Read this if you use a password manager

Since I keep reading about data breaches in the news, here’s a shameless plug for Password Slug, one of my other extensions. In the downtime while waiting for the Chrome Web Store team to review LA v14, I finally brought Password Slug out of early access. After two years of private beta testing, I think it’s ready for prime time.

Eww, what in the world is a password slug? The easiest way to explain it is: you know how in Hollywood movies you often see a scene where two keys are required to launch a nuclear missile? Password Slug borrows this idea and applies it to logins. Your password is broken into two parts stored in different locations:

1. The current password in your password manager (you can leave this untouched)
2. An additional text appended to the password (i.e., the “slug”) by Password Slug

You need to input both parts in order to sign in. With this setup, even if your password manager gets hacked, you can sleep better at night knowing the hackers only have one part of your password, so your accounts aren’t actually compromised.

I built Password Slug using a modern dev stack (Svelte + Vite + TypeScript) when LastPass got hacked the first time, and it has worked surprisingly well. There’s a one-time setup where you have to add the slug to the passwords for all the accounts you want to protect, and after that you’re all set. I suggest giving Password Slug a try as a free and effective way to increase your password security. As with all our products, there’s no tracking whatsoever — you own your own data.