I feel like responses like this are ultimately missing the point. Why on earth, if the GUI ALWAYS requires you enter your password to “Show password” for any individual account, regardless of keychain state, would a terminal command capable of dumping the entire keychain not require that same level of security?

Last Pass requires you to login to your last pass account to do any of those functions. Logging into your own computer doesn’t automatically let you do everything without password entry; certain functions, INCLUDING viewing a password in keychain require you to re-enter your password. But dumping the entire contents of said keychain requires no password.

I whole heartedly believe Apple takes security VERY serious. That’s why I believe this is such a huge flaw. I’ve yet to hear anyone explain why “Show password” in the Keychain GUI requires you to enter your password but dumping the entire keychain does not.