[Feature Request] Integrate with update-manager on Debian-based distributions

RogueScholar

Having gotten a head start on the upcoming Ubuntu upgrade cycle to 24.04 LTS "Noble Numbat," I took notice of a quick and painless enhancement that 1Password could add to their Debian packages to make the release upgrade process smoother for users.

All the way back at the time of the Debian 5 "Lenny"/Ubuntu 9.04 "Jaunty Jackalope" releases added the ability for third-party repositories to opt-out of the typical deactivation of all non-official package sources during the do-release-upgrade workflow. The functionality is poorly-documented in the extreme, but you can see evidence of its existence in this changelog entry for the Ubuntu update-manager package. All that's required is for the package to install a readable "INI"-type file ending in .cfg in /etc/update-manager/release-upgrades.d/ that follows the convention below.

[ThirdPartyMirrors]
1password=https://downloads.1password.com/linux/debian/<arch>

The key name simply needs to be unique, typically the common name of the repository, while the value just needs to match the URI present in the .list or .source (DEB-822 style) entry found in the /etc/apt/sources.list.d file associated with it. This exempts that package source from the "unknown source" treatment in /usr/lib/python3/dist-packages/DistUpgrade/DistUpgradeController.py and allows your users to continue receiving updates to the desktop app and CLI without interruption or need to manually fiddle with APT configuration files following a system upgrade.

---

1Password Version: 1Password for Linux 8.10.32 (81032024)
Extension Version: 2.23.28 (22302800)
OS Version: Kubuntu Linux 24.04 LTS "Noble Numbat"
Browser: Vivaldi Snapshot 6.7.3329.16

roy_orbison

And switch to a DEB822-style /etc/apt/sources.list.d/1password.sources file whilst you're at it. They have been supported for several years. This works perfectly for me:

