All @bitwarden/cli versions

@bitwarden/[email protected] rejected Risk: 100 SEE LICENSE IN LICENSE.txt

@bitwarden/cli @2026.4.0

rejected
This version was rejected. It did not pass GreenFlagged's security review and is not served by the registry. The findings and risk dispositions below explain why.
npm Repository Homepage Tarball
100
Risk Score
SEE LICENSE IN LICENSE.txt
License
Yes
Install Scripts
27
Dependencies
0
Dev Dependencies
6505.1 KB
Package Size
Published

A secure and free password manager for all of your devices.

Maintainers

mchecinskibwracostabwagallesfntylerbbieteaj-bwbribitwardenapixley_bwbwvgrassia

Keywords

bitwardenpasswordvaultpassword managercli

Dependencies (27)

PackageConstraintRegistry Status
koa 3.1.1 auto_approved
lunr 2.3.9 auto_approved
open 8.4.2 auto_approved
rxjs 7.8.1 auto_approved
chalk 4.1.2 auto_approved
jsdom 26.1.0 auto_approved
jszip 3.10.1 auto_approved
lowdb 1.0.0 auto_approved
tldts 7.0.22 auto_approved
multer 2.0.2 rejected
semver 7.7.3 auto_approved
zxcvbn 4.4.2 auto_approved
core-js 3.48.0 auto_approved
inquirer 8.2.6 auto_approved
koa-json 2.0.2 auto_approved
commander 14.0.0 auto_approved
form-data 4.0.4 auto_approved
papaparse 5.5.3 auto_approved
node-fetch 2.7.0 auto_approved
node-forge 1.3.2 auto_approved
@koa/multer 4.0.0 auto_approved
@koa/router 15.3.0 auto_approved
big-integer 1.6.52 auto_approved
browser-hrtime 1.1.8 auto_approved
koa-bodyparser 4.4.1 auto_approved
proper-lockfile 4.1.2 auto_approved
https-proxy-agent 7.0.6 auto_approved

