I find this move concerning, and wish that the Founder had looked for a new CEO that shared his values rather than a Private Equity and Mergers Expert.
Furthermore, the change to the GRIT motto is worrying. Trust is useless without Transparency when it comes to code and security.
You must log in or # to comment.
why even have “Motto” if you are just going to renege on it.
In this case, having not having a motto would have made them able to get further down the enshittification path before anyone noticed. They just warned us.
though this also points out why such things as companies having “values” is laughable and should be ridiculed if they arent clearly enforced. All they do is scam people into thinking they might not be explitative shits which shouldnt be allowed or looked kindly upon.
So many people have to switch services now and even more will just become victims of the company after it becomes more shitty. All those people could have used some other service that is less likely to go shitty, which in turn would have given it more resources to improve.
I guess it’s time to move to vaultwarden sooner rather than later… This wasn’t supposed to be the weekend project, but fuck it; let’s roll with it!
My question is move to vaultwarden, and trust they will still develop the open source client apps, or just preemptively move to another system. The UX isnt perfect, but it seems a lot easier to use than kerpassxc. Time to do some research.
The company has long defined its values with the acronym “GRIT,” which used to stand for “Gratitude, Responsibility, Inclusion, and Transparency.” After May 4, it changed the acronym to stand for “Gratitude, Responsibility, Innovation, and Trust.”
It’s not as bad as the headline seems. Transparency is still in the motto. The actual change is:
But still. Why change it at all? Why replace “inclusion” with “innovation”?
It smells like Tech Bro.
There’s just no way to spin that positively, even giving them the benefit of the doubt, especially since they aren’t rolling it back. Someone spent effort to make that values change, so its not an accident nor a “nothingburger”.
Well, trust is literally the oposite of transparency. So i would call it quite bad, especially if you consider that right now i trust these guys with my credit card details, my taxID, all my passwords.
Exactly. In cybersec, trust is someting you try to avoid or at least minimize. Trying to use it as a selling point is ridiculous.
Or it’s something you earn through transparency.
That’s a great point.
I don’t want to trust them either. I don’t want to have to.
The only “devil’s advocate” argument I can think of is they’re trying to appeal to enterprise clients (who would not know that and want to “trust” a security company). That would explain the “I” change: “inclusion” (sadly) sounds political, “innovation” is like corporate catnip. Bitwarden could be trying to attract big fish to fund development, having their cake an eating it.
Because the “inclusive” part is already described by the first letter’s “story”?
Ah for fuck’s sake. Seems like every month I have to change something because some fucking company starts getting a taste for greed via data sucking. I’m goddamn sick of it.
Start using open source then
Enshitification
This is not great but the strength of vaultwarden on the back of the bitwarden brand will give us forked clients as soon as they stop allowing self-hosters to set their instance.
If things turn for the worse, hopefully Vaultwarden can fork the client as well
Get out now
Try keepass on self hosted sandstorm
Can keepass do passkeys?
It does but some of my passkeys didn’t work after migrating my bitwarden database
I don’t think so, but sandstorm can as of a few weeks ago (might not be in main branch yet)
I just went all in to bitwarden 🙃. Not ready to change again just yet but will be ready probably once it starts going to shit.
Well, it could be forked of course. The self-hosted version at least.
Gr8. Yet another critical service soon to be gobbled up by PE. I guess I’m moving to Proton Pass.
So does this affect vaultwarden at all?
Vaultwarden benefits from the development ideas in Bitwarden server, and especially the client app ecosystem that I am sure costs a small fortune to maintain. To go alone, vaultwarden will have a lot of work ahead of them and need to maintain a development community capable of maintaining the whole thing.
It will as there is not an VW official OS client nor browser plugin. It is undoubtedly a fucked state of affairs.
Always happens eventually. You can run Vaultwarden yourself if you have a homelab you trust so passwords never disappears.
Fuck :(
I use proton pass because I our a subscription to proton unlimited and proton pass lets me hide my emails by making a forwarded email which is helpful.
Update: After publication, an employee on the Bitwarden subreddit said that “Always free” had been restored on its pricing page, calling it an “oversight” by the marketing team. The product page for Bitwarden’s personal password manager remains unchanged.
We’re sorry we got caught
Oversight
They got community checked and backtracked hard… I have always endorsed bitwarden but that is becoming worrisome. :(
Getting hard to endorse anyone you don’t personally know at this point.
Yeah, you know those marketing team people. They totally went out of their way to make more work for themselves to change it with I’m sure zero instructions from higher up to do so.
Luckily BW is open source, and VaultWarden exists. If they enshitify, all it takes is a fork of the browser extensions and apps with a rebrand.
This right here is the only answer
Companies can try to steal the app but they can only steal the name
Exactly, IMO Vaultwarden should just fork the clients and extensions and officially take the lead. Bitwarden can just go the way of OpenOffice for all I care.
Yeah, this here is exactly the reason why anytime I have to migrate from any piece of software I’m migrating to something open source and standards compliant.
How would network hosting work, though? Like… do I need to pull my passwords down now?
You can export from any of the BW clients. Then import into sepf-hosted BW or VW.
Well, it was fun while it lasted, lol.
I’ve long wondered when this was going to happen. Their investors must have been frustrated about the lack of revenue per user growth (eg, screwing us over with annual price hikes and removing features from free plan)
