TeamPCP Hijacks Bitwarden CLI, Uses Dependabot to Deploy Shai-Hulud Malware

On April 20, 2026, at around 5:00 pm CET, the coding world was alerted after a widely used tool called @bitwarden/cli was found to be compromised. According to researchers at GitGuardian, who shared their analysis with Hackread.com, the attack was a calculated operation by a group called TeamPCP, who used what researchers describe as a cross-campaign pivot to exploit trusted developer tools.

For context, Bitwarden is an open-source password manager that stores and encrypts sensitive data like passwords, API keys, and secure notes in a protected vault, accessible across devices. It uses end-to-end encryption so only the user can read their data.

The Bitwarden CLI is a command-line interface that lets developers interact with the vault directly from a terminal, often used in scripts, automation, and CI pipelines to retrieve secrets. The Bitwarden CLI package, typically distributed via npm as @bitwarden/cli, is the installable version of ...