Tech stack
    Go
    Have I Been Pwned API
    JSON parsing
  Use cases
    Password manager warnings
    Security audit tools
    Breach alert apps
  Audience
    Go developers
    Security tool builders
    Startup teams
  Setup
    Import package
    Provide API key
    Read godoc

Code map

Detail Auto

An interactive map of this repo's files and how they connect — its source is parsed live in your browser. Click Visualize to build it.

filefunction / class

What do people build with it?

USE CASE 1

Add a breach warning feature to a password manager so users know if their credentials were exposed.

USE CASE 2

Build a security audit tool that checks employee email addresses against known data breaches.

USE CASE 3

Create an app that alerts users when their email appears in a new data breach.

What is it built with?

GoHave I Been Pwned API

How does it compare?

eternal-flame-ad/hibpaasheeshlikepanner/vasealexzielenski/controller-runtime
Stars0
LanguageGoGoGo
Last pushed2018-12-302022-04-20
MaintenanceDormantDormant
Setup difficultymoderatemoderatehard
Complexity2/54/54/5
Audiencedeveloperdeveloperdeveloper

Figures from each repo's GitHub metadata at analysis time.

How do you get it running?

Difficulty · moderate Time to first run · 30min

No usage examples or setup instructions in the README, developer must read godoc or source to learn the API, and a Have I Been Pwned API key is required.

No license information is provided in the README, so usage rights are unclear without checking the repository further.

So what is it?

This project is a small package that lets Go programs talk to the Have I Been Pwned service. Have I Been Pwned is a well-known website where people can check whether their email address or password has appeared in a known data breach. Instead of a developer manually making web requests and parsing responses, this package handles that interaction so they can focus on using the results. At a high level, the package wraps the Have I Been Pwned API in Go code. A developer imports it into their project, provides an API key or query parameters, and calls functions that return structured data, like which breaches an email address appears in. The package abstracts away the HTTP requests and JSON parsing, giving back Go objects that are straightforward to work with in a program. Someone building a security-related application would find this useful. For example, a developer creating a password manager could use it to warn users if their credentials have been exposed in a breach. A startup building a tool that audits organizational security might use it to check employee email addresses against known breaches. It saves those teams from writing boilerplate code to communicate with the service directly. The README is very minimal, just a link to the documentation and a few badges indicating build status and test coverage. There are no usage examples or setup instructions included, so a developer would need to look at the godoc page or read the source to understand the available functions and how to call them. The project itself is straightforward: a focused utility that does one thing for the Go ecosystem.

Copy-paste prompts

Prompt 1
I want to use the hibp Go package to check if an email address appears in any known data breaches. Write a Go program that imports the package, sets up an API key, and prints out all breaches for a given email.
Prompt 2
Help me build a Go CLI tool that uses the hibp package to let a user type their email and see which data breaches it has appeared in, formatted as a readable list.
Prompt 3
Using the hibp Go package, write a function that checks whether a password has been exposed in a breach and returns a boolean indicating if it is safe to use.
Prompt 4
I need to integrate the hibp Go package into an existing Go web service. Show me how to call it from a handler and return breach data as JSON to the client.

Frequently asked questions

What is hibp?

A Go package that lets programs check email addresses and passwords against the Have I Been Pwned breach database. It handles the API requests and data parsing so developers can focus on using the results.

What language is hibp written in?

Mainly Go. The stack also includes Go, Have I Been Pwned API.

Is hibp actively maintained?

Dormant — no commits in 2+ years (last push 2018-12-30).

What license does hibp use?

No license information is provided in the README, so usage rights are unclear without checking the repository further.

How hard is hibp to set up?

Setup difficulty is rated moderate, with roughly 30min to a first successful run.

Who is hibp for?

Mainly developer.

Open on GitHub → Ask about another repo

This repo across BitVibe Labs

Verify against the repo before relying on details.