Passwords Evolved for WordPress Plugin Directory
Passwords Evolved is a WordPress app, with a 5.0 average rating from 2 reviews, as of July 8, 2026.
Passwords Evolved is a WordPress Plugin Directory app by Carl Alexander. With a rating of 5.0★ from 2 reviews.
AppRanks data: Passwords Evolved ranks #0 in Authentication on WordPress Plugin Directory, placing it in the top 1% of that category.
AppRanks verdict
Generated from live marketplace data — refreshed daily
Passwords Evolved is a category-leading WordPress app with a limited review volume. It is listed in the Security category on WordPress Plugin Directory, which AppRanks treats as the canonical taxonomy node for ranking and competitor comparison. 2 reviews put it in the early-traction tier — useful for early-stage stores willing to be on the leading edge. Early-traction review counts are sensitive to single launch periods or feature events, so a 30-day re-check before bigger commitments often resolves whether the trend is sustained. Paid-only pricing means evaluating fit on the marketplace listing or via the developer's documentation before installing. AppRanks tracks rating, review count, pricing tier, and category position daily — the figures on this page reflect the most recent scrape from the canonical WordPress Plugin Directory listing.
Pros
- +High average rating (5.0★) signals consistent merchant satisfaction
- +Published by Carl Alexander — established developer track record
Cons
- −Limited review base (2) — ratings can shift significantly with new feedback
Looking to switch from Passwords Evolved?
See Passwords Evolved's alternatives ranked by audit score, rating, and review velocity.
How Passwords Evolved works
Show full descriptionShow less
Important Notice: This plugin is no longer supported on wordpress.org. Please open issues on GitHub.
The goal of this plugin is to shore up the WordPress authentication using standard security practice recommendations. At this time, the plugin improves WordPress authentication by doing the following:
Enforcing uncompromised passwords This plugin prevents someone from using passwords that have appeared in data breaches. Whenever someone logs into a WordPress site, it’ll verify their password using the Have I been pwned? API. If their password appeared in a data breach, the plugin will prevent them from logging in until they reset their password.
By default, this level of enforcement is only done on an account that has the “administrator” role. You can change which roles have their passwords enforced from the settings page. For people that have a role where there’s no password enforcement, the plugin will show a warning when they log in with a compromised password.
The enforcement of uncompromised password also extends to when someone resets or changes their password. That said, in those situations, using an uncompromised password is mandatory. Someone will never be able to reset or change their password to one that’s appeared in a security breach. (As long as the plugin is able to contact the API.)
Using stronger password hashing The plugin also encrypts passwords using either the bcrypt and Argon2 hashing functions. These are the strongest hashing functions available in PHP. Argon2 is available natively starting with PHP 7.2, but the plugin can also encrypt passwords on older PHP versions using the libsodium compatibility layer introduced in WordPress 5.2.
You don’t have to do anything to convert your password hash to a stronger encryption standard. The plugin will take care of converting it the next time that you log in after installing the plugin. If you decide to remove the plugin, your password will continue working and remain encrypted until you reset it.
It’s also worth noting that using a stronger hashing function is only important in the advent of a data breach. A stronger password hashing function makes decrypting the passwords from the data breach a lot harder to do. This combined with the enforcement of uncompromised passwords will help ensure that those passwords are never decrypted. (Or at least without significant effort.)
Category rankings
As of Jul 8, 2026- Authentication#0of 45Top 1%
- Have-i-been-pwned#0of 1Top 1%
- Password#0of 31Top 1%
- Security#0of 635Top 1%
See 90-day rank history for each category
Track daily rank changes, category shifts, and position volatility.
Competitors & alternatives
Passwords Evolveddoesn't have curated competitor matchups yet. Other tracked security apps on WordPress:
Where Passwords Evolved stands in the Security category
Passwords Evolved ranks #0 of 635 apps in the Security category, placing it in the top 1% of the listing.
Frequently asked questions
What is Passwords Evolved?
Passwords Evolved is an app for WordPress. It currently holds a 5.0-star rating from 2 merchant reviews, and AppRanks has been tracking its public marketplace data on a daily refresh cycle. It is listed under the Security category on AppRanks, where you can see its current category position, review-velocity trend, and how it compares against the top alternatives in the same space. Developed by Carl Alexander.
Who uses Passwords Evolved?
Currently around 1,000 active stores have installed Passwords Evolved. Its review base is still building, which usually maps to early-stage merchants and stores piloting a new workflow. It is part of the Security category on WordPress.