Transitive Dependency Tree

130 transitive deps max depth 10
  ├─ @koa/multer 4.0.0 → 4.0.0
  ├─ @koa/router 15.3.0 → 15.3.0
  ├─ big-integer 1.6.52 → 1.6.52
  ├─ browser-hrtime 1.1.8 → 1.1.8
  ├─ chalk 4.1.2 → 4.1.2
  ├─ commander 14.0.0 → 14.0.0
  ├─ core-js 3.48.0
  ├─ form-data 4.0.4 → 4.0.4
  ├─ https-proxy-agent 7.0.6 → 7.0.6
  ├─ inquirer 8.2.6
  ├─ jsdom 26.1.0 → 26.1.0
  ├─ jszip 3.10.1 → 3.10.1
  ├─ koa 3.1.1
  ├─ koa-bodyparser 4.4.1 → 4.4.1
  ├─ koa-json 2.0.2 → 2.0.2
  ├─ lowdb 1.0.0 → 1.0.0
  ├─ lunr 2.3.9 → 2.3.9
  ├─ multer 2.0.2
  ├─ node-fetch 2.7.0
  ├─ node-forge 1.3.2
  ├─ open 8.4.2 → 8.4.2
  ├─ papaparse 5.5.3 → 5.5.3
  ├─ proper-lockfile 4.1.2 → 4.1.2
  ├─ rxjs 7.8.1 → 7.8.1
  ├─ semver 7.7.3 → 7.7.3
  ├─ tldts 7.0.22 → 7.0.22
├─ zxcvbn 4.4.2 → 4.4.2
  ├─ agent-base ^7.1.2 → 7.1.4
  ├─ ansi-styles ^4.1.0 → 4.3.0
  ├─ asynckit ^0.4.0
  ├─ co-body ^6.0.0 → 6.2.0
  ├─ combined-stream ^1.0.8 → 1.0.8
  ├─ copy-to ^2.0.1 → 2.0.1
  ├─ cssstyle ^4.2.1
  ├─ data-urls ^5.0.0 → 5.0.0
  ├─ debug ^4.4.3 → 4.4.3
  ├─ debug 4 → 4.4.3
  ├─ decimal.js ^10.5.0 → 10.6.0
  ├─ define-lazy-prop ^2.0.0
  ├─ es-set-tostringtag ^2.1.0 → 2.1.0
  ├─ graceful-fs ^4.1.3 → 4.2.11
  ├─ graceful-fs ^4.2.4 → 4.2.11
  ├─ hasown ^2.0.2 → 2.0.3
  ├─ html-encoding-sniffer ^4.0.0
  ├─ http-errors ^2.0.1 → 2.0.1
  ├─ http-proxy-agent ^7.0.2 → 7.0.2
  ├─ https-proxy-agent ^7.0.6 → 7.0.6
  ├─ is-docker ^2.1.1
  ├─ is-potential-custom-element-name ^1.0.1 → 1.0.1
  ├─ is-promise ^2.1.0
  ├─ is-wsl ^2.2.0
  ├─ koa-compose ^4.1.0 → 4.2.0
  ├─ koa-is-json 1 → 1.0.0
  ├─ lie ~3.3.0 → 3.3.0
  ├─ lodash 4 → 4.18.1
  ├─ mime-types ^2.1.12 → 2.1.35
  ├─ nwsapi ^2.2.16 → 2.2.23
  ├─ pako ~1.0.2 → 1.0.11
  ├─ parse5 ^7.2.1 → 7.3.0
  ├─ path-to-regexp ^8.3.0 → 8.4.2
  ├─ pify ^3.0.0 → 3.0.0
  ├─ readable-stream ~2.3.6 → 2.3.7
  ├─ retry ^0.12.0 → 0.12.0
  ├─ rrweb-cssom ^0.8.0 → 0.8.0
  ├─ saxes ^6.0.0 → 6.0.0
  ├─ setimmediate ^1.0.5
  ├─ signal-exit ^3.0.2 → 3.0.7
  ├─ steno ^0.4.1 → 0.4.4
  ├─ streaming-json-stringify 3 → 3.1.0
  ├─ supports-color ^7.1.0 → 7.2.0
  ├─ symbol-tree ^3.2.4 → 3.2.4
  ├─ tldts-core ^7.0.22 → 7.0.29
  ├─ tough-cookie ^5.1.1 → 5.1.2
  ├─ tslib ^2.1.0 → 2.8.1
  ├─ type-is ^1.6.18 → 1.6.18
  ├─ w3c-xmlserializer ^5.0.0 → 5.0.0
  ├─ webidl-conversions ^7.0.0 → 7.0.0
  ├─ whatwg-encoding ^3.1.1 → 3.1.1
  ├─ whatwg-mimetype ^4.0.0
  ├─ whatwg-url ^14.1.1 → 14.2.0
  ├─ ws ^8.18.0 → 8.20.0
├─ xml-name-validator ^5.0.0 → 5.0.0
  ├─ @hapi/bourne ^3.0.0 → 3.0.0
  ├─ agent-base ^7.1.0 → 7.1.4
  ├─ agent-base ^7.1.2 → 7.1.4
  ├─ color-convert ^2.0.1
  ├─ core-util-is ~1.0.0 → 1.0.3
  ├─ debug ^4.3.4 → 4.4.3
  ├─ debug 4 → 4.4.3
  ├─ delayed-stream ~1.0.0 → 1.0.0
  ├─ depd ~2.0.0 → 2.0.0
  ├─ entities ^6.0.0 → 6.0.1
  ├─ es-errors ^1.3.0 → 1.3.0
  ├─ function-bind ^1.1.2 → 1.1.2
  ├─ get-intrinsic ^1.2.6 → 1.3.1
  ├─ graceful-fs ^4.1.3 → 4.2.11
  ├─ has-flag ^4.0.0 → 4.0.0
  ├─ has-tostringtag ^1.0.2 → 1.0.2
  ├─ hasown ^2.0.2 → 2.0.3
  ├─ iconv-lite 0.6.3 → 0.6.3
  ├─ immediate ~3.0.5
  ├─ inflation ^2.0.0 → 2.1.0
  ├─ inherits ~2.0.4 → 2.0.4
  ├─ inherits ~2.0.3 → 2.0.4
  ├─ isarray ~1.0.0 → 1.0.0
  ├─ json-stringify-safe 5 → 5.0.1
  ├─ media-typer 0.3.0 → 0.3.0
  ├─ mime-db 1.52.0
  ├─ mime-types ~2.1.24 → 2.1.35
  ├─ ms ^2.1.3 → 2.1.3
  ├─ process-nextick-args ~2.0.0 → 2.0.1
  ├─ qs ^6.5.2 → 6.15.1
  ├─ raw-body ^2.3.3 → 2.5.3
  ├─ readable-stream 2 → 2.3.8
  ├─ safe-buffer ~5.1.1 → 5.1.2
  ├─ setprototypeof ~1.2.0 → 1.2.0
  ├─ statuses ~2.0.2 → 2.0.2
  ├─ string_decoder ~1.1.1 → 1.1.1
  ├─ tldts ^6.1.32 → 6.1.86
  ├─ toidentifier ~1.0.1 → 1.0.1
