Password and Secrets Management Release Notes
Release notes for password managers and secrets management tools
Products (12)
Latest Password and Secrets Management Updates
- Mar 6, 2026
- Date parsed from source:Mar 6, 2026
- First seen by Releasebot:Mar 6, 2026
Password Manager 2026.2.1 (2988)
Bitwarden rolls out a robust update with vault export and archived item fixes, stronger diagnostics, and a wave of feature and dependency updates. Expect bug fixes, security improvements, and maintenance work plus CI and SDK bumps for a smoother, more secure experience.
Overview
Fixed issues affecting vault exports and archived items
Resolved missing password re-prompts when managing archived items
Enhanced internal diagnostics and development workflows
Streamlined dependency updates to support faster security fixesWhat's Changed
Feature Development
- [PM-26177] feat: Add base64url Data extensions by @iinuwa in #2294
- [PM-31592] feat: Update Sends who can view section by @andrebispo5 in #2325
- [PM-31890] feat: Update Sends password field by @andrebispo5 in #2333
- [PM-26177] feat: Add device auth key to keychain repository by @iinuwa in #2293
- [PM-31593] feat: API level support for Send authentication by @andrebispo5 in #2342
🐛 Bug fixes
- [PM-31687] fix: Prevent flight recorder crash when deleting multiple logs by @matt-livefront in #2324
- [PM-31830] fix: Fix archived cipher update on non-premium user by @fedemkr in #2343
- [PM-31654] fix: Update archive unavailable alert button style by @fedemkr in #2352
- [PM-32358] fix: Add master password reprompt for archive and unarchive by @matt-livefront in #2353
- [PM-32359] fix: Include archived ciphers in file exports by @matt-livefront in #2354
- [PM-32760] hotfix: RC Fix archive response upsert by @fedemkr in #2386
- [PM-32845] bug: RC Fix trusted device not remembered for new SSO users by @fedemkr in #2396
⚙️ Maintenance
Crowdin Pull by @bw-ghapp[bot] in #2331
- [PM-27525] chore: Fix spellings from initial spell check run by @matt-livefront in #2320
- [PM-27524] chore: Update setup-hooks.sh to work with git worktrees by @matt-livefront in #2336
- [PM-27047] chore: Migrate MockBiometricsRepository to Sourcery AutoMockable by @KatherineInCode in #2330
- [PM-26177] chore: Rename authenticator method to vaultAuthenticator by @iinuwa in #2296
Slim down and align with our current practices by @theMickster in #2338 - [PM-32095] ci: Update Test workflows summary step to list failures only by @vvolkgang in #2341
- [PM-31289] ci: Renovate - remove mint and swift groups by @vvolkgang in #2307
- [PM-31286] ci: Add workflow to enforce PR labels by @vvolkgang in #2344
- [PM-32095] ci: Output full test results log to the github run summary by @vvolkgang in #2356
[deps]: migrate Renovate config - autoclosed by @renovate[bot] in #2292
Crowdin Pull by @bw-ghapp[bot] in #2348
[deps]: Update actions/checkout action to v6 by @renovate[bot] in #2186
[PM-32095] ci: Run print step when test succeeds in test workflows by @vvolkgang in #2358
[deps]: Update GitHub Artifact Actions (major) by @renovate[bot] in #2211
📦 Dependency Updates
Update SDK to 9b59b09 (2.0.0-4315-7f4059e) by @bw-ghapp[bot] in #2326
Update public suffix list by @github-actions[bot] in #2332
Update SDK to e1e7d73 (2.0.0-4334-f954d14) by @bw-ghapp[bot] in #2334
Update SDK to 61f4745 (2.0.0-4377-8700dc7) by @bw-ghapp[bot] in #2335
Update SDK to f713c11 (2.0.0-4444-c0c3ee5) by @bw-ghapp[bot] in #2345
[deps]: Lock file maintenance by @renovate[bot] in #2002
Update public suffix list by @github-actions[bot] in #2349
[bre-1647] cherry pick build fix to rc43 by @aj-bw in #2362Full Changelog: v2026.2.0-bwpm...v2026.2.1-bwpm
Original source Report a problem
Builds Source: https://github.com/bitwarden/ios/actions/runs/22588327174 - Mar 6, 2026
- Date parsed from source:Mar 6, 2026
- First seen by Releasebot:Mar 6, 2026
Authenticator 2026.2.1 (497)
Changelog highlights broad stability and feature updates across data handling, sends access, device auth, and archiving plus fixes and maintenance. Expect base64url extensions, view/password tweaks, improved exports, SSO, and ongoing dependency/vocabulary cleanup. A full release with CI and dependency churn accompanies the update.
Overview
General under-the-hood improvements and bug fixes.
What's Changed
Feature Development
- [PM-26177] feat: Add base64url Data extensions by @iinuwa in #2294
- [PM-31592] feat: Update Sends who can view section by @andrebispo5 in #2325
- [PM-31890] feat: Update Sends password field by @andrebispo5 in #2333
- [PM-26177] feat: Add device auth key to keychain repository by @iinuwa in #2293
- [PM-31593] feat: API level support for Send authentication by @andrebispo5 in #2342
🐛 Bug fixes
- [PM-31687] fix: Prevent flight recorder crash when deleting multiple logs by @matt-livefront in #2324
- [PM-31830] fix: Fix archived cipher update on non-premium user by @fedemkr in #2343
- [PM-31654] fix: Update archive unavailable alert button style by @fedemkr in #2352
- [PM-32358] fix: Add master password reprompt for archive and unarchive by @matt-livefront in #2353
- [PM-32359] fix: Include archived ciphers in file exports by @matt-livefront in #2354
- [PM-32760] hotfix: RC Fix archive response upsert by @fedemkr in #2386
- [PM-32845] bug: RC Fix trusted device not remembered for new SSO users by @fedemkr in #2396
⚙️ Maintenance
- Crowdin Pull by @bw-ghapp[bot] in #2331
- [PM-27525] chore: Fix spellings from initial spell check run by @matt-livefront in #2320
- [PM-27524] chore: Update setup-hooks.sh to work with git worktrees by @matt-livefront in #2336
- [PM-27047] chore: Migrate MockBiometricsRepository to Sourcery AutoMockable by @KatherineInCode in #2330
- [PM-26177] chore: Rename authenticator method to vaultAuthenticator by @iinuwa in #2296
- Slim down and align with our current practices by @theMickster in #2338
- [PM-32095] ci: Update Test workflows summary step to list failures only by @vvolkgang in #2341
- [PM-31289] ci: Renovate - remove mint and swift groups by @vvolkgang in #2307
- [PM-31286] ci: Add workflow to enforce PR labels by @vvolkgang in #2344
- [PM-32095] ci: Output full test results log to the github run summary by @vvolkgang in #2356
- [deps]: migrate Renovate config - autoclosed by @renovate[bot] in #2292
- Crowdin Pull by @bw-ghapp[bot] in #2348
- [deps]: Update actions/checkout action to v6 by @renovate[bot] in #2186
- [PM-32095] ci: Run print step when test succeeds in test workflows by @vvolkgang in #2358
- [deps]: Update GitHub Artifact Actions (major) by @renovate[bot] in #2211
📦 Dependency Updates
- Update SDK to 9b59b09 (2.0.0-4315-7f4059e) by @bw-ghapp[bot] in #2326
- Update public suffix list by @github-actions[bot] in #2332
- Update SDK to e1e7d73 (2.0.0-4334-f954d14) by @bw-ghapp[bot] in #2334
- Update SDK to 61f4745 (2.0.0-4377-8700dc7) by @bw-ghapp[bot] in #2335
- Update SDK to f713c11 (2.0.0-4444-c0c3ee5) by @bw-ghapp[bot] in #2345
- [deps]: Lock file maintenance by @renovate[bot] in #2002
- Update public suffix list by @github-actions[bot] in #2349
- [bre-1647] cherry pick build fix to rc43 by @aj-bw in #2362
Full Changelog: v2026.2.0-bwa...v2026.2.1-bwa
Original source Report a problem
Builds Source: https://github.com/bitwarden/ios/actions/runs/22242374606 All of your release notes in one feed
Join Releasebot and get updates from Bitwarden and hundreds of other software products.
- March 2026
- No date parsed from source.
