{"id":13421752,"url":"https://github.com/freedomofpress/securedrop","last_synced_at":"2025-05-13T18:10:12.900Z","repository":{"id":2207853,"uuid":"3156820","full_name":"freedomofpress/securedrop","owner":"freedomofpress","description":"GitHub repository for the SecureDrop whistleblower platform. Do not submit tips here!","archived":false,"fork":false,"pushed_at":"2025-05-12T15:26:55.000Z","size":109615,"stargazers_count":3676,"open_issues_count":466,"forks_count":697,"subscribers_count":141,"default_branch":"develop","last_synced_at":"2025-05-12T15:36:02.453Z","etag":null,"topics":["flask-application","hacktoberfest","journalism","python","securedrop","whistleblowing"],"latest_commit_sha":null,"homepage":"https://securedrop.org/","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/freedomofpress.png","metadata":{"files":{"readme":"README.md","changelog":"changelog.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2012-01-11T19:57:55.000Z","updated_at":"2025-05-08T22:47:30.000Z","dependencies_parsed_at":"2023-01-14T11:15:47.007Z","dependency_job_id":"f33e1c7e-10e5-4ad2-b07d-94821ca2ee77","html_url":"https://github.com/freedomofpress/securedrop","commit_stats":{"total_commits":9400,"total_committers":266,"mean_commits":"35.338345864661655","dds":0.8451063829787234,"last_synced_commit":"417fc935c8fa425cc40d3b65f65ff9328d02ba6a"},"previous_names":[],"tags_count":202,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/freedomofpress%2Fsecuredrop","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/freedomofpress%2Fsecuredrop/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/freedomofpress%2Fsecuredrop/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/freedomofpress%2Fsecuredrop/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/freedomofpress","download_url":"https://codeload.github.com/freedomofpress/securedrop/tar.gz/refs/heads/develop","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":254000854,"owners_count":21997442,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["flask-application","hacktoberfest","journalism","python","securedrop","whistleblowing"],"created_at":"2024-07-30T23:00:29.506Z","updated_at":"2025-05-13T18:10:12.890Z","avatar_url":"https://github.com/freedomofpress.png","language":"Python","funding_links":[],"categories":["\u003ca id=\"tag-communication\" href=\"#tag-communication\"\u003eCommunication\u003c/a\u003e","Python","Projects","Uncategorized","介绍","Whistleblowing","Built with Flask"],"sub_categories":["Open Source Projects","Uncategorized","Other applications"],"readme":"\u003cp align=\"center\"\u003e\n  \u003cimg src=\"/securedrop/static/i/logo.png\" alt=\"SecureDrop\" width=\"350\" height=\"314\"\u003e\n\u003c/p\u003e\n\n\u003e [There are many ways to contribute to SecureDrop, and we welcome your help!](CONTRIBUTING.md) By contributing to this project, you agree to abide by our [Code of Conduct](https://github.com/freedomofpress/.github/blob/main/CODE_OF_CONDUCT.md).\n\n[![CircleCI branch](https://img.shields.io/circleci/project/github/freedomofpress/securedrop/develop.svg)](https://circleci.com/gh/freedomofpress/workflows/securedrop/tree/develop)\n[![codecov](https://codecov.io/gh/freedomofpress/securedrop/branch/develop/graph/badge.svg)](https://codecov.io/gh/freedomofpress/securedrop)\n[![Translation status](https://weblate.securedrop.org/widgets/securedrop/-/svg-badge.svg)](https://weblate.securedrop.org)\n[![Gitter](https://badges.gitter.im/Join%20Chat.svg)](https://gitter.im/freedomofpress/securedrop)\n\n\nSecureDrop is an open-source whistleblower submission system that media organizations can use to securely accept documents from, and communicate with anonymous sources. It was originally created by the late Aaron Swartz and is currently managed by the [Freedom of the Press Foundation](https://freedom.press).