Release Notes

On this page:

    Bitwarden believes source code transparency is an absolute requirement for security solutions like ours. View full, detailed Release Notes in GitHub using any of the following links:

    Release Announcements

    Dates on this page represent Cloud Server and Web releases. Bitwarden incrementally updates each client application (Desktop, Browser Extension, Mobile, etc.) and for self-hosted servers following the initial release date to ensure feature efficacy and stability. As a result, client applications and self-hosted servers should expect listed features following the initial release.


    Want Release Announcements delivered straight to your inbox?

    Or subscribe to the Bitwarden Status RSS Feed.


    The Bitwarden team is pleased to release a set of features and updates continuing our mission of making password management easy and accessible for individuals and businesses:


    Deprecation Announcement: The Business Portal has been deprecated. Enterprise Organizations can configure Policies and Login with SSO from the Organization Manage tab.

    • Vault Timeout Policy: The Vault Timeout policy will apply a maximum Vault timeout duration for all members of your Organization (see here for details).
    • Disable Personal Vault Export Policy: The Disable Personal Vault Export policy will prohibit non-Owner/non-Admin members of your Organization from exporting private Vault data (see here for details).
    • Auto-scale Organization Seats: Teams and Enterprise Organizations will automatically scale up user seats as new users are invited. Organizations can set a limit on scaling to prevent the seat count from exceeding a specified number (see here for details).
    • Custom Role - Improved Collection Permissions: Collection-management permissions for the Custom role have been expanded to include granular controls over whether the user can create, edit, or delete assigned or all Collections (see here for details).
    • Admin Password Reset - Update Password after Reset: Passwords reset by an Admin must now be updated by the user they belong to immediately when they log in to Bitwarden (see here for details).
    • Browser Extension - Autofill Span Elements: The Browser Extension can now auto-fill custom fields in the innerText of HTML <span> elements (see here for details).
    • Browser Extension - Automatic Biometrics Prompt: The Browser Extension can now automatically prompt for your biometric input when opened. You can toggle this behavior from the Settings menu (see here for details).
    • Web Vault - Dark Mode: The Web Vault now has dark mode (see here for details)!
    • CLI - generate Passphrase Options: The bw generate --passphrase command now includes the options --capitalize and --includeNumber (see here for details).


    The latest release of Bitwarden focuses on often requested improvements to existing functionality:

    • FIDO2 WebAuthn on Mobile: Two-step Login via FIDO2 WebAuthn is now supported on iOS and Android (see here for details).
    • Admin Password Reset - Automatic Enrollment Improvement: The Automatic Enrollment policy option will now prevent users from withdrawing from Admin Password Reset (see here for details).
    • Browser Extension - Select Folder from Save Bar: You can now select which Folder to save an item to directly from the Browser Extension’s save prompt (see here for details).
    • Browser Extension - Custom Field Context Menu Item: You can now copy an HTML element name directly from the Browser Extension’s context menu for easy custom field creation (see here for details).
    • Web Vault - Policies Relocation: Enterprise Policies can now only be configured from your Organization’s ManagePolicies screen, rather than from the Business Portal.
    • CAPTCHA Validation: Starting with this release, we’re turning on hCaptcha validation to protect against bot attacks like credential stuffing. Please note, challenges in the CLI are delivered differently than in other client applications (see here for CLI details).



    Interested in becoming a Provider? To get started, we ask that:

    • Your business has an active Enterprise Organization.
    • Your business has a client ready to be onboarded under your Provider.

    If you’re not ready to start a Provider, the Bitwarden team is eager to support your Bitwarden journey as a reseller or customer.

    Contact Us

    The latest release of Bitwarden is focused on enabling Managed Service Providers (MSPs) to support their customers’ password management needs:

    • Provider Portal: The Provider Portal allows Managed Service Providers (MSPs) and Resellers to create and administer Organizations on behalf of customers. Using the Portal, Providers can seamlessly support credential management across multiple customers (see here for details).
    • Share Verbiage Change: We’ve updated the Share button to Move to Organization to make it cleared that shared items are owned by the Organization. Additionally, we’ve updated the “shared item” indicator () to match the Collections indicator ().
    • CLI move Command: In keeping with the above item, the CLI share command has been changed to move (see here for details).


