This site hosts the Official package repositories for Varia Linux, managed by the Varia Linux Organization.
The official repositories are already pre-configured in your Varia Linux system's /etc/pacman.conf. This section is for verification or if the configuration was manually removed.
Ensure the following settings are present in your /etc/pacman.conf:
[varia] SigLevel = PackageRequired Server = https://varia-repo.amase.cc/$arch/
Security Note: As official repositories, **GPG signing** is enforced. The organization's public key should already be imported and trusted on your system.
Arch Linux users must complete two steps: import the GPG signing key and then add the repository sections.
To securely verify the packages, import the necessary signing key(s). The **Organization's Key** (Recommended) is FD8F04B290F3E2FD18CDAF9FD53A3E0AB76602CF.
The recommended method is to install the official keyring package:
sudo pacman -U https://varia-repo.amase.cc/x86_64/varia-keyring-20251110-2-any.pkg.tar.zst
If package installation fails with a key error, it might be due to a package still being signed by the old **Developer Key** (C7D43A7BF40EF2AC1486A457FED45582099CCB69, non-org signature, provided from AmaseCocoa). To resolve this, manually import the key from a keyserver and locally sign it:
# 1. Import the key from a keyserver sudo pacman-key --recv-key C7D43A7BF40EF2AC1486A457FED45582099CCB69 # 2. Locally sign the key to establish trust sudo pacman-key --lsign-key C7D43A7BF40EF2AC1486A457FED45582099CCB69
Add the repository sections shown below to your /etc/pacman.conf file:
[varia] SigLevel = PackageRequired Server = https://varia-repo.amase.cc/$arch/
Synchronize your package database and install packages using the standard Pacman commands:
sudo pacman -Sy sudo pacman -S <package-name>
For more details, check the source code at github.com/varia-linux/repo.