How? 😂

Unused ram is wasted ram

It shouldn’t be possible to break any service but hackers do that daily. If proper security is in place they will need some 0day exploits, but it’s not impossible, just extremely difficult

I know, but that won’t change the eventuality I described

Bro, what I said is that an attacker who someways get access to production, can push modified source code that send cleartext password to him before everything else.

If someone compromise bitwarden infrastructure can (and probably will) silently release a “new” minor version of app and webapp so that every master password is sent to him, and then decipher passwords.

It will last only some hours at worst but will still collect a lot of passwords.

That’s only thing I’m worries about, but I still use bitwarden as I think my passwords being compromised in this evenience as nearly impossible

The votes might be the one from his instance (I’ve no time to check right now), as I’ve understanded, upvotes and down votes are instance specific, so, this means for the same post: Instance a show 10 upvotes Instance b show 5 (The post is in instance a) Which means a admin know who are the 10 people but can’t know who are the 5 from instance b, and instance b admin know who are his 5 people and not the 10 from instance a. (I might be wrong, if it’s the case please correct me)

Are you sure that every server can see any other server upvotes? As I know, upvotes are only from your home instance, which means only your instance admin can see that

I think it’s a good idea to sum these statistics, but not for all instances (as it will be super easy to hijack with fake instances). Admin should manually select instances they trust and get the subscribed count summed.

Or country specific instances, if exists.