GitHub repository for the SecureDrop whistleblower platform. Do not submit tips here!
Python CSS Shell HTML JavaScript Makefile ApacheConf
Switch branches/tags
Latest commit 369cbb7 Jun 23, 2017 @conorsch conorsch committed on GitHub Merge pull request #1875 from freedomofpress/travis-ci-fall-back-to-o…

Falls back to old Ubuntu Trusty image in Travis CI
Failed to load latest commit information.
.circleci CircleCI - add test result folder as artifacts May 26, 2017
.github Add issue template Jun 9, 2017
build Refactor ansible build-generic-pkg for CI May 3, 2017
devops CI - Allow apptest script failures to break build May 26, 2017
docs Merge pull request #1844 from dachary/wip-documentation-style-shell-b… Jun 21, 2017
install_files Updates Travis development playbook run Jun 19, 2017
migration_scripts renamed "document interface" to "journalist interface" Nov 14, 2016
securedrop Merge pull request #1863 from freedomofpress/secure_tempfile-refactor… Jun 20, 2017
tails_files Removes deprecated script Jun 13, 2017
testinfra Merge pull request #1859 from freedomofpress/run-config-tests-in-travis Jun 21, 2017
.editorconfig Adding ruby conventions to .editorconfig Nov 6, 2016
.gitignore Added wrapper script to direct user experience Jun 6, 2017
.ruby-gemset Initial config for install specs using serverspec Sep 23, 2014
.ruby-version Initial config for install specs using serverspec Sep 23, 2014
.travis.yml Falls back to old Ubuntu Trusty image in Travis CI Jun 23, 2017
LICENSE Update license from GPL2 to AGPL Aug 1, 2014
Makefile Make func to run against build docker instance May 26, 2017 fix link to wordlist Apr 26, 2017
Vagrantfile Consolidates app requirements and dependencies Jun 16, 2017
ansible.cfg Re-ordered iptables ssh throttling rules Jun 19, 2015 SecureDrop 0.3.12 Mar 29, 2017
securedrop-admin Removes deprecated script Jun 13, 2017
setup.cfg Update pytest section syntax in setup.cfg Mar 22, 2017 Check for username and hostname match in update_version Apr 8, 2017

Build Status Coverage Status Gitter

SecureDrop is an open-source whistleblower submission system that media organizations can use to securely accept documents from and communicate with anonymous sources. It was originally created by the late Aaron Swartz and is currently managed by Freedom of the Press Foundation.

SecureDrop's documentation is now built and hosted by Read the Docs: If you are still trying to use links to Markdown files on our Github to read documentation, please update your bookmarks.

Found an issue?

If you're here because you want to report an issue in SecureDrop, please observe the following protocol to report an issue responsibly:

How to Install SecureDrop

See the Installation Guide.

How to Use SecureDrop

How to Contribute to SecureDrop

See the Development Guide.


SecureDrop is open source and released under the GNU Affero General Public License v3.

The wordlist we use to generate source passphrases is based off a new Diceware wordlist from the EFF.