    The Bitwarden team is happy to announce the rollout of Admin Password Reset, the latest feature purpose-built to help enterprises seeking to ensure password security at scale. This release includes:

    • Admin Password Reset: Enterprise Organizations can enroll in Admin Password Reset to allow designated administrators to reset the Master Password of Organization users (see here for details).
    • Master Password Re-prompt: Use the new Master Password re-prompt option to require verification of your Master Password to access sensitive Vault items as designated by the user (see here for details).
    • Bulk User Management: Organization Owners and Admins can now re-send invitations, confirm accepted users, and remove users from an Organization in-bulk (see here for details).
    • Event Log Export: Export event logs directly from the Web Vault (see here for details).
    • Directory Connector API Key Authentication: Starting with this release, users of Directory Connector will need to use the Organization API Key to login.
    • Directory Connector Sync Limit Increase: Directory Connector can now sync an unlimited number of users or groups, where previously the limit was set at 2000 of either. To sync more than 2000 users or groups, toggle the new Sync Option (see here for details).
    • Autofill On Page Load Enhancements: The Browser Extension’s Auto-fill on page load feature has been upgraded to more flexibly fit users’ unique needs (see here for details).
    • More CLI Options: We’ve added a few new CLI options, including easy retrieval of Vault item notes (bw get notes <id>) and the ability to set maximum access count for Sends (bw send create --maxAccessCount <#>).
    • Web Developer Autofill Exclusion: Web Development contributors can now prevent the Browser Extension from auto-filling a given form element by adding a data-bwignore attribute (e.g. data-bwignore="true") to an <input> element.


    The Bitwarden team is pleased to release a set of features and updates continuing our mission of making password management easy and accessible for individuals and businesses:

    • Privacy & Security Options for Send: Use a new Send Privacy option to hide your email from recipients (see here for details). To prevent abuse, File Sends will now require a verified email address. Additionally, Enterprise Organizations can implement a new policy to set the availability of the Hide Email option (see here for details).
    • FIDO Updates & Expanded Support: Our FIDO implementation has been upgraded from FIDO U2F to FIDO2 WebAuthn, but existing FIDO U2F keys will retain their integrity. FIDO support has been expanded to more Browser Extensions and the Windows Desktop App (see here for details).
    • Custom Fields for Keys: Custom Field values have been upgraded to support up to 5000 characters, allowing storage of keys like RSA 4096-bit SSH keys (see here for details).
    • File Size Increases: You can now create File Attachments or File Sends that are up to 500 MB each. Due to device restrictions, the old 100 MB limit is still in place for Mobile Apps.


      As a result of the Attachment upgrade, Attachments uploaded on the newest clients cannot be opened on older client versions. If you find you’re unable to access a recently-created Attachment, upgrade your client to the newest version. (Hint: The Cloud Web Vault is always on the newest version.)

      Frozen or legacy client versions, including the Safari 13 (or earlier) macOS Desktop App & App Extension, will not support accessing these attachments.

    • Disable Browser Extension Counter: Disable the Browser Extension badge counter using a new toggle in the SettingsOptions menu (see here for details).
    • Biometrics for Safari: The Safari Web Extension now includes support for Unlock with Biometrics for Safari 14+ (see here for details).
    • Search Internationalization: Vaults can now be searched against 1 character, improving the experience for languages with 1-character words like Simplified and Traditional Chinese.
    • Sorted Weak Passwords Report: The Weak Passwords Report is now sorted by the severity of the password’s weakness (see here for details)

    Since implementing Soft Delete back in 2020, we’ve been patient to take out the Trash. Starting 5/15/2021, we’ll activate the nightly job that will permanently delete items that have been in your trash for 30 days or more.

