Vaultwarden flagged as unsafe by Google

Help
1

Hi there.
I’m hosting vaultwarden on a VPS, but google flags the website as unsafe, for potential phishing.
I’m using docker-compose with caddy, just like here:Using Docker Compose · dani-garcia/vaultwarden Wiki · GitHub
I have a DNS from Dynv6.com, which I point towards my VPS IP.
Caddy itself is working, only Chrome is flagging the site. Firefox doesn’t complain.

image

Vaultwarden works fine, the addons can connect, websockets and logins are working.

I also submitted my url to googles safe browsing for reviewing, but nothing changed.

Is there anything wrong with my setup? Or anyway how I can fix it?
Thanks^^

2

Google Safe Browsing works via URL/Domains.
So, it seems your domain, or part of the domain is flagged by it.

3

Crap^^
Probably, because it’s free…
I will search for a better one, or live with the flagged issue.
Thanks^^

4

Does anyone have a solution to this?
I have been reporting my domain as being legit… But no answer yet from Google.

Looks like this issue with the URL from the icons should happen to anyone.
It is also listed at Bitwarden: Privacy when using Website Icons | Bitwarden Help Center

Is there any way to “encrypt” the URL so Google does not complain anymore?
Something to change:

https://mypersonalvault.mydomain.com/icons/us1a.app.anaplan.com/icon.png

To something like:

https://mypersonalvault.mydomain.com/icons/dXMxYS5hcHAuYW5hcGxhbi5jb20=/icon.png
(maybe Base64 encode)

Thanks!
(and sorry for bringing back an old thread)

5

I actually do not think the icon endpoint is the issue.

If Google is at play you probably have Bitwarden in your subdomain, and that gets flagged as scam by Google.

If you have any proof of the icon endpoint, i would love too see that.
But if that is an issue, it’s not something we can fix, since the clients handle the requests.