I want this but as a Linux distribution.
-
@nina_kali_nina @luana @mcc oh for fuck's sake
-
@mcc 1Password says "We want team members at all levels to take the approach of actively learning AI best practices, identifying opportunities to apply AI in meaningful ways, and driving innovative solutions in their daily work. Embracing the future of AI isn't just encouraged at 1Password—it's an essential part of how we will be successful at 1Password."
Pretty upset about KeepassXC on a personal level.
@itamarst @mcc hopefully that includes Verification Driven Development tools
https://levon003.github.io/2026/01/07/verification-driven-development.html -
My understanding is that Bitwarden and KeePassXC, the two open source password managers, are *both* using random code generators at this point, which is terrifying as those are the exact tools where a small error could have the largest negative impact, and also tools that once you've committed to using it you can't quickly back out if they enter a code quality decline
@mcc KeePassXC has merged only a little bit of AI-assisted code, not in any critical parts. And there has been no merges of that kind of code since last November. KeePassXC is not preferred to use AI code, but they require people to let them know if they are trying to push code that includes it. It doesn't mean the code will not be reviewed before it's even accessed. Majority of the developers are NOT using AI. Read their blog post.
-
-
My understanding is that Bitwarden and KeePassXC, the two open source password managers, are *both* using random code generators at this point, which is terrifying as those are the exact tools where a small error could have the largest negative impact, and also tools that once you've committed to using it you can't quickly back out if they enter a code quality decline
@mcc Also, the main difference is that KeePassXC at least tracks the pull requests where AI-assisted code is used, and they require it. There's no way to confirm the same with Bitwarden. The pull request may or may not have been using AI. There's no clear track record how long they've been using it.
-
@mcc Yeah, KeePassXC going this route really hurt. I'm probably going to migrate back to a text file encrypted with gnupg for basic password management, but I have no idea what I'm going to use for one-time passcodes.
@mcc @jcnotwit the unix password manager does exactly that (and much more) and has an otp plugin, works fine. https://www.passwordstore.org/
-
@amin I do like the sound of the passwords being individual files. It'd make syncing them a whole lot easier!
-
@nina_kali_nina @luana @mcc oh FFS!!!! 🤬 I guess it’s back to KeepassXC and trying to sync across devices
-
@tris @mcc we are trying to be.
We recently introduced a policy of no LLM contributions with exceptions if people need to use LLM for accessibility purposes.
It's probably impossible to declaratively state all submissions are 100% human created but we have our stance and hope people will respect that and we will also reject submissions if we doubt authenticity.
-
My understanding is that Bitwarden and KeePassXC, the two open source password managers, are *both* using random code generators at this point, which is terrifying as those are the exact tools where a small error could have the largest negative impact, and also tools that once you've committed to using it you can't quickly back out if they enter a code quality decline
@mcc Oh come on for fucks sake. I just migrated from KeepasXC to Vaultwarden/Bitwarden be außer of this shit. Passwordstore is great but the client and browser integration sucks. So now what?
-
@nina_kali_nina @luana @mcc oh FFS!!!! 🤬 I guess it’s back to KeepassXC and trying to sync across devices
@not_a_label @nina_kali_nina @luana @mcc Keepass XC is also accepting slop code contributions
-
My understanding is that Bitwarden and KeePassXC, the two open source password managers, are *both* using random code generators at this point, which is terrifying as those are the exact tools where a small error could have the largest negative impact, and also tools that once you've committed to using it you can't quickly back out if they enter a code quality decline
@mcc damn, i was hoping bitwarden would know better, been very happy with their stuff, now not sure what to do
-
@nina_kali_nina @luana @mcc oh FFS!!!! 🤬 I guess it’s back to KeepassXC and trying to sync across devices
@not_a_label fwiw I've been syncing everything (including keepsss files) between Linux and Android devices using Syncthing, which replaced Dropbox for me, and I'm very happy with it indeed.
-
@not_a_label @nina_kali_nina @luana @mcc Keepass XC is also accepting slop code contributions
@sabrinabonfert @nina_kali_nina @luana @mcc we can’t have nice things any more, can we
-
@redezem @nina_kali_nina @luana @mcc I’m coming to the conclusion that anything of substance will have LLM code in it wether intentionally or otherwise
-
@nina_kali_nina @luana @mcc Bloody hell. Maybe at least those are some cosmetic changes, like, you know, fixing indentation or something equally benign?
#bitWarden -
@nina_kali_nina @luana @mcc The file being “hidden” is an issue with Github’s UI, the source code is not actually “hidden” from people who want to read it. Also, who cares if master breaks? Do you pull Bitwarden from master and compile it or do you download pre-built releases? A lot of anti-AI sentiment today seems to have zero thought put behind it.
-
@debacle@framapiaf.org @mcc@mastodon.social ...so linux or bsd or hurd? Linux distro uses linux kernel, bsd distro uses bsd, and no one uses hurd
-
@nina_kali_nina @luana @mcc @gabrielesvelto
Not saying they are not writing crap with claude but the commit in question (https://github.com/bitwarden/clients/commit/5dc49f2) is mainly renaming an icon module. -
@nina_kali_nina @luana @mcc @gabrielesvelto
Not saying they are not writing crap with claude but the commit in question (https://github.com/bitwarden/clients/commit/5dc49f2) is mainly renaming an icon module.@gabrielesvelto @nina_kali_nina @mcc @Timshel using a LLM for that is ridiculous and unreliable
