Disclosures:
Note: Due to a bug, passwords were written to an internal log before completing the bcrypt hashing, resulting in passwords being stored in plaintext in the log. The bug was fixed in May 2018.
Site uses a slow hashing function, this is disclosed "on-site", in the docs, FAQ, etc.