• 2 min read
1Password gives Claude passwordless website access
1Password now lets Claude sign in and complete web tasks without seeing passwords or one-time codes, using biometric approval and vault isolation.

Image: TechRepublic
1Password has launched 1Password for Claude, a new integration that lets Anthropic’s Claude sign in to websites and complete authenticated tasks without ever seeing the user’s password or one-time authentication code.
The feature targets the rise of agentic AI systems that can browse the web, fill out forms, manage accounts, and act on a user’s behalf. The security problem is obvious: these agents need enough access to do useful work, but handing over permanent credentials creates a major risk.
Instead, 1Password keeps login details inside its encrypted vault and serves as a secure intermediary. When Claude needs access to a site, 1Password shows the user which saved credential is being requested and why. The user then has to approve the request with biometric authentication such as Touch ID, after which 1Password fills the login directly on the website.

Recommended reading
Capital One open-sources VulnHunter for code security
Claude can finish the task, but it does not receive the actual password, saved login item, or one-time passcode. According to 1Password, those credentials also never enter Claude’s memory, model context, or Anthropic’s systems.
How Agentic Mode works
1Password says the system uses a “zero-exposure architecture,” with credentials available only for the duration of an approved task. After filling them in, 1Password checks whether sensitive data was accidentally exposed on the page. If a submission fails, it clears the entered details before handing control back to Claude.
The company also introduced Agentic Mode, a browser security feature for cases where an AI agent is controlling the browser. When a compatible agent takes over, the 1Password browser extension automatically locks down. The AI can access only the credentials explicitly approved for that task, while everything else in the vault stays blocked.
“The rest of the vault stays out of reach.”
Availability and current limits
The launch is available now for Mac users on individual, family, and business plans. Users need:
- the 1Password desktop app
- the 1Password browser extension
- the Claude desktop app
- the Claude browser extension
Right now, the feature supports usernames, passwords, and one-time passwords stored in 1Password login items. Social sign-ins such as “Sign in with Google” and passkeys are not supported.
The model does not eliminate risk. Users still need to judge whether an access request is legitimate, and browser-based agents remain exposed to threats such as prompt injection or malicious instructions embedded in websites. Even with biometric approval, the human is still the final security check.
Security Editor
Sophia unpacks the invisible wars happening on our networks. Covering cybersecurity, privacy legislation, and cryptography, she exposes how our data is weaponized and defended. Before joining for(geeks), she spent years as a penetration tester. She's the reason the rest of the team uses physical security keys.
via TechRepublic


