Yes, they do — in fact, if it four independent affirmations:
- Clicking the Edit button, which communicates an intent to make modifications.
- Clicking the
icon in the Password field, which by itself directly communicates an intent to change the password. - Clicking Use this password to replace the old password.
- Clicking Save to explicitly confirm that changes made should be kept.
The only changes relative to the old UI is that the “Select” button has now been renamed to “Use this password”, and that the superfluous prompt after the second step has thankfully been eliminated.
If your argument is that a user may be intending to edit a different field (not the password), then that only removes Affirmation #1 and Affirmation #4 — there are still two independent affirmations that the user intends to update the password (and a safety hatch, as previously described).
I think you may have been talking about what happens when a user manually edits the password, and by now have realized that the old UI also never provided a warning for this action. Personally, I wouldn’t mind if a warning is shown only when manually editing a password field. But such a warning should state the following: