That’s why I think 1Password should be DITCHED
No ….
Since it is closed source we must trust something as critical as our passwords to them. Yeah, they claim audits…
I agree with you.
Plus we already got Proton Pass which can perfectly replace it.
And Proton Pass never had a Security vulnerability in it … never …. (they also had ofc)
To your vulnerability firstly it was back in 2023, so a bit old.
Secondly this vulnerability isn’t a real concern.
This vulnerability is actually just a standard warning to not run untrusted software on your machine. In this case the attacker can leverage a command line program to read your unlocked password vault, but without that he’d still be able to steal any user owned files on your machine and access your bank through your browser to steal your money.
The same “vulnerability” sudo and run0 also have, so yeah.