Secret Key unencrypted within browser developer settings - normal behavior?

Hi there,

today I found out, when I go into my developer section of any of my browsers I found out, that 1Password does store a lot about your account:

mail-address
username
vault name
creation date of account
userUUID
using something like Fastmail-extension within 1Password
... and much much more

And I also found out, that the Secret Key is stored there unencrypted and visible for anyone with access to this machine (and browser).

Even when 1Password is locked, this information is available.

How to find it? Just go into developer mode of any browser, search there for the extension and look at databases > accounts > a_by_uuid

Is this 'normal' behavior? Within your security white paper you're talking about that it is stored encrypted on all computers. But why is it shown here in clear text?

browser extension

discussion

vault management

Forum Discussion

Secret Key unencrypted within browser developer settings - normal behavior?

Featured discussions

February 2026 at 1Password: Benchmarking AI security & helping developers access secrets everywhere

Recent discussions

Secret Key unencrypted within browser developer settings - normal behavior?

Can't sign in to support system

Support requests unanswered

Account Access Issue, Billing Concern & Lack of Support Response

Accidentally deleted a passkey