Everyone loves “Star Wars.” Unfortunately, everyone also loves short passwords. Hence, several “Star Wars” related entries have made the list of the worst passwords of 2015.

Password management firm SplashData has released its annual list of the 25 worst passwords. The top two for the fifth year in a row: “password” and “123456.” The “Star Wars” related passwords that made the list: “princess,” “starwars,” and “solo.” While “princess” could be an ambiguously defined word, the study seems to assume it refers to Princess Leia.

Last year, Batman and Superman made the worst passwords list, but this year, the World’s Finest aren’t anywhere to be found.

Here’s the full list, and how far up/down they moved in rank from last year:

123456 (unchanged from 2014) password (unchanged) 12345678 (Up 1) qwerty (Up 1) 12345 (Down 2) 123456789 (Unchanged) football (Up 3) 1234 (Down 1) 1234567 (Up 2) baseball (Down 2) welcome (New) 1234567890 (New) abc123 (Up 1) 111111 (Up 1) 1qaz2wsx (New) dragon (Down 7) master (Up 2) monkey (Down 6) letmein (Down 6) login (New) princess (New) qwertyuiop (New) solo (New) passw0rd (New) starwars (New)

SplashData recommends following the ever-popular password safety tips: at least 12 characters long with mixed types of characters; don’t use the same password across multiple websites; and consider using a password manager.

I’d suggest LastPass as a manager, which can generate sufficiently long and complicated passwords for each site. Other password managers include KeePass (for Linux users). You might also consider using Facebook, Google+, or Twitter logins for sites offering that function.

What popular culture aspects will inspire 2016’s worst passwords list? Deadpool? “Finding Dory?” The winner of this year’s presidential election? Who knows, but whatever it is, it’ll surely be short to type and as flawed as 2015’s entries.

(Updated 5/20/16)

Tags: passwords • Star Wars • Tech • year in review