Upgrade from 0.12.1 to 0.12.2


If you installed SecureDrop before the release of SecureDrop 0.12.0 and have not upgraded to Ubuntu 16.04 yet, you must do so before April 30, 2019. Please see our detailed instructions.

Updating the Tails Workstations

If you have not already done so, we recommend that you update all Tails drives to version 3.13.1, which was released on March 23, 2019. Follow the Tails graphical prompts on your workstations to perform this upgrade.

On a subsequent boot of your SecureDrop Journalist and Admin Workstations, the SecureDrop Workstation Updater will alert you to workstation updates. Choose “Update Now” on each of the workstations:


Please note that this only updates the SecureDrop code on your Tails workstations. Tails upgrades must be performed separately.

If you don’t see the graphical updater, or if the automated update fails, you can perform a manual update by running the following commands:

cd ~/Persistent/securedrop
git fetch --tags
gpg --recv-key "2224 5C81 E3BA EB41 38B3 6061 310F 5612 00F4 AD77"
git tag -v 0.12.2


You may have to run the --recv-key command repeatedly for it to work.

The output should include the following two lines:

gpg:                using RSA key 22245C81E3BAEB4138B36061310F561200F4AD77
gpg: Good signature from "SecureDrop Release Signing Key"

Please verify that each character of the fingerprint above matches what on the screen of your workstation. If it does, you can check out the new release:

git checkout 0.12.2


If you do see the warning “refname ‘0.12.2’ is ambiguous” in the output, we recommend that you contact us immediately at securedrop@freedom.press (GPG encrypted).

Finally, run the following commands:

./securedrop-admin setup
./securedrop-admin tailsconfig

Getting Support

Should you require further support with your SecureDrop installation or the upgrade to Ubuntu 16.04, we are happy to help!