News

Release Announcement

SecureDrop Client 0.10.1 Released

SecureDrop Client 0.10.1, part of the SecureDrop Workstation, has been released. This is a hotfix for a bug in yesterday’s 0.10.0 release that prevented the printing of source conversation transcripts. Users will receive this update the next time they run the updater. We apologize for any inconvenience caused. Read More

Release Announcement

SecureDrop Client 0.10.0 Released

We’re pleased to announce that SecureDrop Client 0.10.0, part of the SecureDrop Workstation, has been released. Changes that pilot participants should be aware of are below; a complete list of changes can be found on GitHub.What’s new in SecureDrop Client 0.10.0? Read More

Release Announcement

SecureDrop 2.8.0 Released

We’re pleased to announce that SecureDrop 2.8.0 has been released. Changes that journalists and administrators should be aware of are summarized in this blog post. A complete list of changes can be found on GitHub. Read More

Pre-Release Announcement

SecureDrop 2.8.0: Pre-Release Announcement

SecureDrop 2.8.0 is scheduled to be released on March 12, 2024. We will send out another notification through this blog, Mastodon, X, and the support portal when the release is live. Changes that journalists and administrators should be aware of are summarized in this blog post. A complete list of changes can be found on GitHub. Read More

Interest Article

Anatomy of a whistleblowing system

The SecureDrop team details the goals for a redesign of the platform’s server architecture and discusses the design constraints of a whistleblowing system. Read More

Interest Article

Consolidating SecureDrop Workstation’s Git repositories to make development easier

As the SecureDrop team previously announced, we’re shifting our focus in order to graduate SecureDrop Workstation from its pilot phase. One of the first steps we’ve taken in this direction is to reorganize and consolidate multiple related Git repositories to make development and releases easier and faster. Read More

Release Announcement

SecureDrop 2.7.0 Released

SecureDrop 2.7.0 has been released. This release includes a migration to Sequoia-PGP as the supported encryption backend, continuous localization support, and several other improvements. Read More

Interest Article

Migrating SecureDrop’s PGP backend from GnuPG to Sequoia

In the upcoming SecureDrop 2.7.0 release, we’ve made a technical change that will be invisible to users but improve reliability and robustness — and provide better security going forward.SecureDrop relies on the OpenPGP standard for encrypting all data and messages that pass through the server. Historically, we have used GnuPG, or GPG for this; we are now switching to the newer Sequoia-PGP library implemented in Rust.In this blog post, we’ll give an overview of the encryption in SecureDrop, and explain why and how we switched to Sequoia. Read More