logoalt Hacker News

wooptootoday at 3:45 PM1 replyview on HN

This is precisely why I don't use BW CLI. Use pass or gopass for all your CLI tokens and sync them via a private git repo.

Keep the password manager as a separate desktop app and turn off auto update.


Replies

SV_BubbleTimetoday at 6:18 PM

A supply chain issue that hadn’t happened to BW CLI before is exactly why you use other CLIs that seem to be identically vulnerable to the same issues?