- First seen by Releasebot:Mar 5, 2026
2026.2.1
Bitwarden unlocks new usability and security upgrades: archive vault items on paid plans, autofill from the View Login page, biometric unlock for Flatpak, and higher PBKDF2 KDF limits. Admin Console adds Huntress SIEM integration. Secrets Manager CLI now injects secrets into Jenkins pipelines—refreshing workflow across teams.
(The listed release number is for the Bitwarden Server, other version numbers released in this cycle also include Web 2026.2.1, Browser Extension 2026.2.0, Mobile 2026.2.1, Desktop 2026.2.1, and CLI 2026.2.0)
Password Manager
- Item archiving: Users on paid subscriptions can now archive vault items to exclude them from search and from autofill without removing them from the vault.
- Autofill button on View Login: Autofill credentials directly from the View Login page in the browser extension.
- Biometric unlock for Flatpak: Flatpak-installed desktop apps now support unlock with biometrics.
- Increase minimum KDF iterations: If your PBKDF2 KDF iterations are below 600,000, the default level since release 2023.2.0, you'll be asked to update the setting or the increase will apply automatically when you next log in or unlock with your master password.
Admin Console
- Huntress SIEM integration: Bitwarden Teams and Enterprise organizations can now integrate with Huntress for security information and event management (SIEM).
Secrets Manager
- Jenkins integration: The Bitwarden Secrets Manager CLI can now be used to inject secrets into Jenkins Pipelines.
- Mar 5, 2026
- Date parsed from source:Mar 5, 2026
- First seen by Releasebot:Mar 6, 2026
Bitwarden Android by Bitwarden
Password Manager 2026.2.1 (21297)
BW announces a product update focused on security and reliability. Passkey support and improved browser autofill, bug fixes for archives and editing, accessibility improvements, and code‑level optimizations accompany SDK and dependency updates plus new cookie and auth flows. A solid stability release.
Overview
- Addressed security and authentication issues, including passkey support
- Improved browser compatibility and autofill behavior
- Fixed export, archiving, and item editing bugs
- Resolved issues with passphrase generation and date handling
- Improved accessibility and interface elements
- Enhanced stability, compatibility, and network request handling
What's Changed
✨ Community Highlight
- [PM-31980] Fix passkeys on some browsers by fixing JSON parsing by @Darkness4 in #6502
- [PM-22523] PM-19476: Allow empty string as word separator by @EranBoudjnah in #5334
- [PM-32022] Fix browser autofill dialog showing for non-default browsers by @Vateva in #6514
- [PM-32356] Fix: Use soft logout for token refresh failures to preserve account by @hwittenborn in #6545
Feature Development
- Update AGP to v9.0.0 by @david-livefront in #6479
- PM-31926: Add Autofill reminder for Vivaldi browser by @david-livefront in #6494
- [PM-31982] Add CookieDiskSource for cookie persistence by @SaintPatrck in #6504
- [PM-31993] Add deep link utilities for cookie vendor callbacks by @SaintPatrck in #6506
- [PM-31993] Add cookie vendor deep link intent filter by @SaintPatrck in #6507
- [PM-32011] Add cookie callback flow to AuthRepository by @SaintPatrck in #6510
- PM-31922: Remove deprecated Android block where possible by @david-livefront in #6512
- [PM-31615] feat: Updated Send network models to support email verification by @aj-rosado in #6519
- [PM-31614] feat: Added new UI for the Email verification on sends by @aj-rosado in #6488
- Update Google privileged browsers list by @github-actions[bot] in #6538
- [PM-31835] feat: add generator copy password field on send by @aj-rosado in #6508
🐛 Bug fixes
- PM-31888: Update the ZonedDateTimeSerializer to be more lenient when deserializing by @david-livefront in #6489
- [PM-30870] Fix editing blocked autofill URIs by @andrebispo5 in #6532
- PM-32354: Filter out archived items from CXP by @david-livefront in #6547
