Forum Discussion

New Contributor

6 months ago

1Password guest account for a dev machine?

Hello friends, I've been reading about the Shai-Hulud/Sha1-Hulud malware which is currently spreading through npm packages with its TruffleHog payload, and there are plenty of other examples of supp...

security

1P_Phil

Moderator

6 months ago

Hi matthewf ,

Thanks for the note, fundamentally the mechanics seem solid to me. We have some new tooling which may make things a little easier if you are on a Family / Team account (links below).

I'm checking internally regarding the acceptable use question.

For Family / Team / Business accounts, we have Service Account Tokens which can be used in-place of logins in the CLI and SDKs. Then you can issue a service token to a Docker Instance on either a per-vault basis with different permissions. That should pretty well insulate you from malicious actors. Here's a link to learn more.

https://developer.1password.com/docs/service-accounts

Cheers,
Phil & Team

Forum Discussion

1Password guest account for a dev machine?

Featured discussions

Developer newsletter: May 2026

Recent discussions

1password locks within 10 seconds on High Performance or Dynamic resolution screen share on macOS

Feature Request: Can we get a gh auth login style flow for the CLI?

Browser extension WebAuthn PRF extension not spec-compliant

Service Accounts in the GUI?

Linux beta breaks git signing - removes execute bit on op-ssh-sign