xF2 Add-on Password Tools 3.9.0

Thanks to @NamePros for sponsoring this update.

• Update compromised password alert text to be less awkward
• On updating passwords, remove any compromised password alerts to avoid user confusion
• Add "Force email two factor authentication on compromised password" option (default disabled)
• Add "Pwned password minimum count (soft)" option.
  This allows a user to change a password to a known compromised value which is under a given number of known hits. This still generates compromised password alerts

• Force global namespace for functions which are known to be optimizable to bytecode in php, or known global functions to avoid a current namespace lookup for the function.
• Add "On login; alert the user if they have a known compromised password" option (default enabled)
• Add "Minimum time between triggering compromised password alerts on login" option (default 24 hours)

• Require php 7.2+
• Fix php 8 compatibility

• Requires php 7.0+
• Now depends on Standard Library by Xon
• Supports XF2.2+

• Fix "Undefined index: match_sequence" error when "Force Reject" option is enabled

Require XF2.1, drop XF2.0 support and use built in composer support.
Update zxcvbn-php library to be more inline with zxcvbn-js
Fix incorrect phrase being used on haveibeenpwned api failure

• Add add-on & options icon
• Fix issue blocking user login when the user's password storage requires upgrading and they have a weak password.

• Fix XF2.1 compatibility with admin login screen (include changes in package)

• Fix XF2.1 compatibility with admin login screen

Update for XF2.1, supports XF2.0 & XF2.1

• Wire up Show password enable/disable flag to XF2.1 native feature
• Wire up zxcvbn enable/disable flag to XF2.1 native feature
• Does not push zxcvbn blacklist flags into XF2.1 native version, but still validates them on password submission.