From 3ace34099b81e539c4184996ff7a7baf9499bb08 Mon Sep 17 00:00:00 2001 From: antgig <144840521+antgig@users.noreply.github.com> Date: Fri, 31 May 2024 09:22:56 +0000 Subject: [PATCH] fix: Proton audit desc (#2590) - Added Proton Calendar Android app, web client have been audited - Replaced drive description link to general audit page Signed-off-by: Daniel Gray --- docs/calendar.md | 2 +- docs/cloud.md | 4 +--- 2 files changed, 2 insertions(+), 4 deletions(-) diff --git a/docs/calendar.md b/docs/calendar.md index f1c95342..6dd1630f 100644 --- a/docs/calendar.md +++ b/docs/calendar.md @@ -62,7 +62,7 @@ Multiple calendars and extended sharing functionality is limited to paid subscri -Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. +Unfortunately, as of May 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS, and only the former has been [audited](https://proton.me/blog/security-audit-all-proton-apps). Proton Calendar's web client is open source, however, and has been [audited](https://proton.me/community/open-source). ## Criteria diff --git a/docs/cloud.md b/docs/cloud.md index a913bd8b..ea6540a9 100644 --- a/docs/cloud.md +++ b/docs/cloud.md @@ -41,9 +41,7 @@ Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file -The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: - -> Auditors identified two low-severity vulnerabilities. Additionally, five general recommendations were reported. At the same time, we confirm that no important security issues were identified during the pentest. +The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/community/open-source). Proton Drive's brand new mobile clients have not yet been publicly audited by a third party.