  ├─ tr46 ^5.1.0 → 5.1.1
  ├─ type-is ^1.6.16 → 1.6.18
  ├─ util-deprecate ~1.0.1 → 1.0.2
  ├─ webidl-conversions ^7.0.0 → 7.0.0
  ├─ whatwg-mimetype ^4.0.0
  ├─ whatwg-url ^14.0.0 → 14.2.0
  ├─ xml-name-validator ^5.0.0 → 5.0.0
├─ xmlchars ^2.2.0
  ├─ async-function ^1.0.0
  ├─ async-generator-function ^1.0.0 → 1.0.0
  ├─ bytes ~3.1.2 → 3.1.2
  ├─ call-bind-apply-helpers ^1.0.2 → 1.0.2
  ├─ core-util-is ~1.0.0 → 1.0.3
  ├─ es-define-property ^1.0.1 → 1.0.1
  ├─ es-errors ^1.3.0 → 1.3.0
  ├─ es-object-atoms ^1.1.1 → 1.1.1
  ├─ function-bind ^1.1.2 → 1.1.2
  ├─ generator-function ^2.0.0 → 2.0.1
  ├─ get-proto ^1.0.1
  ├─ gopd ^1.2.0
  ├─ has-symbols ^1.1.0 → 1.1.0
  ├─ has-symbols ^1.0.3 → 1.1.0
  ├─ hasown ^2.0.2 → 2.0.3
  ├─ http-errors ~2.0.1 → 2.0.1
  ├─ iconv-lite ~0.4.24 → 0.4.24
  ├─ inherits ~2.0.3 → 2.0.4
  ├─ isarray ~1.0.0 → 1.0.0
  ├─ math-intrinsics ^1.1.0 → 1.1.0
  ├─ media-typer 0.3.0 → 0.3.0
  ├─ mime-db 1.52.0
  ├─ mime-types ~2.1.24 → 2.1.35
  ├─ ms ^2.1.3 → 2.1.3
  ├─ process-nextick-args ~2.0.0 → 2.0.1
  ├─ punycode ^2.3.1 → 2.3.1
  ├─ safe-buffer ~5.1.0 → 5.1.2
  ├─ safe-buffer ~5.1.1 → 5.1.2
  ├─ safer-buffer >= 2.1.2 < 3.0.0 → 2.1.2
  ├─ side-channel ^1.1.0 → 1.1.0
  ├─ string_decoder ~1.1.1 → 1.1.1
  ├─ tldts-core ^6.1.86
  ├─ tr46 ^5.1.0 → 5.1.1
  ├─ unpipe ~1.0.0 → 1.0.0
  ├─ util-deprecate ~1.0.1 → 1.0.2
├─ webidl-conversions ^7.0.0 → 7.0.0
  ├─ depd ~2.0.0 → 2.0.0
  ├─ es-errors ^1.3.0 → 1.3.0
  ├─ function-bind ^1.1.2 → 1.1.2
  ├─ inherits ~2.0.4 → 2.0.4
  ├─ mime-db 1.52.0
  ├─ object-inspect ^1.13.3 → 1.13.4
  ├─ punycode ^2.3.1 → 2.3.1
  ├─ safe-buffer ~5.1.0 → 5.1.2
  ├─ safer-buffer >= 2.1.2 < 3 → 2.1.2
  ├─ setprototypeof ~1.2.0 → 1.2.0
  ├─ side-channel-list ^1.0.0 → 1.0.1
  ├─ side-channel-map ^1.0.1 → 1.0.1
  ├─ side-channel-weakmap ^1.0.2 → 1.0.2
  ├─ statuses ~2.0.2 → 2.0.2
├─ toidentifier ~1.0.1 → 1.0.1
  ├─ call-bound ^1.0.2 → 1.0.4
  ├─ es-errors ^1.3.0 → 1.3.0
  ├─ get-intrinsic ^1.2.5 → 1.3.1
  ├─ object-inspect ^1.13.4 → 1.13.4
  ├─ object-inspect ^1.13.3 → 1.13.4
├─ side-channel-map ^1.0.1 → 1.0.1
  ├─ async-function ^1.0.0
  ├─ async-generator-function ^1.0.0 → 1.0.0
  ├─ call-bind-apply-helpers ^1.0.2 → 1.0.2
  ├─ call-bound ^1.0.2 → 1.0.4
  ├─ es-define-property ^1.0.1 → 1.0.1
  ├─ es-errors ^1.3.0 → 1.3.0
  ├─ es-object-atoms ^1.1.1 → 1.1.1
  ├─ function-bind ^1.1.2 → 1.1.2
  ├─ generator-function ^2.0.0 → 2.0.1
  ├─ get-intrinsic ^1.2.5 → 1.3.1
  ├─ get-intrinsic ^1.3.0 → 1.3.1
  ├─ get-proto ^1.0.1
  ├─ gopd ^1.2.0
  ├─ has-symbols ^1.1.0 → 1.1.0
  ├─ hasown ^2.0.2 → 2.0.3
  ├─ math-intrinsics ^1.1.0 → 1.1.0
├─ object-inspect ^1.13.3 → 1.13.4
  ├─ async-function ^1.0.0
  ├─ async-generator-function ^1.0.0 → 1.0.0
  ├─ call-bind-apply-helpers ^1.0.2 → 1.0.2
  ├─ es-define-property ^1.0.1 → 1.0.1
  ├─ es-errors ^1.3.0 → 1.3.0
  ├─ es-object-atoms ^1.1.1 → 1.1.1
  ├─ function-bind ^1.1.2 → 1.1.2
  ├─ generator-function ^2.0.0 → 2.0.1
  ├─ get-intrinsic ^1.3.0 → 1.3.1
  ├─ get-proto ^1.0.1
  ├─ gopd ^1.2.0
  ├─ has-symbols ^1.1.0 → 1.1.0
  ├─ hasown ^2.0.2 → 2.0.3
├─ math-intrinsics ^1.1.0 → 1.1.0
  ├─ async-function ^1.0.0
  ├─ async-generator-function ^1.0.0 → 1.0.0
  ├─ call-bind-apply-helpers ^1.0.2 → 1.0.2
  ├─ es-define-property ^1.0.1 → 1.0.1
  ├─ es-errors ^1.3.0 → 1.3.0
  ├─ es-object-atoms ^1.1.1 → 1.1.1
  ├─ function-bind ^1.1.2 → 1.1.2
  ├─ generator-function ^2.0.0 → 2.0.1
  ├─ get-proto ^1.0.1
  ├─ gopd ^1.2.0
  ├─ has-symbols ^1.1.0 → 1.1.0
  ├─ hasown ^2.0.2 → 2.0.3
├─ math-intrinsics ^1.1.0 → 1.1.0
  ├─ es-errors ^1.3.0 → 1.3.0
  ├─ function-bind ^1.1.2 → 1.1.2