    Prior to 5/15/2021, we recommend digging through your Trash for anything you might want to Restore!


    Bitwarden is proud to announce the release of Bitwarden Send, and end-to-end encrypted solution for ephemeral sharing. This release includes:

    • Bitwarden Send: Bitwarden Send is end-to-end encrypted solution for ephemeral sharing. There’s lot of material about Send on our website and Help Center, but you can start here or here.
    • FIDO U2F Support for Edge: Two-step Login via FIDO U2F is now available for the Web Vault and Browser Extensions in Microsoft Edge (see here for details).
    • Domain Exclusion in Browser Extensions: Bitwarden Browser Extensions can now be configured with domains to explicitly not offer to remember passwords for (see here for details).
    • Improved Import Error Messages: We’ve had lots of folks migrating to Bitwarden recently, so we cleaned up an import error message to help you reconcile issues faster (see here for details).
    • Safari Web Extension Port: Our Safari App Extension has officially been ported to a Web Extension for use with Safari 14+. Due to changes to Safari, Web Extension use is now limited to only those obtained through Mac App Store downloads (see here for details).

    2021-01-19 Post-Release Update


    Biometric Unlock for Browser Extensions is available for only Chromium-based browsers (e.g. Chrome, Edge) with v1.48.0 of the Browser Extension, provided you have the latest version (2021-01-19) of the Desktop App.

    When your Browser Extension updates to this version, you may be asked to accept a new permission for Bitwarden to Communicate with cooperating native applications. This permission is safe, but optional, and will enable the Browser Extension to communicate with the Bitwarden Desktop App, which is required to enable Biometric Unlock (see here for details). Declining this permission will allow you to use v1.48.0 without Biometric Unlock functionality.

    Biometric Unlock is currently not available for:

    • Firefox Browser Extensions below version 87.
    • Microsoft App Store Desktop Apps (a side-loaded Windows Desktop App, available at will work fine).
    • Side-loaded MacOS Desktop Apps (an App Store Desktop app will work fine).

    The Bitwarden team is investigating these and will provide updates as things progress.


    For the first major release of 2021, the Bitwarden team combined multiple major enhancements to address the critical needs of all users, including:

    • Emergency Access: Bitwarden’s new Emergency Access feature enables users to designate and manage trusted emergency contacts, who may request access to their Vault in a Zero Knowledge/Zero Trust environment (see here for details).here
    • Encrypted Exports: Personal users and Organizations can now export Vault data in an encrypted .json file (see here for details).
    • New Role: A Custom role is now available to allow for granular control over user permissions (see here for details).
    • New Enterprise Policy: The Personal Ownership policy is now available for use by Enterprise Organization (see here for details).
    • Biometric Unlock for Browser Extensions: Using an integration with a native Desktop application, you can now use Biometric input to unlock Chromium-based Browser Extensions (see here for details).


    The latest release of Bitwarden adds SSO-related enhancements to all client applications, including:

    • New Enterprise Policies: The Single Organization and Single Sign-On Authentication polices are now available for use by Enterprise Organizations (see here for details).
    • API Key for CLI: Authenticate into the Bitwarden CLI using an API Key newly available from your Web Vault (see here for details).
    • Improvements to SSO Onboarding: We’ve made some improvements to the way users are onboarded via SSO to prevent potential security risks (see here for details).
    • GDPR Acknowledgement: From now on, new users of Bitwarden will be asked to acknowledge a Privacy Policy on registration.
    • Android 11 Inline Auto-fill: For devices using Android 11+, enabling the Auto-fill Service will display suggestions inline for IMEs that also support this feature (see here for details).


    The latest release of Bitwarden adds much-anticipated Login with SSO functionality for all client applications, and the Business Portal for Web Vaults. Read this blog post for more information about Login with SSO, and refer to our documentation.

    Early 2020 releases

    The following items were released between March and September of 2020.