I don’t know of any Android password manager which provides Yubikey support without Play Services.
You should not use browsers as flatpak anyway
I believe Bitwarden does, not sure about Proton Pass.
I use Bitwarden and passkeys do not work without Play Services on my device.
I believe they were talking about logging into Bitwarden with a security key, which is different conversation than using passkeys stored inside Bitwarden.
1 Like
Both did not work on my device without Play Services
I think when I was originally looking a few years ago, Bitwarden only had an AppImage, non auto updating rpm and deb, or a an unofficial flatpak and was xorg only, so good to hear that they’ve improved in that area.
Open source doesn’t mean something is better. What coding language these products use matters a lot as well, as some coding languages are inherently more secure than others. 1Password has clear edge here. They use mostly Rust, especially for all the core modules and their backend runs Rust core + Go.
Looking at the engineering aspect, 1Password is clearly the best designed. And that matters far more than the open source BS people talk about here. Proton also uses ancient PHP in the backend which is hilarious, they are actually really insecure service but people blindly trust them cause they’re based in Switzerland. And BTW, Proton backend is also closed source. Only client side is open source. If you want secure email service, look at Tuta (formerly Tutanota) instead. They, just like 1Password, have mostly built their stack on Rust and Rust is just inherently more secure coding language.
2 Likes
I really like Proton Pass.
Recently, I gave Bitwarden a go - I made my account on their website and then tried to login with the Android and Linux apps. Neither app would accept the password. Not the first time this happened to me.
I briefly tried to find more information about this and wasn’t able to find anything that would support this statement, so maybe back up your opinions with actual sources next time. What I found instead was this and other articles that challenge your argument.
Also, something being open source is not BS even if you are telling yourself that.
1 Like
By open source BS I obviously meant the fact many here think that something being open source automatically makes something better, but it doesn’t. It’s more transparent, but it might still be less secure than well executed proprietary code. 1Password is also audited regularly and has $1M bug bounty program, more than any other PW manager.
What the coding language choices indicate is really competence of the company and team behind the product. When you choose to use insecure languages like PHP it really signals you don’t truly care about the security aspect fundamentally. Not a big surprise LastPass for instance uses PHP a lot still to this day.
Anyways, my personal opinion is as follows: either use 1Password or Bitwarden. The rest are trash in comparison and I would not bother with them whatsoever. 1Password has the better engineered product, and while Bitwarden might not be as well engineered, its still solid and benefits from open source transparency + lot cheaper for individual subscriptions. If you want free PW manager then Bitwarden is by far the best option as 1Password does not offer free version.
Maybe it’s time to learn how to use ChatGPT. Your “sources” from what I looked are nothing more than some incompetent developers who are probably too lazy to learn modern programming languages.
Its no wonder AI starts to replace human developers, when there are so many stubborn ones around who think PHP is a good idea in 2025.
You don’t seem to be arguing in good faith, so this will be my last comment regarding this. If you had checked the backgrounds for either one of my sources, you would know that they are both cybersecurity experts, so I definitely would rather trust them than some random person on the internet who still hasn’t given any sources for their claims other than ChatGPT. I may not be an expert when it comes to this, but at least I’m not trusting AI to come up with my justifications.
It’s the backend for an E2EE password manager, the programming language used is not nearly as important as you are making it out to be.
1 Like
Bitwarden. If you just want to store passwords, Bitwarden. Simple UI, good mobile app, good browser extension, free, and open source. Never thought for a second of ever using anything else. Basically the perfect service for me.
2 Likes
I noticed that you didn’t mention Keepass, but for me, it’s Keepass all the way!
1 Like
Ah yes, Electron—the pinnacle of security 
Same, and now supporting passkeys 
Vaultwarden is based on rust
AFAIK, there’s no evidence of keepass ever being compromised. It’s also recommended by PG.
What is GAPPS?
I use 1Passsword, and the UX on Android is really subpar. To me, it’s clear that macOS/iOS users have the best experience with 1Password, because it was originally exclusively designed for Apple. There is still a big gap between the UX on Apple devices vs other platforms, and they need to work on that.