- PM-32353: Archive and Unarchive buttons should honor MP reprompt by @david-livefront in #6546
- 🍒 PM-32607: Label headers for accesibility by @david-livefront in #6578
- 🍒 [PM-32802] fix: 400 error when archiving/unarchiving org-owned ciphers by @SaintPatrck in #6596
⚙️ Maintenance
- Crowdin Pull by @bw-ghapp[bot] in #6491
- PM-31924: Remove the 'android.dependency.useConstraints' gradle property by @david-livefront in #6509
- Slim down and align with our current practices by @theMickster in #6518
- [PM-32251] Decouple SDK token repository from network module by @SaintPatrck in #6537
- Crowdin Pull by @bw-ghapp[bot] in #6539
- Clean up ColorExtensions tests by @david-livefront in #6551
- [PM-32200] ci: Add workflow to enforce PR labels by @vvolkgang in #6530
📦 Dependency Updates
- Update SDK to 2.0.0-5002-7f4059e7 by @bw-ghapp[bot] in #6481
- Update Firebase BOM to v34.9.0 by @david-livefront in #6493
- Update the gradlew Wrapper to v9.3.1 by @david-livefront in #6496
- Update to Kotlin v2.3.10 by @david-livefront in #6499
- Update SDK to 2.0.0-5021-f954d14b by @bw-ghapp[bot] in #6495
- Update SDK to 2.0.0-5046-d59280a3 by @bw-ghapp[bot] in #6511
- Update Kover to v0.9.7 by @david-livefront in #6516
- Update SDK to 2.0.0-5064-8700dc73 by @bw-ghapp[bot] in #6513
- Update SDK to 2.0.0-5087-3e8a45eb by @bw-ghapp[bot] in #6521
- Update SDK to 2.0.0-5131-c0c3ee5f by @bw-ghapp[bot] in #6531
- Update Anroidx dependencies by @david-livefront in #6536
- [deps]: Update com.google.devtools.ksp to v2.3.5 by @renovate[bot] in #6541
- Update SDK to 2.0.0-5210-4ffddfe5 by @bw-ghapp[bot] in #6533
- Update AGP to v9.0.1 by @david-livefront in #6543
- [PM-30703] Introduce CXF payload parser and update to alpha05 by @SaintPatrck in #6347
🎨 Other
- PM-31927: Pre-emptively patch Brave browser Autofill bug by @david-livefront in #6497
- [PM-31954] Add server communication models to ConfigResponseJson by @SaintPatrck in #6500
- PM-31953: Support multiple schemes for Duo, WebAuthn, and SSO callbacks by @david-livefront in #6498
- [PM-80371] Enhance CLAUDE.md using bitwarden-init plugin by @SaintPatrck in #6368
- PM-31925: Replace 'android' reference with logic in LibraryExtension by @david-livefront in #6520
- [PM-32029] Implement SDK interfaces for cookie management by @SaintPatrck in #6517
- PM-32146: Add back 'parent' param to webAuthn url by @david-livefront in #6527
- PM-31664: Add new SnackbarRelay type specific for the View Screen by @david-livefront in #6528
- [deps]: Lock file maintenance by @renovate[bot] in #6542
- PM-32252: Update View Item date information layout by @david-livefront in #6544
- [PM-29885] Implement SSO cookie vending authentication flow by @SaintPatrck in #6522
- [PM-32121] Add CookieAcquisition screen and ViewModel by @SaintPatrck in #6523
- Update RootNavScreen docs by @SaintPatrck in #6553
- [PM-32122] Add cookie acquisition navigation by @SaintPatrck in #6529
- [PM-32149] Send email verification error dialogs by @aj-rosado in #6535
- PM-29863: Update segmented control font by @david-livefront in #6555
- [PM-31810] Added logic to gate Send auth verification behind premium by @aj-rosado in #6556
- Fix incorrect apostrophe by @david-livefront in #6557
New Contributors
- @Darkness4 made their first contribution in #6502
- @EranBoudjnah made their first contribution in #5334
- @Vateva made their first contribution in #6514
- @hwittenborn made their first contribution in #6545
Full Changelog: v2026.2.0-bwpm...v2026.2.1-bwpm
Original source Report a problem
Builds Source: https://github.com/bitwarden/android/actions/runs/22503857145 - Mar 5, 2026
- Date parsed from source:Mar 5, 2026
- First seen by Releasebot:Mar 6, 2026
Bitwarden Android by Bitwarden
Authenticator 2026.2.1 (1363)
Bitwarden Android launches a release packed with stability fixes and enhancements. Expect under‑the‑hood improvements, passkey and autofill polish, cookie and session improvements, UI updates, and updated dependencies. A solid release note that signals real product changes and ongoing optimization.
