If anything happens security-wise, we’d need to force users to set a new password on their next sign-in.