- The Latest
  Regular reporting on government secrecy, surveillance, and the rights of reporters and whistleblowers.
  - The Classifieds
  - News Releases
- Technology
  Working open source software products to protect journalists, newsrooms, and their sources.
  - SecureDrop
  - Dangerzone
- U.S. Press Freedom Tracker
  A database of press freedom incidents in the United States.
  - Data Visualizations
  - Explore the Database
- Digital Security Education
  Digital security trainings and resources for journalists.
  - Request a Training
  - Guides & Resources
- About Us
  Protecting and defending press freedom when we need it the most.
- Our Team
  - Staff & Contributors
  - Board of Directors
- Transparency
  - Reports & Financials
  - Announcements
- Get in Touch
  - Jobs & Internships
  - Contact Us
Take action
Donate

Dangerzone

How Dangerzone distributes container updates

April 8, 2026 / Alexis M.

An image of physical door keys in black and white, over a cyan background. There are multiple keys that cover the whole image. — Signing container images.

KEYS-1B by Electronic Frontier Foundation, licensed under CC BY 2.0.

In version 0.10.0, Dangerzone — a Freedom of the Press Foundation open-source tool that protects journalists while they view electronic documents — introduced a feature that allows users to auto-update the container used to do conversions. This article goes through why that matters and how we implemented it: attesting the provenance of the images, making them reproducible, and signing them using an auditable system. Signatures are stored in a transparency log and verified prior to any download and use.

Find out more on the Dangerzone blog.