centersl/vaultwarden
1
0
Fork 0
mirror of https://github.com/dani-garcia/vaultwarden.wiki.git synced 2026-03-27 07:28:31 +07:00
Code Issues Packages Projects Releases Wiki Activity

Add audit page

Browse Source
This commit is contained in:
BlackDex
2024-11-18 20:53:40 +01:00
parent de6d6783f1
commit 7f46428a43
4 changed files with 24 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
Audits.md Normal file
View File

@@ -0,0 +1,19 @@
# Vaultwarden Audits
Vaultwarden has been audit by security companies which helps keeping Vaultwarden secure.
Some audits were done without publishing anything data publicly because the companies which requested the audit with those security companies didn't allowed it, but those researchers did provide the results.
Some audits are publicly published and can be accessed by everyone.
## Audit by BSI
> [!NOTE]
> The site and report are both in German
[BSI (Bundesamt für Sicherheit in der Informationstechnik)](https://www.bsi.bund.de/EN/Home/home_node.html), a German institute performed an audit on [Vaultwarden v1.30.3](https://github.com/dani-garcia/vaultwarden/releases/tag/1.30.3) under there [CAOS (Codeanalyse von Open Source Software) project](https://www.bsi.bund.de/DE/Service-Navi/Publikationen/Studien/Projekt_P486/projekt_P486_node.html).
The press release, including the PDF with the results for Vaultwarden can be found here: https://www.bsi.bund.de/DE/Service-Navi/Presse/Alle-Meldungen-News/Meldungen/Codeanalyse-KeePass-Vaultwarden_241014.html
They even have a more detailed ZIP file with all raw information located here: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Downloadserver/P486/CAOS_Vaultwarden.html