# Install aptly with Homebrew, apt, Nix

Swiss army knife for Debian repository management. Version 1.6.3 via Homebrew; verified 2026-06-25.

## Install

```sh
sudo av install brew:aptly
```

Additional install commands:

### macOS

- Homebrew (100%):

```sh
brew install aptly
```

  Evidence: local Homebrew formula metadata

### Linux

- Debian apt (92%):

```sh
sudo apt install aptly
```

  Evidence: Debian stable package indexes: aptly from https://deb.debian.org/debian/dists/stable/main/binary-amd64/Packages.xz

- Nix (92%):

```sh
nix profile install nixpkgs#aptly
```

  Evidence: nixpkgs package indexes: pkgs/by-name/ap/aptly/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1

## Package facts

- **Package key:** brew:aptly
- **Package manager:** Homebrew
- **Package manager page:** <https://formulae.brew.sh/formula/aptly>
- **Version:** 1.6.3
- **Source summary:** Swiss army knife for Debian repository management
- **Homepage:** <https://www.aptly.info/>
- **Repository:** <https://github.com/aptly-dev/aptly>
- **Upstream docs:** <https://www.aptly.info/doc/api>
- **License:** MIT
- **Source archive:** <https://github.com/aptly-dev/aptly/archive/refs/tags/v1.6.3.tar.gz>
- **Last updated:** 2026-06-25T12:05:28Z
- **Generated:** 2026-07-08T07:18:31+00:00

## Executables

- aptly (cli)
- aptly (alias)

## Build dependencies

- go

## Install behavior

- Post-install hook: not defined
- Bottle: available on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux

## Freshness

- Page generated: 2026-07-08
- Package-manager version: 1.6.3
- Package-manager updated: 2026-06-25
- Local data: ok
- Upstream repository: https://github.com/aptly-dev/aptly
- Upstream latest detected: v1.6.3 (current)
## Project history and usage

aptly is a Debian repository management tool for mirroring, snapshotting, publishing, and serving apt repositories. Its central idea is repeatable package environments through immutable snapshots and controlled repository changes.

### Project history

The official aptly overview defines the project around repeatability and controlled changes in package environments. It models repositories as mirrors, local repos, snapshots, and published repositories that apt clients can consume.

aptly matured from a CLI-oriented repository tool into a broader repository-management service. Its documentation covers command groups for mirrors, repos, snapshots, packages, publishing, serving, and a REST API, while later releases added storage backends, API endpoints, concurrency fixes, and support for modern repository metadata.

Release history shows the project continuing well beyond its early 1.x line. Version 1.6.0 added large repository and API capabilities such as YAML config defaults, swagger API documentation, etcd database support, Azure storage support, multi-distribution publishing, and improved mirroring. Version 1.6.3 added GCS, Artifactory, AppStream mirror support, multiple GPG keys, and reproducible-build support.

### Adoption history

aptly is adopted by teams that need more than a static apt directory but less than a full distribution archive infrastructure. It is common in CI/CD, appliance, internal repository, and staged-rollout workflows where the exact set of .deb packages must be reproducible.

The supplied metadata records Homebrew, Debian, Ubuntu, and Nix packaging. That cross-environment packaging matters because repository publishers are often run from build hosts, release machines, or CI containers rather than only on Debian servers.

### How it is used

Operators create mirrors of remote repositories, create local repositories for custom packages, take immutable snapshots, filter or merge snapshots, then publish a snapshot or local repo under a distribution/prefix for apt clients.

Configuration is JSON by default and loaded from ~/.aptly.conf or /etc/aptly.conf unless overridden with -config. The same config can define rootDir storage, dependency behavior, GPG behavior, filesystem publishing endpoints, S3 endpoints, Swift endpoints, logging, metrics, and API serving behavior.

The REST API makes aptly useful as infrastructure plumbing: release jobs can upload packages, create snapshots, switch published repositories, and expose deterministic repository states to fleets.

### Why package nerds care

aptly is beloved package-nerd territory because it exposes the moving parts of apt repository management: Packages files, pools, signatures, snapshots, mirrors, publication, and rollback. It turns repository state into named objects you can reason about and automate.

Its snapshot model is the key significance. APT normally consumes the current state of a repository; aptly lets maintainers freeze and publish exact package sets, which is the difference between 'upgrade from whatever the mirror has today' and 'deploy this tested repository state'.

It also bridges old Debian archive concepts with modern infrastructure expectations: API control, cloud storage backends, CI-friendly publishing, and reproducibility.

