{"id":13452457,"url":"https://github.com/bitwarden/cli","last_synced_at":"2025-09-28T23:30:46.289Z","repository":{"id":18750781,"uuid":"85226880","full_name":"bitwarden/cli","owner":"bitwarden","description":"The command line vault (Windows, macOS, \u0026 Linux).","archived":true,"fork":false,"pushed_at":"2022-05-25T14:58:57.000Z","size":1827,"stargazers_count":1648,"open_issues_count":0,"forks_count":169,"subscribers_count":50,"default_branch":"master","last_synced_at":"2025-09-17T21:33:12.772Z","etag":null,"topics":["chocolatey","cli","homebrew","nodejs","npm","snap","typescript"],"latest_commit_sha":null,"homepage":"https://bitwarden.com","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/bitwarden.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null}},"created_at":"2017-03-16T18:01:59.000Z","updated_at":"2025-09-15T07:04:29.000Z","dependencies_parsed_at":"2022-08-07T09:00:56.207Z","dependency_job_id":null,"html_url":"https://github.com/bitwarden/cli","commit_stats":null,"previous_names":[],"tags_count":38,"template":false,"template_full_name":null,"purl":"pkg:github/bitwarden/cli","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/bitwarden%2Fcli","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/bitwarden%2Fcli/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/bitwarden%2Fcli/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/bitwarden%2Fcli/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/bitwarden","download_url":"https://codeload.github.com/bitwarden/cli/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/bitwarden%2Fcli/sbom","scorecard":{"id":240958,"data":{"date":"2025-08-11","repo":{"name":"github.com/bitwarden/cli","commit":"09d1e15e69dd9246aa4e177409bb4679cbced700"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":4.7,"checks":[{"name":"Code-Review","score":9,"reason":"Found 27/28 approved changesets -- score normalized to 9","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Maintained","score":0,"reason":"project is archived","details":["Warn: Repository is archived."],"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: SECURITY.md:1","Info: Found linked content: SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: SECURITY.md:1","Info: Found text in security policy: SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/build.yml:1","Warn: no topLevel permission defined: .github/workflows/enforce-labels.yml:1","Warn: no topLevel permission defined: .github/workflows/release.yml:1","Warn: no topLevel permission defined: .github/workflows/version-bump.yml:1","Warn: no topLevel permission defined: .github/workflows/workflow-linter.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Pinned-Dependencies","score":9,"reason":"dependency not pinned by hash detected -- score normalized to 9","details":["Warn: third-party GitHubAction not pinned by hash: .github/workflows/workflow-linter.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/bitwarden/cli/workflow-linter.yml/master?enable=pin","Warn: npmCommand not pinned by hash: .github/workflows/release.yml:200","Info:  24 out of  24 GitHub-owned GitHubAction dependencies pinned","Info:  15 out of  16 third-party GitHubAction dependencies pinned","Info:   1 out of   2 npmCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE.txt:0","Info: FSF or OSI recognized license: GNU General Public License v3.0: LICENSE.txt:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Branch-Protection","score":6,"reason":"branch protection is not maximal on development and all release branches","details":["Info: 'allow deletion' disabled on branch 'master'","Info: 'force pushes' disabled on branch 'master'","Warn: 'branch protection settings apply to administrators' is disabled on branch 'master'","Warn: required approving review count is 1 on branch 'master'","Warn: codeowners review is not required on branch 'master'","Warn: no status checks found to merge onto branch 'master'","Info: PRs are required in order to make changes on branch 'master'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact v1.22.1 