Download Latest Version
v1.12.0 source code.tar.gz (5.4 MB)
Get an email when there's a new version of Flox
| Name | Modified | Size | Downloads / Week |
|---|---|---|---|
| Parent folder | |||
| README.md | 2026-04-17 | 2.4 kB | |
| v1.11.4 source code.tar.gz | 2026-04-17 | 5.3 MB | |
| v1.11.4 source code.zip | 2026-04-17 | 5.8 MB | |
| Totals: 3 Items | 11.2 MB | 1 | |
This release is a hotfix for an expired package signing key with no other changes. If you see the following error when running sudo apt update or sudo dnf check-update, you can install the latest package directly to resolve it:
The following signatures were invalid: EXPKEYSIG 17C4AE797B819BF4 Flox Security (release signing key) <security@flox.dev>
Debian/Ubuntu (DEB):
:::bash
# For x86_64:
curl -fsSL -O https://downloads.flox.dev/by-env/stable/deb/flox-1.11.4.x86_64-linux.deb
sudo dpkg -i flox-1.11.4.x86_64-linux.deb
:::bash
# For aarch64 (ARM):
curl -fsSL -O https://downloads.flox.dev/by-env/stable/deb/flox-1.11.4.aarch64-linux.deb
sudo dpkg -i flox-1.11.4.aarch64-linux.deb
Fedora/RHEL/Rocky (RPM):
First, find and remove the expired Flox signing key:
:::bash
rpm -e gpg-pubkey-d89ee7d68a1ba21f4bf9a8f517c4ae797b819bf4-661ed2e2
[!NOTE] This may return
error: package gpg-pubkey-d89ee7d68a1ba21f4bf9a8f517c4ae797b819bf4-661ed2e2 is not installed; that message is expected and does not indicate a failure
Then import the updated signing key:
:::bash
rpm --import https://downloads.flox.dev/by-env/stable/rpm/flox-archive-keyring.asc
Then update Flox:
:::bash
dnf update flox
Once installed, sudo apt update and sudo dnf check-update will no longer produce this error. If you have any issues or questions, you can reach us on our community slack.
Download Links
- DEB (x86_64-linux)
- DEB (aarch64-linux)
- RPM (x86_64-linux)
- RPM (aarch64-linux)
- OSX (x86_64-darwin)
- OSX (aarch64-darwin)
[!NOTE] You can find the SHA256 checksums for Flox 1.11.4 and SHA512 checksums for Flox 1.11.4 online.
