twhidden-bitwardenBitwarden & Vaultwarden password manager integration. Use when storing, retrieving, generating, or managing passwords and credentials. Wraps the Bitwarden CL...
Install via ClawdBot CLI:
clawdbot install TWhidden/twhidden-bitwardenGrade Good — based on market validation, documentation quality, package completeness, maintenance status, and authenticity signals.
Sends data to undocumented external endpoint (potential exfiltration)
Report → https://clawhub.ai/skills/twhidden-bitwardenCalls external URL not in known-safe list
https://github.com/TWhidden/openclaw-skill-bitwardenAI Analysis
The skill appears to be a legitimate Bitwarden/Vaultwarden CLI wrapper with proper credential management through environment variables. While it communicates with external Bitwarden servers (as required for its functionality), there's no evidence of unauthorized data exfiltration, credential harvesting, or hidden malicious behavior beyond the documented API calls to the configured password manager service.
Audited Apr 17, 2026 · audit v1.0
Generated Mar 20, 2026
This scenario involves using the skill to securely store and retrieve API keys, database passwords, and service account credentials for CI/CD pipelines. It automates credential injection during deployments, reducing manual handling and enhancing security by avoiding hardcoded secrets in scripts.
IT support teams can utilize this skill to manage shared credentials for internal systems like servers, routers, and applications. It enables quick access during troubleshooting while maintaining audit trails and enforcing security policies through automated session locking.
E-commerce platforms can integrate the skill to manage administrative passwords for backend systems and payment gateways. It helps protect sensitive customer data by ensuring only authorized personnel access credentials, reducing the risk of breaches from exposed passwords.
In healthcare, this skill can automate the retrieval of login credentials for electronic health record (EHR) systems and medical devices. It streamlines access for staff while complying with regulations like HIPAA by keeping passwords encrypted and access controlled.
Offer this skill as part of a premium subscription service for businesses, providing enhanced features like multi-user support, advanced audit logs, and priority support. Revenue is generated through monthly or annual fees per user or organization.
Sell enterprise licenses to large organizations, including custom integrations, dedicated support, and training services. Revenue comes from one-time license purchases or annual support contracts, targeting industries with strict security requirements.
Provide a free version with basic functionality like password retrieval and generation, while charging for advanced features such as automated credential rotation, team collaboration tools, and compliance reporting. Revenue is driven by upgrades to premium tiers.
💬 Integration Tip
Ensure the Bitwarden CLI is installed globally and environment variables are securely configured before integration to avoid authentication failures during automated tasks.
Scored Apr 19, 2026
Set up and use 1Password CLI (op). Use when installing the CLI, enabling desktop app integration, signing in (single or multi-account), or reading/injecting/running secrets via op.
Access and manage Bitwarden/Vaultwarden passwords securely using the rbw CLI.
Set up and use 1Password CLI (op). Use when installing the CLI, enabling desktop app integration, signing in (single or multi-account), or reading/injecting/...
Set up and use Bitwarden CLI (bw). Use when installing the CLI, authenticating (login/unlock), or reading secrets from your vault. Supports email/password, API key, and SSO authentication methods.
A fully local password management skill for OpenClaw with AES-256-GCM encryption, password generation, and sensitive info detection.
Securely access and manage secrets with 1Password CLI using a Service Account token for vault operations like read, write, edit, and delete.