Overview
General under-the-hood improvements and bug fixes.
What's Changed
✨ Community Highlight
- [PM-31980] Fix passkeys on some browsers by fixing JSON parsing by @Darkness4 in #6502
- [PM-22523] PM-19476: Allow empty string as word separator by @EranBoudjnah in #5334
- [PM-32022] Fix browser autofill dialog showing for non-default browsers by @Vateva in #6514
- [PM-32356] Fix: Use soft logout for token refresh failures to preserve account by @hwittenborn in #6545
Feature Development
- Update AGP to v9.0.0 by @david-livefront in #6479
- PM-31926: Add Autofill reminder for Vivaldi browser by @david-livefront in #6494
- [PM-31982] Add CookieDiskSource for cookie persistence by @SaintPatrck in #6504
- [PM-31993] Add deep link utilities for cookie vendor callbacks by @SaintPatrck in #6506
- [PM-31993] Add cookie vendor deep link intent filter by @SaintPatrck in #6507
- [PM-32011] Add cookie callback flow to AuthRepository by @SaintPatrck in #6510
- PM-31922: Remove deprecated Android block where possible by @david-livefront in #6512
- [PM-31615] feat: Updated Send network models to support email verification by @aj-rosado in #6519
- [PM-31614] feat: Added new UI for the Email verification on sends by @aj-rosado in #6488
- Update Google privileged browsers list by @github-actions[bot] in #6538
- [PM-31835] feat: add generator copy password field on send by @aj-rosado in #6508
🐛 Bug fixes
- PM-31888: Update the ZonedDateTimeSerializer to be more lenient when deserializing by @david-livefront in #6489
- [PM-30870] Fix editing blocked autofill URIs by @andrebispo5 in #6532
- PM-32354: Filter out archived items from CXP by @david-livefront in #6547
- PM-32353: Archive and Unarchive buttons should honor MP reprompt by @david-livefront in #6546
- 🍒 PM-32607: Label headers for accesibility by @david-livefront in #6578
- 🍒 [PM-32802] fix: 400 error when archiving/unarchiving org-owned ciphers by @SaintPatrck in #6596
⚙️ Maintenance
- Crowdin Pull by @bw-ghapp[bot] in #6491
- PM-31924: Remove the 'android.dependency.useConstraints' gradle property by @david-livefront in #6509
- Slim down and align with our current practices by @theMickster in #6518
- [PM-32251] Decouple SDK token repository from network module by @SaintPatrck in #6537
- Crowdin Pull by @bw-ghapp[bot] in #6539
- Clean up ColorExtensions tests by @david-livefront in #6551
- [PM-32200] ci: Add workflow to enforce PR labels by @vvolkgang in #6530
📦 Dependency Updates
- Update SDK to 2.0.0-5002-7f4059e7 by @bw-ghapp[bot] in #6481
- Update Firebase BOM to v34.9.0 by @david-livefront in #6493
- Update the gradlew Wrapper to v9.3.1 by @david-livefront in #6496
- Update to Kotlin v2.3.10 by @david-livefront in #6499
- Update SDK to 2.0.0-5021-f954d14b by @bw-ghapp[bot] in #6495
- Update SDK to 2.0.0-5046-d59280a3 by @bw-ghapp[bot] in #6511
- Update Kover to v0.9.7 by @david-livefront in #6516
- Update SDK to 2.0.0-5064-8700dc73 by @bw-ghapp[bot] in #6513
- Update SDK to 2.0.0-5087-3e8a45eb by @bw-ghapp[bot] in #6521
- Update SDK to 2.0.0-5131-c0c3ee5f by @bw-ghapp[bot] in #6531
- Update Anroidx dependencies by @david-livefront in #6536
- [deps]: Update com.google.devtools.ksp to v2.3.5 by @renovate[bot] in #6541
- Update SDK to 2.0.0-5210-4ffddfe5 by @bw-ghapp[bot] in #6533
- Update AGP to v9.0.1 by @david-livefront in #6543
- [PM-30703] Introduce CXF payload parser and update to alpha05 by @SaintPatrck in #6347
🎨 Other
- PM-31927: Pre-emptively patch Brave browser Autofill bug by @david-livefront in #6497
- [PM-31954] Add server communication models to ConfigResponseJson by @SaintPatrck in #6500
- PM-31953: Support multiple schemes for Duo, WebAuthn, and SSO callbacks by @david-livefront in #6498
