Forum Discussion

New Contributor

1 month ago

1Password guest account for a dev machine?

Hello friends, I've been reading about the Shai-Hulud/Sha1-Hulud malware which is currently spreading through npm packages with its TruffleHog payload, and there are plenty of other examples of supp...

security

1P_Phil

Moderator

1 month ago

Hi matthewf ,

Thanks for the note, fundamentally the mechanics seem solid to me. We have some new tooling which may make things a little easier if you are on a Family / Team account (links below).

I'm checking internally regarding the acceptable use question.

For Family / Team / Business accounts, we have Service Account Tokens which can be used in-place of logins in the CLI and SDKs. Then you can issue a service token to a Docker Instance on either a per-vault basis with different permissions. That should pretty well insulate you from malicious actors. Here's a link to learn more.

https://developer.1password.com/docs/service-accounts

Cheers,
Phil & Team

Forum Discussion

1Password guest account for a dev machine?

Featured discussions

December 2025 at 1Password: More browser options, easier sign-in, and safer saving and filling

Recent discussions

Event API Item usage

Events API

Can't complete recovery (Error 451)

Developer Newsletter (Aug 2025)

Environments (Beta) not working using Nextjs 14.2.26