Mailvelope

mailvelope.com
Mailvelope Icon

Mailvelope is an addon for email applications, that makes using PGP very easy for beginners. You can use the hosted version for free, or opt to host your own instance. Works with Gmail, Yahoo, Outlook, GMX, Posteo, Web.de, FreeNet.de, Mailbox.org and many others.

Security Audited Open Source

Mailvelope Source Code

Author

mailvelope

Description

Browser extension for OpenPGP encryption with Webmail

Homepage

License

AGPL-3.0

Created

24 Aug 12

Last Updated

24 Sept 24

Latest version

v5.2.0

Primary Language

JavaScript

Size

36,817 KB

Stars

1,693

Forks

213

Watchers

1,693

Language Usage

Language Usage

Star History

Star History

Recent Commits

  • Thomas Oberndörfer (27 Jun 24)

    Release v5.2.0

  • Thomas Oberndörfer (08 May 24)

    Revised action menu. Removed ActionMenuNewBGSetup. Fixed shouldSeeConsentDialog.

  • John Hess (26 Jun 24)

    Measure onboarding success with opt-in for 1% of users (#835) * remove old on-install consent screen * Skeleton of AnalyticsConsent page * basic consent interstitial shown randomly * Style consent page and make yes and no record consent; update analytics menu to describe just the onboarding campaign * instrument key setup pageload, generation, import of keys * push events to background page * simplify signature for recording onboarding event * use variables, not magic strings * measure time elapsed since last step in onboarding process * when re-starting extension, make sure to re-populate the kv * cleanup comments and whitespace * record encryption and decryption differentiating the latter on the basis of whether it was from the keyserver or not * use a stable selection into or out of the experiment, show dialog to those selected but yet-to-respond * disable analytics opt-in control. once you're out, you're out * add copy * update copy * remove provider campaign * remove console.log * remove vestiges of provider campaign * clean up AnalyticsConsent page * whitespace * use better id label * clean up lib analytics * replace old tests with new ones * remove old injection data collection points * fix linting errors * cleaner condition * remove do not deploys * remove do not deploys * configure whether steps should be captured once per action or once for each action/name combo * touch up green surround to match mockup * . * move analytics logic from UI to controller * remove vestigial record-onboarding-step * remove roundtrip with randomization variable * New interface added to analytics concent * privacy consent modal added * styling touchups --------- Co-authored-by: Anderson <[email protected]>

  • Igor Ianishevskyi (02 Jun 24)

    Add better hint when GnuPG installed but not working This addresses #837 by just adding a hint for the user to check out the wiki page on how to setup GnuPGP properly. ![image](https://github.com/mailvelope/mailvelope/assets/1504642/c980c598-b59d-4afe-af62-23a326a71171) Added the following translations * DE * RU * UA Signed-off-by: Igor Ianishevskyi <[email protected]>

  • Thomas Oberndörfer (22 Jun 24)

    Use crypto.randomUUID() for unique identifiers

  • Thomas Oberndörfer (22 Jun 24)

    Prevent duplicate authorize domain popups

  • Thomas Oberndörfer (10 Apr 24)

    Wrap text in display container for cleartext signed messages

  • Thomas Oberndörfer (18 Feb 24)

    Fix duplicate entries after reload of GnuPG keyring

  • Thomas Oberndörfer (14 Feb 24)

    Release v5.1.2

  • Thomas Oberndörfer (14 Feb 24)

    CASA security assessment findings

  • Thomas Oberndörfer (18 Jan 24)

    Add no-template-curly-in-string to ESLint

  • Thomas Oberndörfer (19 Dec 23)

    Allow new windows opened with click on link in decrypted message to run without sandbox

  • Thomas Oberndörfer (13 Oct 23)

    Release v5.1.1

  • Thomas Oberndörfer (11 Jul 23)

    Release v5.1.0

  • Thomas Oberndörfer (11 Jul 23)

    Support signature verification independent of sender identity. Display signature verification results in the file decryption UI. Warn about signature inconsistency between message and attachments. Improve detection of messages with detached signatures. Fix key import not updating existing keys properly.

