Skip to content

README.md

Latest commit

Β 

History

History
75 lines (58 loc) Β· 3.07 KB

README.md

File metadata and controls

75 lines (58 loc) Β· 3.07 KB

CardputerZero Repository

The official Debian .deb repository for M5 CardputerZero applications β€” hosted on GitHub, served via GitHub Pages.

Quick start (on the device)

# Import the signing key
curl -fsSL https://m5stack.github.io/CardputerZeroRepository/KEY.gpg \
    | sudo tee /etc/apt/trusted.gpg.d/cardputer.asc > /dev/null

# Add the repository
echo 'deb [arch=arm64] https://m5stack.github.io/CardputerZeroRepository stable main' \
    | sudo tee /etc/apt/sources.list.d/cardputer.list

sudo apt update
sudo apt install <appname>

How it works

  • Metadata (dists/stable/main/binary-arm64/Packages*, Release, InRelease) lives on the main branch and is republished to gh-pages on every push. This is small text (~KB per app).
  • .deb binaries live as GitHub Release assets, not in the git tree. The Packages index points to https://github.com/m5stack/CardputerZeroRepository/releases/download/<tag>/<pkg>.deb. This avoids LFS quotas entirely.
  • Signing happens inside GitHub Actions using a GPG key stored as a repo secret. The public key is committed as KEY.gpg so clients can verify InRelease.
  • Submissions come in as Pull Requests containing an uploaded .deb under incoming/. The validate-submission.yml workflow runs on PR without secrets (safe). On merge, publish.yml moves the file to a Release, rebuilds the index, signs it, and pushes to gh-pages.

Architecture rationale

Why GitHub Pages + Releases and not LFS? LFS on free plan is 1 GB storage / 1 GB bandwidth per month β€” and bandwidth counts even for public repos. The Pages+Releases split avoids LFS entirely; see docs/ARCHITECTURE.md for the full writeup.

Submission flow

Developers either:

  1. czdev upload <file.deb> from CardputerZero-AppBuilder β€” opens a PR in this repo with the .deb dropped under incoming/.
  2. Manual PR β€” drop a .deb into incoming/, open a PR. CI validates dpkg metadata + architecture + filename. Maintainer reviews, merges.

Auth / signing for submitters is not wired yet β€” maintainer merge gates the publication.

Layout

CardputerZeroRepository/
β”œβ”€β”€ dists/stable/main/binary-arm64/   # apt metadata (Packages, Release, InRelease)
β”œβ”€β”€ pool/main/                        # reserved; small debs may land here later
β”œβ”€β”€ incoming/                         # PR landing zone, emptied on merge
β”œβ”€β”€ KEY.gpg                           # public signing key
└── .github/workflows/
    β”œβ”€β”€ validate-submission.yml       # PR safety: verify deb format only
    └── publish.yml                   # on merge to main: release + reindex + sign

Status

  • Repo structure bootstrapped (this PR)
  • validate-submission.yml β€” checks deb header, architecture=arm64
  • publish.yml β€” builds Packages/Release, signs, pushes to gh-pages
  • GPG signing key added as secret (see docs/MAINTAINERS.md)
  • GitHub Pages enabled on gh-pages branch
  • czdev upload subcommand wired to this flow (CardputerZero-AppBuilder)