Skip to content

csmith/apkutils

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
.github
.github
 
 
examples
examples
 
 
keys
keys
 
 
.gitignore
.gitignore
 
 
CHANGELOG.md
CHANGELOG.md
 
 
LICENCE
LICENCE
 
 
README.md
README.md
 
 
dependencies.go
dependencies.go
 
 
go.mod
go.mod
 
 
index.go
index.go
 
 
read.go
read.go
 
 
verify.go
verify.go
 
 

Repository files navigation

apkutils

apkutils contains utilities for operating on Alpine packages and package indices from Go.

Specifically it can:

  • Verify the public key signature in an APKINDEX.tar.gz bundle, then parse out the contents of the index. See examples/verify-and-parse-index.
  • Verify the public key signature in an APK file, and then verify the hash of the contents that is stored in the metadata, then return the content of the APK. See examples/verify-and-read-apk
  • Given the package information from an APKINDEX, recursively resolve dependencies of packages to generate a bill of materials/list of packages to install. See examples/flatten-dependencies

Contributions of further functions or enhancements are welcome!

About

Utilities for working with alpine packages and indicies in Go

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

5 tags

Sponsor this project

Packages

No packages published

Languages