# Configuring apk

This page explains how to configure apk to pull packages from the Seal artifact server based on your existing setup.

Make sure you have the access token for the server ready.

### Pull directly from the artifact server

1. Download the Seal artifact server public key file:

{% file src="<https://2109738374-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FytkIsVkwVdKiLQ2CT6Sw%2Fuploads%2Fy5B37gwKItfVv3VS25NM%2Fsealsecurity.rsa.pub?alt=media&token=5640841b-bd9f-4c21-bbc4-bffbb581fdeb>" %}

2. Save the file in `/etc/apk/keys/sealsecurity.rsa.pub` .
3. Run the following command:

```bash
echo https://$PROJECT_ID:$TOKEN@apk.sealsecurity.io/seal/main >> /etc/apk/repositories
```

In the `$PROJECT_ID` put the name of your project. This value will later be used in the reporting to indicate which project pulled which vulnerable package.

In the `$TOKEN` put the access token to the Seal artifact server.