mcp-server
Verified Safeby bitwarden
Overview
Enables AI assistants to securely manage Bitwarden personal vaults and organization administration functions locally.
Installation
npx -y @bitwarden/mcp-serverEnvironment Variables
- BW_SESSION
- BW_CLIENT_ID
- BW_CLIENT_SECRET
- BW_API_BASE_URL
- BW_IDENTITY_URL
- BW_ALLOWED_DIRECTORIES
Security Notes
The server demonstrates robust security practices. It includes extensive input validation using Zod schemas, command allowlisting, and safe command execution (`child_process.spawn` with `shell: false`) to prevent command injection. API endpoints are validated against an allowlist, and API parameters are sanitized. File path operations are highly secured with a multi-layered `validateFilePath` function that prevents path traversal, Unicode bypasses, and enforces an allowlist of allowed directories. Critical credentials are retrieved from environment variables. A strong warning emphasizes that the server is designed for local use only and must never be exposed publicly, shifting responsibility for secure deployment and AI data exposure to the user.
Similar Servers
mcp-server-atlassian-bitbucket
Connects AI assistants to Bitbucket repositories, pull requests, and code to get insights, automate reviews, and manage development workflows.
pb_mcp_server
Provides an MCP interface for AI assistants to interact with PocketBase databases for data management, authentication, and administrative tasks.
authenticator_mcp
Enables AI agents to securely retrieve 2FA codes, passwords, and account lists from a local desktop Authenticator App for automated login processes.
PowerShell.MCP
Enables AI assistants to execute arbitrary PowerShell commands and CLI tools within a persistent, shared PowerShell console session on a local Windows system.