Journalists are working harder than ever to protect their sources. SecureDrop has never been more important Read More

In this blog post, we examine the technical requirements for web applications to be properly auditable, arguing that reproducibility is a necessary condition. Enforcing the constraints needed to achieve this on the web is non-trivial, and we present a technical deep dive into how we approach this problem in WEBCAT. Read More

This minor fix allows configuration from Tails USB sticks for those running version 2.13.0 or greater of SecureDrop Read More

This release provides the securedrop-admin tool as a Debian package within Tails, and prepares for future availability of the securedrop-admin utility on Qubes OS Read More

SecureDrop 2.13.0 is scheduled to be released on Dec. 4, 2025.Starting with this release, the securedrop-admin tool — used on Admin and Journalist Workstations to install and manage your SecureDrop instance — is now provided as a Debian package installed on Tails using APT, instead of being run directly from … Read More

This release addresses a low-impact, high-complexity denial-of-service issue Read More

SecureDrop software engineer Cory Myers and ETH Zurich researcher Felix Linker gave a talk entitled ”SecureDrop — From Design to Analysis” to the Usable Formal Methods Research Group at the 124th meeting of the Internet Engineering Task Force in Montreal on Nov. 4, 2025. Read More

This version simplifies installation via a bootstrap package from the Qubes-Contrib repo, and removes the existing dependencies on Whonix Read More