News

Dangerzone 0.7.1 is out

This release includes a patch for Docker Desktop, and security updates. If you are on a Mac or PC you should additionally ensure that the Docker Desktop application is up to date. To install, follow the links in our downloads page.

The two changes in this release are:

  • Make Dangerzone work with fresh Docker Desktop installations

    This release mainly addresses an issue with new Docker Desktop installations on Windows and Mac OS. Users who have done a fresh installation of Docker Desktop 4.30.0 or greater (released on August 29th), have reported that Dangerzone fails conversions with the following error message:

    Unknown Error Code '125'

    This error message is attributed to a new way that Docker Desktop stores and references container images, which broke some Dangerzone expectations. With this release, we enable Dangerzone to work both with older Docker Deskop installations and newer ones.

  • Update the software in our container image

    As in every release, we rebuild our container image to get the latest security updates.

For a full list of the changes, see our changelog.


Safe Ride into the Dangerzone: Reducing attack surface with gVisor

This article was written in collaboration with Google's gVisor team and cross-posted on the gVisor blog.

One of the oft-repeated sound bites of computer security advice is: “Don’t open random attachments from strangers.” If you are a journalist, however, opening attachments and documents is part of your job description. Since journalists already have a lot of security threats to worry about in dealing with sources, the safe opening of documents should not be one of them. Dangerzone was developed to solve this problem. It lets you open suspicious documents with confidence and gets out of your way.

For the past few months, members of the Dangerzone team and the gVisor project collaborated on significantly improving the security properties of Dangerzone. We’re excited to announce that as of version 0.7.0, Dangerzone uses gVisor to secure its document conversion process. It is already trusted by Google and others to secure cloud products, scan Gmail attachments for viruses, etc.

Read more


Welcome to the Dangerzone

Welcome to the official Dangerzone blog. We will mainly cover:

  • release announcements
  • security updates (e.g., about code audits or vulnerabilities)
  • articles related to document sanitization and Dangerzone's inner workings.

You can follow the blog in your feed reader of choice. If you have thoughts on topics to cover (or would like to draft a post yourself), please don't hesitate to get in touch via our discussion forums.

Thank you for being part of the Dangerzone community!