mirror of
https://github.com/dani-garcia/vaultwarden.wiki.git
synced 2026-03-27 07:28:31 +07:00
25 lines
1.6 KiB
Markdown
25 lines
1.6 KiB
Markdown
# Vaultwarden Audits
|
|
|
|
Vaultwarden has been audit by security companies which helps keeping Vaultwarden secure.
|
|
|
|
Some audits were done without publishing anything data publicly because the companies which requested the audit with those security companies didn't allowed it, but those researchers did provide the results.
|
|
|
|
Some audits are publicly published and can be accessed by everyone.
|
|
|
|
## Audit by BSI
|
|
|
|
> [!NOTE]
|
|
> The site and report are both in German
|
|
|
|
[BSI (Bundesamt für Sicherheit in der Informationstechnik)](https://www.bsi.bund.de/EN/Home/home_node.html), a German institute performed an audit on [Vaultwarden v1.30.3](https://github.com/dani-garcia/vaultwarden/releases/tag/1.30.3) under there [CAOS (Codeanalyse von Open Source Software) project](https://www.bsi.bund.de/DE/Service-Navi/Publikationen/Studien/Projekt_P486/projekt_P486_node.html).
|
|
|
|
The press release, including the PDF with the results for Vaultwarden can be found here: https://www.bsi.bund.de/DE/Service-Navi/Presse/Alle-Meldungen-News/Meldungen/Codeanalyse-KeePass-Vaultwarden_241014.html
|
|
|
|
They even have a more detailed ZIP file with all raw information located here: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Downloadserver/P486/CAOS_Vaultwarden.html
|
|
|
|
<br>
|
|
|
|
As a reference you can download the report here:
|
|
- [Original - German - Vaultwarden-Passwortmanager.pdf](https://github.com/user-attachments/files/17805671/Vaultwarden-Passwortmanager.pdf)
|
|
- [Translated - English - Vaultwarden-Passwortmanager.en.pdf](https://github.com/user-attachments/files/17805672/Vaultwarden-Passwortmanager.en.pdf)
|