rbw

rbw command [options] [args]

rbw is an unofficial command-line Bitwarden client designed for Unix-style workflows, outputting passwords directly to stdout for easy integration with scripts, dmenu, rofi, and other tools. It communicates with Bitwarden servers through a background agent daemon (rbw-agent) that caches the decrypted vault locally for fast retrieval.The get command retrieves passwords by entry name, while the --field flag accesses specific fields like usernames, TOTP codes, or custom notes. The generate command creates random passwords and stores them directly in the vault. Vault synchronization with rbw sync keeps the local cache current with the server.

config

Get or set configuration options.

Register this device with the Bitwarden server.

Log in to the Bitwarden server.

Unlock the local vault database.

Lock the vault database.

Update the local copy of the Bitwarden database.

Display the password for a given entry.

Search for entries in the vault.

Display the TOTP authenticator code for a given entry.

List all entries.

Add a new entry.

Modify an existing entry.

Delete an entry.

Generate a new password and store it.

View password history for an entry.

Terminate the background agent.

Output username, password, and notes.

Output a specific field.

Restrict to a specific folder.

~/.config/rbw/config.json

Client configuration specifying the Bitwarden server URL, email address, lock timeout, and pinentry program for master password entry.

Background daemon that maintains the decrypted vault in memory. Started automatically on first rbw command and locks after the configured timeout.

Unofficial client. Some Bitwarden features not supported. Requires rbw-agent daemon.

rbw was created by Jesse Luehrs as a command-line Bitwarden client optimized for Unix workflows. It uses a background agent (similar to ssh-agent or gpg-agent) to hold decryption keys in memory, emphasizing scriptability and speed over feature completeness.

pass(1), bw(1), gopass(1)