Introducing the GHCR Signer

- The Latest
  Regular reporting on government secrecy, surveillance, and the rights of reporters and whistleblowers.
  - The Classifieds
  - News Releases
- Technology
  Working open source software products to protect journalists, newsrooms, and their sources.
  - SecureDrop
  - Dangerzone
- U.S. Press Freedom Tracker
  A database of press freedom incidents in the United States.
  - Data Visualizations
  - Explore the Database
- Digital Security Education
  Digital security trainings and resources for journalists.
  - Request a Training
  - Guides & Resources
- About Us
  Protecting and defending press freedom when we need it the most.
- Our Team
  - Staff & Contributors
  - Board of Directors
- Transparency
  - Reports & Financials
  - Announcements
- Get in Touch
  - Jobs & Internships
  - Contact Us
Take action
Donate

Keys everywhere!
CC-BY 2.0, The Electronic Frontier Foundation

Dangerzone is using signed container images to distribute its trusted sandbox. We implemented a tool that lets us sign locally and use pull-request-based s to do the publication for us, without having to use Personal Access Tokens or letting GitHub infrastructure know about our private keys.

Introducing the GHCR Signer: https://dangerzone.rocks/news/2026-05-26-ghcr-signer/