GitHub repository for the SecureDrop whistleblower platform. Do not submit tips here!
Python CSS Shell HTML Makefile JavaScript Other
Switch branches/tags
Clone or download
msheiny Merge pull request #3703 from freedomofpress/3205-molecule-verify-step
Integrates testinfra tests with Molecule "verify" action
Latest commit 65f7b3f Aug 9, 2018
Failed to load latest commit information.
.circleci Uses Molecule verify step for AWS scenario Aug 9, 2018
.github made the issue templates match the ones from atom editor's repository, Jun 18, 2018
admin Bump cryptography to 2.3 for admin workstation Aug 1, 2018
build Refactor ansible build-generic-pkg for CI May 3, 2017
devops Moves junit combine script into scripts dir Aug 9, 2018
docs Merge pull request #3690 from freedomofpress/reply-refactor-convo-his… Aug 8, 2018
git Shellcheck compliance: SC1090 fixes Sep 22, 2017
install_files added libpython2.7-dev to ansible apt dependencies Jul 28, 2018
journalist_gui Fixes #3308 strips out any ANSI escape sequence Apr 26, 2018
molecule Moves junit combine script into scripts dir Aug 9, 2018
securedrop Merge pull request #3690 from freedomofpress/reply-refactor-convo-his… Aug 8, 2018
tails_files Update KeePassX file to add entries Aug 20, 2017
.dockerignore Add additional ignore items to docker build May 9, 2018
.editorconfig Adding ruby conventions to .editorconfig Nov 6, 2016
.flake8 added alembic skeleton Jun 2, 2018
.gitignore Ignore *.log files Aug 9, 2018
.mailmap mailmap: normalize pierwill <> Jun 18, 2018
.ruby-gemset Initial config for install specs using serverspec Sep 23, 2014
.ruby-version Initial config for install specs using serverspec Sep 23, 2014
.yamllint Creates custom yamllint config file Sep 13, 2017 added community coc Jul 18, 2018 Fix broken link in Jun 16, 2018
LICENSE Update license from GPL2 to AGPL Aug 1, 2014
Makefile Temporarily ignore safety check for pyca/cryptography Aug 1, 2018 Use matching CircleCI build status badge Mar 13, 2018
SOURCE_OFFER Amends source offer language reference to users Jul 24, 2017
Vagrantfile Staging - Work-arounds to allow VBox direct connect May 23, 2018
ansible.cfg Re-ordered iptables ssh throttling rules Jun 19, 2015 SecureDrop 0.9.0~rc1 Jun 27, 2018
mypy.ini Fixes #3001 initial support for type annotation Feb 13, 2018
securedrop-admin In securedrop-admin setup -v: -v, setup can be passed in any order Mar 6, 2018 only vi is available in the container Feb 23, 2018

CircleCI branch codecov Gitter

SecureDrop is an open-source whistleblower submission system that media organizations can use to securely accept documents from, and communicate with anonymous sources. It was originally created by the late Aaron Swartz and is currently managed by the Freedom of the Press Foundation.

The SecureDrop documentation is now built and hosted by Read the Docs: If you are still trying to use links to Markdown files on our GitHub to read documentation, please update your bookmarks.

There are two versions of the SecureDrop documentation: stable and latest. The stable documentation is the default, and corresponds to the latest stable release of SecureDrop; therefore, it is the best version of the documentation for end users (Sources, Journalists, or Administrators). The latest documentation is automatically built from the latest commit on the SecureDrop development branch; therefore, it is most useful for developers and contributors to the project. You can choose to view a different version of the documentation by using the version picker shown at the bottom left of the screen.

Found an issue?

If you're here because you want to report an issue in SecureDrop, please observe the following protocol to do so responsibly:

How to Install SecureDrop

See the Installation Guide.

How to Use SecureDrop

How to Contribute to SecureDrop

See our contribution page


SecureDrop is open source and released under the GNU Affero General Public License v3.


The wordlist we use to generate source passphrases come from various sources:


A huge thank you to all SecureDrop contributors! You can see just code and documentation contributors in the "Contributors" tab on GitHub, and you can see code, documentation and translation contributors together here.