macOS
brew install aptlylocal Homebrew formula metadata
brew
Swiss army knife for Debian repository management. Version 1.6.3 via Homebrew; verified 2026-06-25.
install
brew install aptlylocal Homebrew formula metadata
sudo apt install aptlyDebian stable package indexes · aptly · source: deb.debian.org
nix profile install nixpkgs#aptlynixpkgs package indexes · pkgs/by-name/ap/aptly/package.nix · source: api.github.com
overview
Swiss army knife for Debian repository management
history
aptly is a Debian repository management tool for mirroring, snapshotting, publishing, and serving apt repositories. Its central idea is repeatable package environments through immutable snapshots and controlled repository changes.
The official aptly overview defines the project around repeatability and controlled changes in package environments. It models repositories as mirrors, local repos, snapshots, and published repositories that apt clients can consume.
aptly matured from a CLI-oriented repository tool into a broader repository-management service. Its documentation covers command groups for mirrors, repos, snapshots, packages, publishing, serving, and a REST API, while later releases added storage backends, API endpoints, concurrency fixes, and support for modern repository metadata.
Release history shows the project continuing well beyond its early 1.x line. Version 1.6.0 added large repository and API capabilities such as YAML config defaults, swagger API documentation, etcd database support, Azure storage support, multi-distribution publishing, and improved mirroring. Version 1.6.3 added GCS, Artifactory, AppStream mirror support, multiple GPG keys, and reproducible-build support.
aptly is adopted by teams that need more than a static apt directory but less than a full distribution archive infrastructure. It is common in CI/CD, appliance, internal repository, and staged-rollout workflows where the exact set of .deb packages must be reproducible.
The supplied metadata records Homebrew, Debian, Ubuntu, and Nix packaging. That cross-environment packaging matters because repository publishers are often run from build hosts, release machines, or CI containers rather than only on Debian servers.
Operators create mirrors of remote repositories, create local repositories for custom packages, take immutable snapshots, filter or merge snapshots, then publish a snapshot or local repo under a distribution/prefix for apt clients.
Configuration is JSON by default and loaded from ~/.aptly.conf or /etc/aptly.conf unless overridden with -config. The same config can define rootDir storage, dependency behavior, GPG behavior, filesystem publishing endpoints, S3 endpoints, Swift endpoints, logging, metrics, and API serving behavior.
The REST API makes aptly useful as infrastructure plumbing: release jobs can upload packages, create snapshots, switch published repositories, and expose deterministic repository states to fleets.
aptly is beloved package-nerd territory because it exposes the moving parts of apt repository management: Packages files, pools, signatures, snapshots, mirrors, publication, and rollback. It turns repository state into named objects you can reason about and automate.
Its snapshot model is the key significance. APT normally consumes the current state of a repository; aptly lets maintainers freeze and publish exact package sets, which is the difference between 'upgrade from whatever the mirror has today' and 'deploy this tested repository state'.
It also bridges old Debian archive concepts with modern infrastructure expectations: API control, cloud storage backends, CI-friendly publishing, and reproducibility.
security posture
narrow executable package without higher-risk signals.
green risk · low confidence · appliance
Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.
local files
These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.
Config paths the tool may read or write during local use.
~/.aptly.conf/etc/aptly.confexecutables
| Command | Kind | Exposure | Note |
|---|---|---|---|
aptly | cli | global executable |
freshness
These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.
https://github.com/aptly-dev/aptly
install metadata
| Package key | brew:aptly |
|---|---|
| Version | 1.6.3 |
| Package manager | Homebrew |
| Package manager page | https://formulae.brew.sh/formula/aptly |
| Homepage | https://www.aptly.info/ |
| Repository | https://github.com/aptly-dev/aptly |
| Upstream docs | https://www.aptly.info/doc/api |
| License | MIT |
| Source archive | https://github.com/aptly-dev/aptly/archive/refs/tags/v1.6.3.tar.gz |
| Last updated | 2026-06-25T12:05:28Z |
| Pulse | updated |
| Build dependencies | go |
| Bottle | available (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | not defined |
| Service | none declared |
registry facts
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | aptly |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
source database matches
Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.
aptly 1.6.1+ds1-3
Swiss army knife for Debian repository management - main package
sudo apt install aptlyaptly-api 1.6.1+ds1-3
Swiss army knife for Debian repository management - API
sudo apt install aptly-apiaptly
nix profile install nixpkgs#aptlyaptly 1.5.0+ds1-2
Swiss army knife for Debian repository management - main package
sudo apt install aptlyaptly-api 1.5.0+ds1-2
Swiss army knife for Debian repository management - API
sudo apt install aptly-apisource trail
This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.