Obtained my Master's in Computer Science. Love architecture, design, clean implementation and team collaboration. Believe in passing that knowledge on through question answers, docs and readable code.
Is there some way to secure password manager communication with plugins? The idea of sending passwords from plugin to plugin seems a bit freaky to me but I'm probably just ignorant of the solutions used.
In the case of KeepassXC, you do not need plugins. All of the functionality is contained in the core application.
If you want to use a browser extension to autofill fields in the browser, these are made by the core team also. So they should be trustworthy and secure. In any case nothing is sent over a network. The transfer of a password from the database to the browser is done on your local machine.
If you have doubts, then you can skip using the extensions. You can research it further and inspect the code if you want to have confidence using it.
Obtained my Master's in Computer Science. Love architecture, design, clean implementation and team collaboration. Believe in passing that knowledge on through question answers, docs and readable code.
Thanks for the great info. I'd be more worried about using multiple third-party sources for plugins. The more you rely on different people the more likely you are to introduce malicious actors. It sounds like KeepassXC would be worth looking into.
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
Is there some way to secure password manager communication with plugins? The idea of sending passwords from plugin to plugin seems a bit freaky to me but I'm probably just ignorant of the solutions used.
In the case of KeepassXC, you do not need plugins. All of the functionality is contained in the core application.
If you want to use a browser extension to autofill fields in the browser, these are made by the core team also. So they should be trustworthy and secure. In any case nothing is sent over a network. The transfer of a password from the database to the browser is done on your local machine.
If you have doubts, then you can skip using the extensions. You can research it further and inspect the code if you want to have confidence using it.
Thanks for the great info. I'd be more worried about using multiple third-party sources for plugins. The more you rely on different people the more likely you are to introduce malicious actors. It sounds like KeepassXC would be worth looking into.