diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index a01094c..4a6b375 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -11,7 +11,7 @@ jobs:
     runs-on: ubuntu-latest
     strategy:
       matrix:
-        directories: ['jenkins', 'node18', 'node20', 'php8.1-cli', 'php8.2-cli', 'php8.3-cli', 'aws-cli', 'kamal', 'ansible']
+        directories: ['jenkins', 'node18', 'node20', 'php8.1-cli', 'php8.2-cli', 'php8.3-cli', 'aws-cli', 'kamal', 'ansible', 'bws']
     steps:
       - uses: docker/setup-qemu-action@v3
       - uses: docker/setup-buildx-action@v3
diff --git a/bws/Dockerfile b/bws/Dockerfile
new file mode 100644
index 0000000..39bf05a
--- /dev/null
+++ b/bws/Dockerfile
@@ -0,0 +1,22 @@
+FROM debian:trixie-slim
+
+ENV BITWARDEN_VERSION=1.0.0
+
+RUN apt-get update \
+    && apt-get install -y --no-install-recommends \
+    curl \
+    unzip \
+    && apt-get clean \
+    && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/* /usr/share/doc/*
+
+RUN ARCH=$(uname -m) && \
+    curl --insecure -Lo bws.zip https://github.com/bitwarden/sdk-sm/releases/download/bws-v${BITWARDEN_VERSION}/bws-${ARCH}-unknown-linux-gnu-${BITWARDEN_VERSION}.zip
+
+RUN unzip bws.zip -d /usr/local/bin
+RUN chmod +x /usr/local/bin/bws
+RUN rm bws.zip
+
+RUN groupadd --gid 1000 jenkins
+RUN useradd --uid 1000 --gid 1000 jenkins
+
+USER jenkins