Changes from v2025.3.0

Dependency Changes

ChangePackageVersion
added semver 7.7.3
added core-js 3.48.0
removed argon2 0.41.1
changed koa 2.15.4 → 3.1.1
changed jsdom 26.0.0 → 26.1.0
changed tldts 6.1.77 → 7.0.22
changed multer 1.4.5-lts.1 → 2.0.2
changed commander 11.1.0 → 14.0.0
changed form-data 4.0.1 → 4.0.4
changed papaparse 5.5.2 → 5.5.3
changed node-fetch 2.6.12 → 2.7.0
changed node-forge 1.3.1 → 1.3.2
changed @koa/multer 3.0.2 → 4.0.0
changed @koa/router 13.1.0 → 15.3.0

Script Changes

+ preinstall+ dist:bit:lin-arm64+ dist:oss:lin-arm64+ package:bit:lin-arm64+ package:oss:lin-arm64

File Changes

4 added 2 removed 5 modified size delta: +15876.1 KB

SAST Findings (7)

CRITICAL MAL-2026-3020: Malicious code in @bitwarden/cli (npm) osv

--- _-= Per source details. Do not edit below this line.=-_ ## Source: amazon-inspector (c6fb2336936a86f37fc2018f8e68dc9989ffc3e79aa23297bf470de178201f50) The package @bitwarden/cli was found to contain malicious code. ## Source: ghsa-malware (8a8c7958926d5ec3795102e9114dfaa649ae3160afb9159ec2c46f044018b776) Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated immediately from a different computer. The package should be removed, but as full control of the computer may have been given to an outside entity, there is no guarantee that removing the package will remove all malicious software resulting from installing it.

HIGH Package has 'preinstall' script install-scripts

Script: node bw_setup.js

HIGH Missing gitHead — previous versions had it provenance

This version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: GitHub Actions.

HIGH Publisher changed: kspearrin → GitHub Actions (on 2026-04-22) provenance

This version was published by a different npm account than previous versions on 2026-04-22. This could indicate a legitimate maintainer transition or an account compromise.

HIGH New obfuscated file: bw1.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New file with network + code execution: bw1.js source-diff

Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

Review Summary

Risk score: 100 (capped from 289). Findings: 1 critical (+40), 5 high (+125), 4 medium (+40), 28 low (+84), 1 info (+0).

Published to npm: