ProtonMail Opens Android Client Source Code and Publishes Security Audit
ProtonMail has open‑sourced its Android client under GPL‑v3, released the source on GitHub, and announced that all its mail‑access apps have passed independent security audits, with the full audit report published and a bug‑bounty program inviting external researchers.
Last year, encrypted email service ProtonMail (also known as "Proton Mail") announced that its iOS client was fully open‑sourced under the GPL‑v3 license on GitHub. The company has now also open‑sourced its Android client, with the source code available on its GitHub page.
Proton states that with this release, all applications used to access the ProtonMail inbox are now open source, and each has passed an independent security review to maintain user trust.
To open‑source the Android app, Proton commissioned SEC Consult to conduct an independent security audit, which found no vulnerabilities. The full audit report has been published on Proton’s website.
In fact, ProtonMail’s web application was open sourced as early as 2015. Proton explains that the goal of opening its applications is to increase transparency of product operation and user‑data handling, especially given growing global privacy concerns.
Proton also plans to allow third‑party security researchers to report potential vulnerabilities and to reward them through a bug‑bounty program.
Programmer DD
A tinkering programmer and author of "Spring Cloud Microservices in Action"
How this landed with the community
Was this worth your time?
0 Comments
Thoughtful readers leave field notes, pushback, and hard-won operational detail here.