not signed: https://api.github.com/repos/bitwarden/cli/releases/65261879","Warn: release artifact v1.22.0 not signed: https://api.github.com/repos/bitwarden/cli/releases/62033914","Warn: release artifact v1.21.1 not signed: https://api.github.com/repos/bitwarden/cli/releases/59540550","Warn: release artifact v1.21.0 not signed: https://api.github.com/repos/bitwarden/cli/releases/59269954","Warn: release artifact v1.20.0 not signed: https://api.github.com/repos/bitwarden/cli/releases/54901524","Warn: release artifact v1.22.1 does not have provenance: https://api.github.com/repos/bitwarden/cli/releases/65261879","Warn: release artifact v1.22.0 does not have provenance: https://api.github.com/repos/bitwarden/cli/releases/62033914","Warn: release artifact v1.21.1 does not have provenance: https://api.github.com/repos/bitwarden/cli/releases/59540550","Warn: release artifact v1.21.0 does not have provenance: https://api.github.com/repos/bitwarden/cli/releases/59269954","Warn: release artifact v1.20.0 does not have provenance: https://api.github.com/repos/bitwarden/cli/releases/54901524"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 30 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":0,"reason":"31 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw","Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg","Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275","Warn: Project is vulnerable to: GHSA-w573-4hg7-7wgq","Warn: Project is vulnerable to: GHSA-wm7h-9275-46v2","Warn: Project is vulnerable to: GHSA-fjxv-7rqg-78g4","Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h","Warn: Project is vulnerable to: GHSA-593f-38f6-jp5m","Warn: Project is vulnerable to: GHSA-x2rg-q646-7m2v","Warn: Project is vulnerable to: GHSA-jgmv-j7ww-jx2x","Warn: Project is vulnerable to: GHSA-76p3-8jx3-jpfq","Warn: Project is vulnerable to: GHSA-3rfm-jhwj-7488","Warn: Project is vulnerable to: GHSA-hhq3-ff78-jv3g","Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv","Warn: Project is vulnerable to: GHSA-44fp-w29j-9vj5","Warn: Project is vulnerable to: GHSA-4pg4-qvpc-4q3h","Warn: Project is vulnerable to: GHSA-g5hg-p3ph-g8qg","Warn: Project is vulnerable to: GHSA-fjgf-rc76-4x9p","Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j","Warn: Project is vulnerable to: GHSA-22r3-9w55-cj54","Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw","Warn: Project is vulnerable to: GHSA-76p7-773f-r4q5","Warn: Project is vulnerable to: GHSA-pq67-2wwv-3xjx","Warn: Project is vulnerable to: GHSA-8cj5-5rvv-wf4v","Warn: Project is vulnerable to: GHSA-4wf5-vphf-c2xc","Warn: Project is vulnerable to: GHSA-52f5-9888-hmc6","Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3","Warn: Project is vulnerable to: GHSA-hc6q-2mpp-qw7j","Warn: Project is vulnerable to: GHSA-4vvj-4cpr-p986","Warn: Project is vulnerable to: GHSA-j8xg-fqg3-53r7","Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-17T06:40:19.733Z","repository_id":18750781,"created_at":"2025-08-17T06:40:19.733Z","updated_at":"2025-08-17T06:40:19.733Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":276038062,"owners_count":25574251,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-09-20T02:00:10.207Z","response_time":63,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["chocolatey","cli","homebrew","nodejs","npm","snap","typescript"],"created_at":"2024-07-31T07:01:24.623Z","updated_at":"2025-09-28T23:30:45.711Z","avatar_url":"https://github.com/bitwarden.png","language":"TypeScript","readme":"\u003e **Archived**\n\u003e\n\u003e This repository is archived, please go to https://github.com/bitwarden/clients for future development.\n\n[![Github Workflow build on master](https://github.com/bitwarden/cli/actions/workflows/build.yml/badge.svg?branch=master)](https://github.com/bitwarden/cli/actions/workflows/build.yml?query=branch:master)\n[![Join the chat at https://gitter.im/bitwarden/Lobby](https://badges.gitter.im/bitwarden/Lobby.svg)](https://gitter.im/bitwarden/Lobby)\n\n# Bitwarden Command-line Interface\n\n[![Platforms](https://imgur.com/AnTLX0S.png \"Platforms\")](https://help.bitwarden.com/article/cli/#download--install)\n\nThe Bitwarden CLI is a powerful, full-featured command-line interface (CLI) tool to access and manage a Bitwarden vault. The CLI is written with TypeScript and Node.js and can be run on Windows, macOS, and Linux distributions.