Even when the option “Show website icons and retrieve change password URLs” is disabled (unchecked), BitWarden still makes calls to https://icons.bitwarden.net/[HOST]/icon.png (where [HOST] is the site the user is visiting).
Why is this?
1 Like
Could you clarify the steps to reproduce this?
Are you saying that if you open www.google.com in your browser, then the browser extension will post a request to https://icons.bitwarden.net/google.com/icon.png? Does this happen whether or not the vault contains a login item that matches to www.google.com?
If someone on the dev team is willing to commit to fix this (with or without compensation), I am willing to commit to spending my time generating reliable STR without compensation to help everyone. I only have so much available time, and many commitments.
Nevermind, then. 
1 Like
Hi there, the team would need more information to look into what you are describing. What is the version of the client you are using? Are you self-hosting, and if so, is your server up to date?
Don’t hesitate to drop a bug report on Github for the team to review.
2 Likes
Hi there, the team would need more information to look into what you are describing. What is the version of the client you are using? Are you self-hosting, and if so, is your server up to date?
Hi @dwbit
Extension v2026.2.0
Can reproduce issue using official default servers.
Thanks! Please use the link I shared above to report a bug for the team to review if you haven’t already.
1 Like