rbw-bitwarden
Security checks across malware telemetry and agentic risk
Overview
This is an instruction-only guide for using the rbw Bitwarden CLI, and its sensitive password-manager behavior is disclosed and aligned with that purpose.
Install rbw only from a trusted package source or the upstream project. Before using this skill, understand that rbw will access your Bitwarden vault and may keep unlocked session material in memory for the configured timeout; use shorter lock timeouts, avoid clipboard copying on shared machines, and enable SSH-agent integration only when you intend rbw to sign SSH challenges.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.