Example: a user on the web is requesting to have a new account created
Before letting the administrator create the account, the user selected password must be validated.
Currently there is already a Password policy option under Project "your projectname” > Security > Password policy.
Which can always be extended in a custom microflow during password save actions. Something to consider would be for example checking the password against top 10000 weakest passwords list.