- [PM-80371] Enhance CLAUDE.md using bitwarden-init plugin by @SaintPatrck in #6368
- PM-31925: Replace 'android' reference with logic in LibraryExtension by @david-livefront in #6520
- [PM-32029] Implement SDK interfaces for cookie management by @SaintPatrck in #6517
- PM-32146: Add back 'parent' param to webAuthn url by @david-livefront in #6527
- PM-31664: Add new SnackbarRelay type specific for the View Screen by @david-livefront in #6528
- [deps]: Lock file maintenance by @renovate[bot] in #6542
- PM-32252: Update View Item date information layout by @david-livefront in #6544
- [PM-29885] Implement SSO cookie vending authentication flow by @SaintPatrck in #6522
- [PM-32121] Add CookieAcquisition screen and ViewModel by @SaintPatrck in #6523
- Update RootNavScreen docs by @SaintPatrck in #6553
- [PM-32122] Add cookie acquisition navigation by @SaintPatrck in #6529
- [PM-32149] Send email verification error dialogs by @aj-rosado in #6535
- PM-29863: Update segmented control font by @david-livefront in #6555
- [PM-31810] Added logic to gate Send auth verification behind premium by @aj-rosado in #6556
- Fix incorrect apostrophe by @david-livefront in #6557
New Contributors
- @Darkness4 made their first contribution in #6502
- @EranBoudjnah made their first contribution in #5334
- @Vateva made their first contribution in #6514
- @hwittenborn made their first contribution in #6545
Full Changelog: v2026.2.0-bwa...v2026.2.1-bwa
Builds Source: https://github.com/bitwarden/android/actions/runs/22503857153
Original source Report a problem - Mar 4, 2026
- Date parsed from source:Mar 4, 2026
- First seen by Releasebot:Mar 4, 2026
1Password SCIM Bridge 2.9.14
2.9.14 is now available. 🎉
This patch includes a few performance-related improvements.
Subscribe to the RSS feed for 1Password SCIM Bridge release notes.
Helpful resources
- 1Password SCIM Bridge deployment examples on GitHub
- 1Password SCIM Bridge Helm chart on GitHub
- 1Password SCIM Bridge Docker image on Docker Hub
- 1Password SCIM Bridge on Google Cloud Marketplace
- 1Password SCIM Bridge on DigitalOcean Marketplace
Updates may take up to a few days to appear in each marketplace. If you don’t see a recent SCIM bridge update on the websites linked above, check back in a few days.
Original source Report a problem - Mar 3, 2026
- Date parsed from source:Mar 3, 2026
- First seen by Releasebot:Mar 4, 2026
Bitwarden Clients by Bitwarden
Web v2026.2.1
- Added email protected Sends
- Added background upgrade of KDF settings for accounts below allowed minimums
- Added prompt to upgrade KDF settings for accounts below allowed minimums
- Updated loading state UI for access intelligence
- Updated UI for individual subscription page
- Improved individual subscription page handling of edge cases
- Core cryptography improvements to master password salt
- Various under-the-hood improvements and minor bug fixes
- Mar 3, 2026
- Date parsed from source:Mar 3, 2026
- First seen by Releasebot:Mar 3, 2026
1Password Browser by 1Password
1Password in the browser 8.12.5
This is a Safari-only release.
We’ve fixed an issue that would prevent Autofill from working properly on many websites.
Original source Report a problem - Feb 26, 2026
- Date parsed from source:Feb 26, 2026
- First seen by Releasebot:Feb 27, 2026
February 26 2026 1Password for Linux 8.12.5
We’ve improved error handling when 1Password first opens to prevent the app from displaying a blank screen.
Original source Report a problem - Feb 26, 2026
- Date parsed from source:Feb 26, 2026
- First seen by Releasebot:Feb 26, 2026
1Password Windows by 1Password
1Password for Windows 8.12.5
We’ve improved error handling when 1Password first opens to prevent the app from displaying a blank screen.
Original source Report a problem