Bitwarden

A Model Context Protocol (MCP) server that provides AI assistants with secure access to Bitwarden password manager functionality through two complementary interfaces: Vault Management and CLI tools via Bitwarden CLI, and Organization Administration via Bitwarden Public API.

⚠️ Warning: This MCP server is designed exclusively for local use and must never be hosted publicly or exposed over a network. When you grant an AI assistant access to this server, you are providing the ability to read vault items including passwords, read/write vault data, access organization secrets, and expose credentials through AI responses. Use responsibly and at your own risk.

Features

Vault Management and CLI Tools

• Session Management: Unlock vault via native OS password dialog, lock vault, sync with server, check status
• Item Operations: List, retrieve, create, edit, delete, restore vault items (logins, secure notes, cards, identities)
• Folder Management: Organize items with folders
• Attachments: Upload, download, and manage file attachments
• Password Tools: Generate secure passwords and retrieve TOTP codes
• Bitwarden Send: Create and manage secure ephemeral shares (text/file)
• Organization Items: Move items to organizations, manage collections
• Device Approval: Approve or deny new device login requests
• Member Management: Confirm organization member registrations

Organization Administration

• Collections: Create, update, delete, and manage collection permissions
• Members: Invite, update roles, remove members, manage group assignments
• Groups: Create role-based access groups and assign members
• Policies: Configure and enforce organization security policies
• Audit Logs: Retrieve organization event history
• Subscriptions: View and update organization billing information
• Bulk Import: Import users and groups from external systems

Usage Examples

Vault:

• "List all my login items"
• "Get my credentials for github"
• "Create a new secure note for my home WiFi information"
• "Generate a 32-character password and save it for apple.com"
• "Create a Send link for this file"

Organization Administration:

• "List all members in my organization"
• "Invite user@example.com as an organization admin"
• "Create a 'Development Team' collection"
• "Show me the last 100 audit log events"
• "What security policies are enabled?"

Tools

Vault Management

• Session: lock, unlock, sync, status
• Retrieval: list, get
• Items: create_item, edit_item, delete, restore
• Folders: create_folder, edit_folder
• Attachments: create_attachment
• Organizations: create_org_collection, edit_org_collection, edit_item_collections, move, confirm
• Device Approval: device_approval_list, device_approval_approve, device_approval_approve_all, device_approval_deny, device_approval_deny_all
• Send: create_text_send, create_file_send, list_send, get_send, edit_send, delete_send, remove_send_password
• Utilities: generate

Organization Administration

• Collections: list_org_collections, get_org_collection, update_org_collection, delete_org_collection
• Members: list_org_members, get_org_member, invite_org_member, update_org_member, remove_org_member, reinvite_org_member, get_org_member_groups, update_org_member_groups
• Groups: list_org_groups, get_org_group, create_org_group, update_org_group, delete_org_group, get_org_group_members, update_org_group_members
• Policies: list_org_policies, get_org_policy, update_org_policy
• Events: get_org_events
• Subscriptions: get_org_subscription, update_org_subscription
• Import: import_org_users_and_groups

Security

• Never commit sensitive credentials to version control
• Store credentials securely using system keychains or environment managers
• Rotate session tokens regularly
• Review audit logs periodically for suspicious activity
• Consider using self-hosted or local LLMs when exposing sensitive vault data