@BlackBeans, thanks for elaborating. It sounds indeed doable and would be the more powerful solution.
It’s still a lot more involved though. With the original proposal, there is a single point of concern: Getting and hashing the password without exposing it. Your suggestion would mean a couple more critical parts that would need auditing.
I can only partly agree. I think there is a middleground in frequency of use, where memorisation doesn’t yet happen automatically, yet doing it deliberately would still save time in the long run.
It’s also about confidence. Assume I lose my phone on vacation. I’d be completely helpless if I haven’t memorised any passwords, phone numbers, or credit card numbers, with which I can acces my e-mails, call contacts, and get my credit card suspended (because it never rains, but it pours, and I’ve lost my wallet as well).
All this information I’d rather not store in Anki as cleartext.
That said, I see how it would be difficult to protect against malicious add-ons or JS. I think it’d be possible, but I understand that you can’t or won’t impose this responsibility on Anki, in addition to all the others it already has.
Thank you all for your input!