Marcin WicharyJust the little push I needed.
(Already half-switched to Appleโs Passwords but might re-think that โ have half a year to figure it out! Please send recs.)
SamuelJohnson@mwichary I ditched LastPass for Bitwarden (on Linux and Android). I pay for it and wife and I share passwords as needed. I use 2FA for important things -- Yubikeys. A few things are kept offline. Overall I'm happy with it. I know about Vaultwarden and will try it but think Bitwarden offers greater mitigation for my actual risks.
Bruce Schneier's app is worth a look if you prefer offline only. I think
Steve Purcell@samueljohnson @mwichary I use and really like Bitwarden, but apparently they just started using LLMs on their client repositories, which doesn't inspire confidence for a security product.
@sanityinc @mwichary I have seen that claim but no authoritative source yet. I am not convinced in any case that it's necessarily a bad thing. If, eg, they're using AI to find bugs that might go undetected otherwise. The code is open source and subjected to 3rd party audits. No doubt some of these will be using AI too before long.
floris ๐@samueljohnson @sanityinc @mwichary I saw this as well yesterday, I think this was where I read it: https://mastodon.social/@mcc/116110912928005524 (also mentioning KeePassXC)
@samueljohnson @sanityinc @mwichary and I also followed the advice I saw recently to block the Claude github user so you can see easily when a repository has contributions from it and sure enough!
