Take potentially dangerous PDFs, office documents, or images and convert them to a safe PDF
  • Python 98.9%
  • Batchfile 1.1%
Find a file
2026-07-02 13:48:24 +02:00
.github chore(ci): Check installation from official repos with env.py 2026-06-17 19:36:41 +03:00
.well-known Add reference to funding.json (required by floss.fund application) 2025-03-06 15:54:36 +01:00
assets assets: Accurately depict our status bar in the design system 2025-10-23 14:55:25 +02:00
dangerzone Bump last known log index 2026-06-30 19:58:07 +03:00
debian (release) Bump version to v0.11.0 2026-06-17 11:47:14 +02:00
dev_scripts feat(qubes): Build Qubes packages more easily 2026-06-30 17:19:51 +03:00
docs feat(dev_scripts): Create a Dangerzone environment from an APT/YUM repo 2026-06-17 19:36:41 +03:00
install feat(qubes): Build Qubes packages more easily 2026-06-30 17:19:51 +03:00
share (release) Bump version to v0.11.0 2026-06-17 11:47:14 +02:00
tests fix(tests): Skip a test that does not apply in Qubes 2026-06-30 17:59:32 +03:00
.gitattributes docs: Add documentation and cleanup 2025-10-23 14:55:08 +02:00
.gitignore Packaging: container.tar moves to -full package 2026-06-04 13:27:55 +02:00
.grype.yaml Add an empty .grype.yaml 2026-05-26 15:45:07 +02:00
BUILD.md feat(qubes): Build Qubes packages more easily 2026-06-30 17:19:51 +03:00
CHANGELOG.md feat(dev_scripts): Create a Dangerzone environment from an APT/YUM repo 2026-06-17 19:36:41 +03:00
dodo.py packaging: include the container.tar on macOS 2026-07-01 15:09:33 +02:00
INSTALL.md chore(docs): Prompt users to install config-manager 2026-06-17 15:04:03 +03:00
LICENSE Replace MIT license with AGPLv3 2024-01-04 09:57:49 +00:00
Makefile packaging: Enable Dangerzone dev mode when running doit 2026-07-01 15:38:06 +02:00
mazette.lock chore: update to cosign v3 2026-06-11 11:56:20 +02:00
poetry.lock chore(make): Remove Dockerfile job 2026-06-17 11:47:14 +02:00
poetry.toml Introduce a 7-day dependency cooldown 2026-06-03 13:39:22 +02:00
pyproject.toml chore(lint): ignore podman vendorized module 2026-06-17 12:05:13 +02:00
README.md Pin Windows to 0.10.0 for now 2026-07-02 13:48:24 +02:00
setup-windows.py chore(lint): Manually fix 'E' lint errors 2026-06-17 11:47:14 +02:00
setup.py chore(lint): Manually fix 'E' lint errors 2026-06-17 11:47:14 +02:00
THIRD_PARTY_NOTICE.md Split out the container image into a separate repository 2026-04-27 14:45:04 +03:00

Dangerzone

Take potentially dangerous PDFs, office documents, or images and convert them to a safe PDF.

Settings Converting

Dangerzone works like this: You give it a document that you don't know if you can trust (for example, an email attachment). Inside of a sandbox, Dangerzone converts the document to a PDF (if it isn't already one), and then converts the PDF into raw pixel data: a huge list of RGB color values for each page. Then, outside of the sandbox, Dangerzone takes this pixel data and converts it back into a PDF.

Read more about Dangerzone in the official site.

Getting started

Follow the instructions for each platform:

You can read more about our operating system support here.

Some features

  • Sandboxes don't have network access, so if a malicious document can compromise one, it can't phone home
  • Sandboxes use gVisor, an application kernel written in Go, that implements a substantial portion of the Linux system call interface.
  • Dangerzone can optionally OCR the safe PDFs it creates, so it will have a text layer again
  • Dangerzone compresses the safe PDF to reduce file size
  • After converting, Dangerzone lets you open the safe PDF in the PDF viewer of your choice, which allows you to open PDFs and office docs in Dangerzone by default so you never accidentally open a dangerous document

Dangerzone can convert these types of document into safe PDFs:

  • PDF (.pdf)
  • Microsoft Word (.docx, .doc)
  • Microsoft Excel (.xlsx, .xls)
  • Microsoft PowerPoint (.pptx, .ppt)
  • ODF Text (.odt)
  • ODF Spreadsheet (.ods)
  • ODF Presentation (.odp)
  • ODF Graphics (.odg)
  • Hancom HWP (Hangul Word Processor) (.hwp, .hwpx)
  • EPUB (.epub)
  • Jpeg (.jpg, .jpeg)
  • GIF (.gif)
  • PNG (.png)
  • SVG (.svg)
  • other image formats (.bmp, .pnm, .pbm, .ppm, .tif, .tiff)

Dangerzone was inspired by Qubes trusted PDF, but it works in non-Qubes operating systems. It uses Podman containers as sandboxes instead of virtual machines.

Set up a development environment by following these instructions.

License and Copyright

Licensed under the AGPLv3: https://opensource.org/licenses/agpl-3.0

Copyright © 20222024 Freedom of the Press Foundation and Dangerzone contributors
Copyright © 20202021 First Look Media

See also THIRD_PARTY_NOTICE.md for more information regarding the third-party software that Dangerzone depends on.

See also

FAQ

Has Dangerzone received a security audit?

Yes, Dangerzone received its first security audit by Include Security in December 2023. The audit was generally favorable, as it didn't identify any high-risk findings, except for 3 low-risk and 7 informational findings.

"I'm experiencing an issue while using Dangerzone."

Dangerzone gets updates to improve its features and to fix problems. So, updating may be the simplest path to resolving the issue which brought you here. Here is how to update:

  1. Check which version of Dangerzone you are currently using: run Dangerzone, then look for a series of numbers to the right of the logo within the app. The format of the numbers will look similar to 0.4.1
  2. Now find the latest available version of Dangerzone: go to the download page. Look for the version number displayed. The number will be using the same format as in Step 1.
  3. Is the version on the Dangerzone download page higher than the version of your installed app? Go ahead and update.

Can I run Dangerzone in an airgapped environment?

Yes, Dangerzone is designed to run in airgapped environments without any configuration. If you want to update its container image, follow our instructions.

Can I use a custom runtime, such as Podman Desktop?

On Windows and macOS, Dangerzone embeds Podman, so there is no need to.

To use a different podman version, such as Podman Desktop, follow our documentation.