Configuring apk

How to configure the apk package manager

This page explains how to configure apk to pull packages from the Seal artifact server based on your existing setup.

Make sure you have the access token for the server ready.

Pull directly from the artifact server

  1. Download the Seal artifact server public key file:

  1. Save the file in /etc/apk/keys/sealsecurity.rsa.pub .

  2. Run the following command:

echo https://$PROJECT_ID:$TOKEN@apk.sealsecurity.io/seal/main >> /etc/apk/repositories

In the $PROJECT_ID put the name of your project. This value will later be used in the reporting to indicate which project pulled which vulnerable package.

In the $TOKEN put the access token to the Seal artifact server.

Last updated