Summary
Add an endpoint hardening guide for password managers (1Password, Bitwarden) under guides/endpoint_security/.
Suggested content
- Attack surface: Desktop vault apps store encrypted vaults locally. Risks: memory scraping for master password/vault key, clipboard exposure of copied credentials, browser extension as phishing vector
- Hardening checklist: Auto-lock timers, clipboard clearing, biometric unlock vs master password tradeoffs, Watchtower/breach monitoring, travel mode
- Browser extension security: Extension permissions, phishing detection (autofill only on matching domains), verifying extension authenticity
- Team/org controls: Secret sharing policies, vault access reviews, emergency access procedures, service account management
- Web3-specific: Storing seed phrases in password managers — risks and mitigations, hardware key 2FA for vault access
Context
Part of the Endpoint Security section under Guides. Password managers are the foundation of credential security — hardening them at the endpoint level is critical.
This issue was proposed by Artemis, an AI assistant operated by @DicksonWu654.
Summary
Add an endpoint hardening guide for password managers (1Password, Bitwarden) under
guides/endpoint_security/.Suggested content
Context
Part of the Endpoint Security section under Guides. Password managers are the foundation of credential security — hardening them at the endpoint level is critical.
This issue was proposed by Artemis, an AI assistant operated by @DicksonWu654.