Types: deb
URIs: https://downloads.1password.com/linux/debian/amd64
Suites: stable
Components: main
Architectures: amd64
Signed-By: -----BEGIN PGP PUBLIC KEY BLOCK-----
 .
 mQINBFkeAh4BEACy6fUHiFi/YvXZ2E5Gs7qFL8TSKQGLt0g8w/NtBotMNveW2Nzg
 aXcmJ2E0aXY7nBRtpIgRRrb7XuskDZwGmVx4PQshaZuIozS0T1kdMitobi4k3g2M
 551yf1bPWl1neVJ5MmbpknnaIG6VjMHxcRKE0xXDYhpBtt7QQQw1HT8vOjUOXBUf
 VIj2o7I/+cRGNgDdkbuGRccC8hSGyiWXy4FY8xPvxMSCXoL5w531ewaGl/M+mAOC
 3c6T7S05CcNN50Z6wulCiDZGvuJ2547E5iU9KClAEchJH9yQ2PkLHy3OQi0lBt+4
 PmGeBOIxvFVXGbtGGtx6oFZxVaYDzF+BHHHRRdUs75pWzRm5y/3j0j+O4UKLWvMx
 3SN7gRRu6gP5nvOw6wdyYerci2NHx1JJKlM6d6zxEj+cJ4GoBeJQhJi3UVpDy0Hh
 TX3iid9Zz1ansQrSujXU2t82695WTGau5sarheDya4niKfVOh4IDMBbA17fnqJbS
 ttYiL5i4+eqXbkAItdq+skhqqUElrROC0RKiXhX00nHu+ASHYupr/1Ac9/jdk0wG
 TNb1ue76aBGJHZA0U67onp/MkVEOCv04nHRZbHArM0w52v40VIaUax5ZYfLSOIkq
 IkPHoywmhR7W6QVlBbjP6zWVrTAWEnPx2VDQVk1CX29n/kM/J1kE60poZQARAQAB
 tDNDb2RlIHNpZ25pbmcgZm9yIDFQYXNzd29yZCA8Y29kZXNpZ25AMXBhc3N3b3Jk
 LmNvbT6JAlQEEwEIAD4WIQQ/75dIRprb4V2nyoCsLWJ0IBLqIgUCWR4CHgIbAwUJ
 DwmcAAULCQgHAwUVCgkICwUWAgMBAAIeAQIXgAAKCRCsLWJ0IBLqIvg7D/9kizku
 ExCTdQsMqeWUgh59pSPoJn2xNQ6q1hOEgdSSyGAd4hXXmSsCiOF4G9hu9+rnAIxN
 oObpIUW78iOob7x8FYjjtZlPAaygnWNPYk5q35hD32f9KvlD7/WY/HoiMEC0qu9b
 2tf6dq3YS60OVsjLaM/BMugLmepXw5K5biNsPlVNPMa7EznBbP12Qs9+5qJv58CN
 ixM+XqNIEQuGGfks3Rp26bmmsWDjBOz7H72qtPa5zqyTDkJQ3g54SbXZwU3o/LD4
 uikdOKKQF6sIjiv+25j5NTHCJpKglJY7TgfVGTBfobgqU/1SdRR2IVLALrye5y12
 gHDqXq0CrhTGIrSSaFvoHcVdfn2U0NZUlThYS8jIzpAofn6DDXG+7g0twq9n8RQL
 /0WyEB0FdW/gkZirks0wJe5nWOrghvWuS7Mm31rTOkcpeljLEr+wfjf1GyiFNSx6
 kJDqJw3U3/oBYbOMKZn68P5ZxdxeSBchkZm1x+kfoBUM/npCU810TLztbV6wRPSj
 8DGhAu04YyLJJ1a2W2JVEYiYK0jKA/lhrw3Z1Nz9ikGJGgcQwaSqN4L9pzPUrx1m
 xNpn+QIHsjbwScavj3seMJwpxfabRy9zhteP9e6TMJnEZhdq4GTm0lL68kpC6z6e
 h/Z0KAZvf1jK/4A5wM4VnUTXMU+SGtU9VH5lzIkCMwQQAQgAHRYhBPAnWT97ensh
 T+2Lyy37ftAFej6jBQJZH38iAAoJEC37ftAFej6jNj8QAM5NpjCS0FYP3eLUoGYE
 CUHKAkCPim37Wuz0E1L8zwg02XQbzwQ/99hpCbsgqm8s/cCIprfJ0ioGnMa25IJN
 0keLLgocJQHeq+7Dw+tGrqVFU3Dnpyg2F7FBSTL5fvGYtPJe8Om7FFS9bm6nDytk
 vQ7fnyZxC3l+WyxlcQeYahgW4YIMZ4qOBY+ZE4m+Y2SXTAm3qKIbJJ/oixSVXCJS
 g964G7A7PN7RMqfKsbwL2ec4CsnOfYl6xe38muPXChvwZtoW1VtNZiBYkKfEOg4U
 57cJqclNp8GQRXcSfHY3G9hRIaJic6KFrjBlgwVHpRpSxhj1ydp/RghbjUBzuY22
 hgpHeVdw2wFDVef9st+3XHu6JiEHrGpWjc7VTpCiiYaHAPIFWMu8B9gnQrxc9ZXw
 0OzS4vu82mAiyitvw+dY3V4U5uo0q56iyswmDs2S2Kn8/510n2vdCqEtaKMV5cV+
 cnF1aU1PdRct/ZMfqOC+VcfTiS/Svx5/BCie0nIATJGcYtuX9fFd4Z0V3T0N6aM7
 QENgOny7X/zJgp5dWbgkv3Qyz83rz32cfcv9gSf8yUjV3/NsxrzCeKxFWFn+oPh3
 +PTforlP1OsyZORh9IgtoQ5Jqk6YYnSsYkJfseZVQigVpaD2nWwSmmQHMnHmwDvP
 CXKaBqnE2TXnoqXw4o8nSRvYiQEcBBABCAAGBQJZH3WeAAoJEL1Y5xxC89TUrRoH
 /iGhamPA0Z/ldEtBhSYGj/307UvFywP2tlXTeJqma1XwEBzXvx6j9Xn8pLIlvFh3
 /ouLmP36bY+Ftj8Im3EWGnmVm5joe5S2hDLQI7FDbWGUwJePDNaMxC/SsvVzkXJz
 jAvajVAReB3Pu93SfsraNV/nNMGO4ALW+1Z1p/tzgwW7G4YpiXmRZ1EcL688MQKB
 /B8IrKajadMk5avGsoPc53MFEDOboZ3lA7F9WnuS6OSX3zBqyiPYxWskAiVf2TVK
 lBU54ptBq8ruhKAQqn54VJ9A3jX31XAcEv1YBw44bPvZzMPxc51ufODSWN80Y5Tu
 i5hpxQVKjCfhjtBaYrwtTnuIXQQQEQIAHRYhBCIx3/CGnuOliFrn1PeHeivJxAwx
 BQJZsEYgAAoJEPeHeivJxAwxo6oAn1dFjYZNzLyIhZeKaeIiZwGmq/9EAJ4+fRg9
 P4I7jHwe0BN3iNAG1nKbGg==
 =hYVe
 -----END PGP PUBLIC KEY BLOCK-----

datakid

I came here to ask about the DEB822-style.

I've just got a large amount of noise along the lines of is configured multiple times in /etc/apt/sources.list.d/1password.list:2 and /etc/apt/sources.list.d/1password.sources:1 in my terminal due to 1password updating the /etc/apt/sources.list.d/1password.list file, instead of my /etc/apt/sources.list.d/1password.sources file.

Thank you!