Similar to a 1Password tradeoff (Score 1)

Sound similar to the logic in this vulnerability in 1Password. Still surprise me.
Thread "Why does 1password still install to the user’s local application directory?": https://1password.community/di...

The vulnerability is from a Cure53 report: 1PW-18-003 WP2: Windows malware can trivially backdoor .html and .js (High)
https://bucket.agilebits.com/s...

They do provide some manual mitigation since this year: use the MSI.
https://support.1password.com/...

Also reminds me of "On the Security of Password Managers" by Bruce Schneier https://www.schneier.com/blog/...
"There’s new research on the security of password managers, specifically 1Password, Dashlane, KeePass, and Lastpass. This work specifically looks at password leakage on the host computer. That is, does the password manager accidentally leave plaintext copies of the password lying around memory?"