News

Release Announcement

SecureDrop 2.5.1 Released

We’re pleased to announce that SecureDrop 2.5.1 has been released. This is a hotfix release that makes user and permissions-related changes. Read More

Dec 8 2022, 5:00 PM
Read More
Interest Article

Join Us for Aaron Swartz Day 2022

Want to help us improve SecureDrop? Join us November 12-13 at the Aaron Swartz Day and Hackathon, in person in San Francisco, or remotely! The SecureDrop team will be be ready to support new and returning contributors. Read More

Nov 3 2022, 4:35 PM
Read More
Release Announcement

SecureDrop 2.5.0 Released

We’re pleased to announce that SecureDrop 2.5.0 has been released. Changes that journalists and administrators should be aware of are summarized in this blog post. A complete list of changes can be found on GitHub. Read More

Oct 18 2022, 6:00 PM
Read More
Pre-Release Announcement

SecureDrop 2.5.0: Pre-Release Announcement

SecureDrop 2.5.0 is scheduled to be released on Oct 18, 2022. We will send out another notification through this blog, Twitter, Mastodon, and the support portal when the release is live. Changes that journalists and administrators should be aware of are summarized in this blog post. A complete list of changes can be found on GitHub. Read More

Oct 11 2022, 5:00 PM
Read More
Release Announcement

SecureDrop 2.4.2 Released

We’re pleased to announce that SecureDrop 2.4.2 has been released. This is a security release with a kernel update that includes mitigations for the "retbleed" vulnerability. Read More

Aug 9 2022, 1:00 PM
Read More
Release Announcement

SecureDrop 2.4.1 Released

We’re pleased to announce that SecureDrop 2.4.1 has been released. This is a bugfix release. A complete list of changes can be found on GitHub.What’s new in SecureDrop 2.4.1?For administratorsBugfix: SecureDrop 2.3.0 introduced an optional feature to prevent initial submission of a source’s secret seven word codename. The bug caused … Read More

Jul 20 2022, 9:00 AM
Read More
Interest Article

[Advisory] Bug in codename filtering feature with handling Unicode characters

SecureDrop 2.3.0 introduced a new preference to prevent initial submissions that consist only of a source’s seven word codename. Due to an implementation error, when this feature is active, initial messages containing Unicode characters will result in a server error.We will issue a bugfix release later this month.This preference is … Read More

Jul 18 2022, 1:00 PM
Read More
Interest Article

The SecureDrop Client is ready for translation

We are pleased to announce that we are now accepting community translations for the SecureDrop Client, the graphical application at the heart of the (beta) SecureDrop Workstation, through which journalists can more conveniently and efficiently communicate with sources and securely view their submissions. Read More

Jun 2 2022, 6:14 PM
Read More