Developer changelog
Subscribe to the changelog to stay up to date on recent changes to Shopify’s APIs and other developer products, as well as preview upcoming features and beta releases.
Vulnerable password validation on the Storefront API's Customer object
API
Effective November 16, 2021
Validation to identify vulnerable passwords has been added to the Storefront API's customerReset and customerResetByUrl mutations.
Now, when you try resetting a password to one that’s considered vulnerable, the API will return an error.