Besides that it's bloated. I really don't want to have my passwords and keys managed by something that's built on a software supply chain, which is so prone to malicious attempts (npm packages). There are way too many deep dependencies and mini packages out there.