\n\n## Project status\n\nSecureDrop is a stable, mature project that is actively in use in newsrooms across the globe. Most feature development efforts are focused towards the [SecureDrop Workstation](https://github.com/freedomofpress/securedrop-workstation/),\n[SecureDrop Client](https://github.com/freedomofpress/securedrop-client), and [SecureDrop Protocol](https://github.com/freedomofpress/securedrop-protocol); see the \"[Future directions for SecureDrop](https://securedrop.org/news/future-directions-for-securedrop/)\" blog post for more information.\n\nSecureDrop continues to receive security and bug fixes in the meantime.\n\n## Documentation\n\nSecureDrop's end user documentation is hosted at https://docs.securedrop.org. It is maintained in a standalone repository: https://github.com/freedomofpress/securedrop-docs.\n\nBy default, the documentation describes the most recent SecureDrop release. This is known as the **stable** version and is recommended for end users (Sources, Journalists, or Administrators). The **latest** documentation is automatically built from the most recent commit to the SecureDrop documentation repository. It is most useful for developers and contributors to the project. You can switch between versions of the documentation by using the toolbar in the bottom left corner of the Read the Docs screen.\n\nDeveloper documentation can be found at https://developers.securedrop.org/, maintained in\nhttps://github.com/freedomofpress/securedrop-dev-docs/.\n\n## Found an issue?\n\nIf you're here because you want to report an issue in SecureDrop, please observe the following protocol to do so responsibly:\n\n* If you want to report a **_security issue_**, please use our [bug bounty hosted by Bugcrowd](https://bugcrowd.com/freedomofpress).\n* If filing the issue does not impact security, just create a [GitHub Issue](https://github.com/freedomofpress/securedrop/issues/new).\n\n## How to Install SecureDrop\n\nSee the [Installation Guide](https://docs.securedrop.org/en/stable/#installtoc).\n\n## How to Use SecureDrop\n\n* [As a source](https://docs.securedrop.org/en/stable/source.html)\n* [As a journalist](https://docs.securedrop.org/en/stable/journalist.html)\n\n## How to Contribute to SecureDrop\n\nSee our [contribution page](CONTRIBUTING.md).\n\n## Developer Quickstart\n\nEnsure you have Docker installed and:\n\n```\nmake dev\n```\n\nThis will start the source interface on `127.0.0.1:8080` and the journalist interface on `127.0.0.1:8081`. The credentials to login are printed in the Terminal. To login to the journalist interface, you must also [generate a two-factor code](https://developers.securedrop.org/en/latest/setup_development.html#using-the-docker-environment).\n\n## License\n\nSecureDrop is open source and released under the [GNU Affero General Public License v3](/LICENSE).\n\n## Wordlists\n\nThe wordlist we use to generate source passphrases come from various sources:\n\n* [en.txt](/securedrop/wordlists/en.txt) is based off a new [Diceware wordlist](https://www.eff.org/deeplinks/2016/07/new-wordlists-random-passphrases) from the EFF.\n* [fr.txt](/securedrop/wordlists/fr.txt) is based off Matthieu Weber's [translated diceware list](http://weber.fi.eu.org/index.shtml.en) and the French word list found in [trezor/python-mnemonic](https://github.com/trezor/python-mnemonic/blob/161bec3351dce9c439cd00dc0beaaf09e7906ff8/src/mnemonic/wordlist/french.txt) (MIT licensed).\n\n\n## Acknowledgments\n\nA huge thank you to all SecureDrop contributors! You can find a list of code and documentation contributors in the [\"Contributors\"](https://github.com/freedomofpress/securedrop/graphs/contributors) tab on GitHub. SecureDrop is translated into many languages by a community of volunteers; please [see our Weblate instance for details](https://weblate.securedrop.org/projects/securedrop/#information). Thanks to our friends at PyUp for sponsoring a subscription to their [Python security database](https://pyup.io).\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ffreedomofpress%2Fsecuredrop","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ffreedomofpress%2Fsecuredrop","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ffreedomofpress%2Fsecuredrop/lists"}