Shyft Arch Linux Repository

This repository provides signed Arch Linux packages for the Shyft project.

The repository with the packages provided are created following release process of Shyft, signed with hardware backed gpg using nitrokey.

Documentation

• Shyft Documentation
• Package Verification Guide

Setup Instructions

1. Download the signing key

curl -sL https://archlinux.helset.gotdns.org/shyft-packages.key -o shyft-packages.key

2. Verify the key

gpg --show-keys shyft-packages.key

Compare the fingerprint with the official documentation.

3. Add key to pacman

sudo pacman-key --add shyft-packages.key
sudo pacman-key --lsign-key $(gpg --with-colons --show-keys shyft-packages.key | awk -F: '/^fpr:/ { print $10; exit }')

4. Add repositories

Edit /etc/pacman.conf:

[shyft]
Server = https://archlinux.helset.gotdns.org/stable/x86_64
SigLevel = Required TrustedOnly

[shyft-staging]
Server = https://archlinux.helset.gotdns.org/staging/x86_64
SigLevel = Required TrustedOnly

5. Install packages

sudo pacman -Sy shyft-runtime shyft-python shyft-development

Notes

• All packages are cryptographically signed
• Signature verification is enforced
• Staging contains pre-release versions