philiprehberger/php-password-strength

Password strength validation with entropy calculation and common password detection

Maintainers

Package info

github.com/philiprehberger/php-password-strength

pkg:composer/philiprehberger/php-password-strength

Statistics

Installs: 1

Dependents: 0

Suggesters: 0

Stars: 1

Open Issues: 0

Security

Advisories: 0

Aikido package health analysis

v1.0.2 2026-03-17 20:06 UTC

Requires

  • php: ^8.2

Requires (Dev)

MIT fab2eac10f7a5ceeefb013805eda1b6b4867c58c

  • Philip Rehberger <me.woop@philiprehberger.com>

securityvalidationpasswordstrengthentropy

This package is auto-updated.

Last update: 2026-03-17 20:15:40 UTC

README

Tests Latest Version on Packagist License

Password strength validation with entropy calculation and common password detection.

Requirements

  • PHP ^8.2

Installation

composer require philiprehberger/php-password-strength

Usage

Checking password strength

use PhilipRehberger\PasswordStrength\PasswordStrength;

$result = PasswordStrength::check('MyP@ssw0rd!2026');

echo $result->score;       // 0-4
echo $result->label();     // "very weak", "weak", "fair", "strong", or "very strong"
echo $result->entropy;     // Shannon entropy in bits
echo $result->isCommon;    // true if found in common passwords list
echo $result->length;      // Password length

// Improvement suggestions
foreach ($result->suggestions as $suggestion) {
    echo $suggestion;
}

// Array representation
$array = $result->toArray();

Quick validation

use PhilipRehberger\PasswordStrength\PasswordStrength;

// Returns true if score >= 3 (strong)
if (PasswordStrength::isStrong('MyP@ssw0rd!2026')) {
    echo 'Password is strong enough.';
}

// Custom minimum score
if (PasswordStrength::isStrong('MyP@ssw0rd!2026', minScore: 4)) {
    echo 'Password is very strong.';
}

API

PasswordStrength

Method Description
PasswordStrength::check(string $password): StrengthResult Analyse a password and return a result
PasswordStrength::isStrong(string $password, int $minScore = 3): bool Returns true if the score meets the minimum

StrengthResult

Property / Method Type Description
score int Strength score from 0 to 4
entropy float Shannon entropy in bits
isCommon bool Whether the password is in the common list
length int Password length in characters
suggestions array List of improvement suggestions
label(): string Human label: very weak, weak, fair, strong, very strong
toArray(): array Serialize to array

Score Meanings

Score Label Description
0 Very Weak Trivial or common password
1 Weak Low entropy or very short
2 Fair Moderate entropy, room to improve
3 Strong Good entropy and character variety
4 Very Strong Excellent entropy and length

Development

composer install
vendor/bin/phpunit
vendor/bin/pint --test
vendor/bin/phpstan analyse

License

MIT