update: Add Picocrypt audit (#2781)

Signed-off-by: kimg45 <138676274+kimg45@users.noreply.github.com> Signed-off-by: Freddy <freddy@privacyguides.org> Signed-off-by: Daniel Gray <dngray@privacyguides.org>
2025-01-17 18:47:20 -05:00 · 2024-10-24 04:55:01 +00:00 · 2024-10-24 04:55:01 +00:00 · 905ace5334
commit 905ace5334
parent 756daeec8b
2 changed files with 3 additions and 1 deletions
--- a/docs/cloud.md
+++ b/docs/cloud.md
@ -118,7 +118,7 @@ Peergos is primarily a web app, but you can self-host the server either as a loc

 Running a local version of Peergos alongside a registered account on their paid, hosted service allows you to access your Peergos storage without any reliance on DNS or TLS certificate authorities, and keep a copy of your data backed up to their cloud. The user experience should be the same whether you run their desktop server or just use their hosted web interface.

-Peergos was [audited](https://cure53.de/pentest-report_peergos.pdf) by Cure53 in September 2019, and all found issues were subsequently fixed.
+Peergos was [audited](https://cure53.de/pentest-report_peergos.pdf) by Cure53 in June 2019, and all found issues were subsequently fixed.

 An Android app is not available but it is [in the works](https://discuss.privacyguides.net/t/peergos-private-storage-sharing-social-media-and-application-platform/11825/25). The current workaround is to use the mobile [PWA](https://peergos.net) instead.

--- a/docs/encryption.md
+++ b/docs/encryption.md
@ -77,6 +77,8 @@ Cryptomator's documentation details its intended [security target](https://docs.

 </div>

+Picocrypt has been [audited](https://github.com/Picocrypt/storage/blob/main/Picocrypt.Audit.Report.pdf) by Radically Open Security in August 2024, and [most](https://github.com/Picocrypt/Picocrypt/issues/32#issuecomment-2329722740) of the issues found in the audit were subsequently fixed.
+
 ### VeraCrypt (Disk)

 <small>Protects against the following threat(s):</small>