\n\n![CLI](https://raw.githubusercontent.com/bitwarden/brand/master/screenshots/cli-macos.png \"CLI\")\n\n## Download/Install\n\nYou can install the Bitwarden CLI multiple different ways:\n\n**NPM**\n\nIf you already have the Node.js runtime installed on your system, you can install the CLI using NPM. NPM makes it easy to keep your installation updated and should be the preferred installation method if you are already using Node.js.\n\n```bash\nnpm install -g @bitwarden/cli\n```\n\n**Native Executable**\n\nWe provide natively packaged versions of the CLI for each platform which have no requirements on installing the Node.js runtime. You can obtain these from the [downloads section](https://help.bitwarden.com/article/cli/#download--install) in the documentation.\n\n**Other Package Managers**\n\n- [Chocolatey](https://chocolatey.org/packages/bitwarden-cli)\n  ```powershell\n  choco install bitwarden-cli\n  ```\n- [Homebrew](https://formulae.brew.sh/formula/bitwarden-cli)\n  ```bash\n  brew install bitwarden-cli\n  ```\n- [Snap](https://snapcraft.io/bw)\n  ```bash\n  sudo snap install bw\n  ```\n\n## Documentation\n\nThe Bitwarden CLI is self-documented with `--help` content and examples for every command. You should start exploring the CLI by using the global `--help` option:\n\n```bash\nbw --help\n```\n\nThis option will list all available commands that you can use with the CLI.\n\nAdditionally, you can run the `--help` option on a specific command to learn more about it:\n\n```bash\nbw list --help\nbw create --help\n```\n\n**Detailed Documentation**\n\nWe provide detailed documentation and examples for using the CLI in our help center at https://help.bitwarden.com/article/cli/.\n\n## Build/Run\n\n**Requirements**\n\n- [Node.js](https://nodejs.org) v16.13.1.\n  - Testing is done against Node 16, other versions may work, but are not guaranteed.\n- NPM v8\n\n**Run the app**\n\n```bash\nnpm install\nnpm run sub:init # initialize the git submodule for jslib\nnpm run build:watch\n```\n\nYou can then run commands from the `./build` folder:\n\n```bash\nnode ./build/bw.js login\n```\n\n## We're Hiring!\n\nInterested in contributing in a big way? Consider joining our team! We're hiring for many positions. Please take a look at our [Careers page](https://bitwarden.com/careers/) to see what opportunities are currently open as well as what it's like to work at Bitwarden.\n\n## Contribute\n\nCode contributions are welcome! Please commit any pull requests against the `master` branch. Learn more about how to contribute by reading the [`CONTRIBUTING.md`](CONTRIBUTING.md) file.\n\nSecurity audits and feedback are welcome. Please open an issue or email us privately if the report is sensitive in nature. You can read our security policy in the [`SECURITY.md`](SECURITY.md) file.\n\n## Prettier\n\nWe recently migrated to using Prettier as code formatter. All previous branches will need to updated to avoid large merge conflicts using the following steps:\n\n1. Check out your local Branch\n2. Run `git merge ec53a16c005e0dd9aef6845c18811e8b14067168`\n3. Resolve any merge conflicts, commit.\n4. Run `npm run prettier`\n5. Commit\n6. Run `git merge -Xours 910b4a24e649f21acbf4da5b2d422b121d514bd5`\n7. Push\n\n### Git blame\n\nWe also recommend that you configure git to ignore the prettier revision using:\n\n```bash\ngit config blame.ignoreRevsFile .git-blame-ignore-revs\n```\n","funding_links":[],"categories":["TypeScript","Password Managers","typescript","Other"],"sub_categories":["Misc","Software"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbitwarden%2Fcli","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fbitwarden%2Fcli","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbitwarden%2Fcli/lists"}