### Timeline

- 2017: aptly 1.1.x tags show the early 1.x line and package-pool layout changes.
- 2019: aptly 1.4.0 release line continues storage and repository maintenance work.
- 2022: aptly 1.5.0 release moves artifact handling away from Bintray-era infrastructure.
- 2024: aptly 1.6.0 adds YAML config defaults, swagger API docs, etcd support, Azure storage, and multi-distribution publishing.
- 2026: aptly 1.6.3 adds GCS and Artifactory publishing, AppStream mirror support, multiple GPG keys, and reproducible-build support.

### Related projects

- APT is the client-side package manager that consumes aptly-published repositories.
- dpkg and Debian package metadata define the .deb files and repository indexes aptly manipulates.
- GnuPG is central to signing and verifying published apt repository metadata.

### Sources

- <https://github.com/aptly-dev/aptly/releases>
- <https://github.com/aptly-dev/aptly/tags?page=3>
- <https://www.aptly.info/doc/configuration/>
- <https://www.aptly.info/doc/overview/>
- source_facts.package-manager


## Security Notes

narrow executable package without higher-risk signals.

- **Geiger risk:** green / low
- narrow executable package without higher-risk signals


## Configuration and credential file locations

These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.


## Configuration files

- Unix: ~/.aptly.conf, /etc/aptly.conf
## Source Database Details

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** aptly
- **Version Scheme:** 0
- **Revision:** 0
- **Head Version:** HEAD
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** head, stable

## Other Package-Manager Records

- Debian apt - aptly - 1.6.1+ds1-3: normalized package name match | Debian stable package indexes: aptly from https://deb.debian.org/debian/dists/stable/main/binary-amd64/Packages.xz | Swiss army knife for Debian repository management - main package | https://www.aptly.info
- Debian apt - aptly-api - 1.6.1+ds1-3: normalized package name match | Debian stable package indexes: aptly-api from https://deb.debian.org/debian/dists/stable/main/binary-amd64/Packages.xz | Swiss army knife for Debian repository management - API | https://www.aptly.info
- Nix - aptly: normalized package name match | nixpkgs package indexes: pkgs/by-name/ap/aptly/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1
- Ubuntu apt - aptly - 1.5.0+ds1-2: normalized package name match | Ubuntu 24.04 LTS package indexes: aptly from https://archive.ubuntu.com/ubuntu/dists/noble/universe/binary-amd64/Packages.gz | Swiss army knife for Debian repository management - main package | https://www.aptly.info
- Ubuntu apt - aptly-api - 1.5.0+ds1-2: normalized package name match | Ubuntu 24.04 LTS package indexes: aptly-api from https://archive.ubuntu.com/ubuntu/dists/noble/universe/binary-amd64/Packages.gz | Swiss army knife for Debian repository management - API | https://www.aptly.info


## Related links

- [Source-control packages](https://www.automicvault.com/pkg/source-control-tools/) - Belongs to a source-control command family.
- [Terminal utility packages](https://www.automicvault.com/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Networking and protocol packages](https://www.automicvault.com/pkg/networking-protocol-tools/) - Matched network, protocol, or remote-service metadata.
- [Homebrew utility packages](https://www.automicvault.com/pkg/brew-utility-packages/) - Matched Homebrew package provider.
- [go](https://www.automicvault.com/pkg/brew/go/) - Build dependency declared by Homebrew.
- [apt-dater](https://www.automicvault.com/pkg/brew/apt-dater/) - Shares av.db curated category or tags: apt, cli, system.
- [abduco](https://www.automicvault.com/pkg/brew/abduco/) - Shares av.db curated category or tags: cli, system.
- [acl](https://www.automicvault.com/pkg/brew/acl/) - Shares av.db curated category or tags: cli, system.
- [acpica](https://www.automicvault.com/pkg/brew/acpica/) - Shares av.db curated category or tags: cli, system.
- [afio](https://www.automicvault.com/pkg/brew/afio/) - Shares av.db curated category or tags: cli, system.
- [afsctool](https://www.automicvault.com/pkg/brew/afsctool/) - Shares av.db curated category or tags: cli, system.
- [afuse](https://www.automicvault.com/pkg/brew/afuse/) - Shares av.db curated category or tags: cli, system.
- [agedu](https://www.automicvault.com/pkg/brew/agedu/) - Shares av.db curated category or tags: cli, system.
- [m-cli](https://www.automicvault.com/pkg/brew/m-cli/) - Local package facts share a topical domain. Shared terms: army, cli, knife, swiss, system.
- [fnt](https://www.automicvault.com/pkg/brew/fnt/) - Local package facts share a topical domain. Shared terms: apt, cli, management, system.

## Combined YAML source

View the package source record on GitHub. [combined/aptly.yml](https://github.com/automic-vault/db/blob/main/combined/aptly.yml)


## Sources

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- curated configuration and credential file locations
- curated package history
- package version freshness
- av.db category and tag curation
- package relationship graph
- external package-manager database matches
- cross-ecosystem install command graph
