I'm not sure; I see these risks:
- Automatically "Typing" the intended password in a wrong field; "leaking" that password (for an account with 2FA)
- Automatically "Typing" the wrong password (because account selection failed); "leaking" a different password (possible for an account without 2FA).
Is that what you are referring to? Or something completely else? (If I have a blind spot, please tell me)
Maybe I should have given a little more context?
I use Fastmate instead of a browser for Fastmail . As a result, I cannot use 1Password’s AutoFill feature to log in. What I currently do in the morning is start a lot of Apps via KM. The last App is 1Password. I then type in my master password and flip 3x between 1Password and Fastmate to fill in username, password, and OTP. I'm trying to automate the latter part (after manually typing in my master password; I'm not automating that).
But it's a good point that you made anyway. I should re-consider whether its safer to stay logged in in Fastmate all the time (than trying to automate logging in).
Ah, I should experiment with this (later this week).