  • Thomas Oberndörfer (11 Jul 23)

    Fix undefined password in private key backup after prior usage of password cache

  • Thomas Oberndörfer (11 Jul 23)

    Add Grunt debug task

  • Thomas Oberndörfer (19 Apr 23)

    Release v5.0.1

  • Thomas Oberndörfer (14 Apr 23)

    Replace QR code library

  • Thomas Oberndörfer (12 Apr 23)

    Fix showing only first email address of key in recipient selection of Mailvelope editor

  • Thomas Oberndörfer (12 Apr 23)

    Fix unknown signature has fingerprint instead keyId

  • Thomas Oberndörfer (02 Apr 23)

    Release v5.0.0

  • Thomas Oberndörfer (01 Apr 23)

    Defer loading of GnuPG keyring. Increase timeout for GPGME init.

  • Thomas Oberndörfer (01 Apr 23)

    Upgrade OpenPGP.js to v5

  • Thomas Oberndörfer (19 Nov 22)

    Release v4.7.1

  • Thomas Oberndörfer (17 Nov 22)

    Revert to OAuth mechanism with refresh tokens

  • Thomas Oberndörfer (08 Nov 22)

    Release v4.7.0

  • Thomas Oberndörfer (03 Nov 22)

    Migrate deprecated OAuth out-of-band flow to browser.identity API

  • Thomas Oberndörfer (09 Sept 22)

    Release v4.6.1

  • Thomas Oberndörfer (09 Sept 22)

    Fix editor hangs when sending message when password cache is deactivated and email has attachments

Mailvelope Website

Website

Mailvelope: PGP for Gmail & Webmail

Browser extension that allows to exchange encrypted emails following the OpenPGP encryption standard

Redirects

Redirects to https://mailvelope.com/en

Security Checks

All 66 security checks passed

Server Details

  • IP Address 185.26.156.95
  • Hostname giclas.uberspace.de
  • Location Wieseck, Hessen, Germany, EU
  • ISP uvensys GmbH
  • ASN AS205766

Associated Countries

  • AT
  • DE
  • US

Saftey Score

Website marked as safe

100%

Blacklist Check

mailvelope.com was found on 0 blacklists

  • ThreatLog
  • OpenPhish
  • PhishTank
  • Phishing.Database
  • PhishStats
  • URLhaus
  • RPiList Not Serious
  • AntiSocial Blacklist
  • PhishFeed
  • NABP Not Recommended Sites
  • Spam404
  • CRDF
  • Artists Against 419
  • CERT Polska
  • PetScams
  • Suspicious Hosting IP
  • Phishunt
  • CoinBlockerLists
  • MetaMask EthPhishing
  • EtherScamDB
  • EtherAddressLookup
  • ViriBack C2 Tracker
  • Bambenek Consulting
  • Badbitcoin
  • SecureReload Phishing List
  • Fake Website Buster
  • TweetFeed
  • CryptoScamDB
  • StopGunScams
  • ThreatFox
  • PhishFort

Website Preview

Mailvelope Reviews

More PGP Managers

About the Data: Mailvelope

API

You can access Mailvelope's data programmatically via our API. Simply make a GET request to:

https://api.awesome-privacy.xyz/utilities/pgp-managers/mailvelope

The REST API is free, no-auth and CORS-enabled. To learn more, view the Swagger Docs or read the API Usage Guide.

About the Data

Beyond the user-submitted YAML you see above, we also augment each listing with additional data dynamically fetched from several sources. To learn more about where the rest of data included in this page comes from, and how it is computed, see the About the Data section of our About page.

Share Mailvelope

Help your friends compare PGP Managers, and pick privacy-respecting software and services.
Share Mailvelope and Awesome Privacy with your network!

View PGP Managers (9)