📦 An independent package manager that every hacker deserves.

Last update: Dec 4, 2023

Overview

An independent package manager for unix and linux🌷

Table of contents 📔

Why
Features
Installation
Hysp usages
Hosting custom repo
Packages
Support
License

Why?? 🚩

I am a CTF player (Capture the flag) who often finds myself without my main laptop in places that lack the tools I need. Some distros don't carry the packages I require and some doesn't keep them updated. That's why I created my own package manager :). It fetches tool binaries easily, ensuring I always have what I need to compete.

^{_{Dont touch my shrug}}

Features ⚾

Versatile : Hysp operates on (*nix) systems and various architectures (x86, aarch64_arm), providing flexibility for your needs.
Simple : No prerequisites is needed for Hysp or hysp-pkgs. Install Hysp as a single binary, no need for Go, Rust, or any other dependencies. Saves space, storage, and time.
Customizable : Pkg-Source can be self-hosted by anyone, allowing hysp to use your very own instead of the default source and local configuration as well. See #Self hosting
Statically compiled : The default source metis-os/hysp-pkgs) has all statically compiled binaries, only statically linked binaries that will run anywhere. You can always host dynamic or whatever you want.
No Special Privileges : Hysp requires no special perms or privileges. It can run completely in userspace with all of its features.
Everything is open source : Hysp uses github actions to build and ship the packages. On top of that it uses sha for varifying the binary.

7. Security Considerations

It is never a good idea to install random binaries from random sources.

Check these HackerNews Discussions

A cautionary tale from the decline of SourceForge

Downloading PuTTY Safely Is Nearly Impossible (2014)

!# PKG Metadata
# Everything is automated via Github Actions & Scripts
Repo --> https://github.com/metis-os/hysp-pkgs
WorkFlows --> https://github.com/metis-os/hysp-pkgs/tree/main/.github/workflows
Scripts --> https://github.com/metis-os/hysp-pkgs/tree/main/.github/scripts

!# Upstream Source
# Everything is automated via Github Actions & Build Scripts
Repo --> https://github.com/Azathothas/Toolpacks
WorkFlows --> https://github.com/Azathothas/Toolpacks/tree/main/.github/workflows
Build Scripts --> https://github.com/Azathothas/Toolpacks/tree/main/.github/scripts

Installation 📩

🪄 Binary

Manual : You can directly download the binary of your arch and run it.
One liner : Run this script, requires jq,curl, tar & wget

wget -qO- "$(curl -qfsSL "https://api.github.com/repos/pwnwriter/hysp/releases/latest" | jq -r '.assets[].browser_download_url' | grep -Ei "$(uname -m).*$(uname -s).*musl" | grep -v "\.sha")" | tar -xzf - --strip-components=1
./hysp -h

🌼 Source

git clone --depth=1 https://github.com/pwnwriter/hysp --branch=main
cd hysp
cargo build --release

Then go to release dir and ./hysp or move the binary to your any $PATH for instant access from anywhere.

🎠 Cargo

Using crates.io
```
cargo install hysp
```
Using binstall
```
cargo binstall hysp
```
Note ⚠️ This requires a working setup of rust/cargo & binstall.

🚩 METIS Linux

sudo/doas pacman -Sy hysp

💢 Arch user repository

paru/yay -S hysp-git

Hysp usages 🎠

Firstly, if you intend to access the binaries installed via hysp over the system, you may want to...

🏵️ Setup path for hysp bin

Add the following line to your shellrc. [ zshrc, bashrc etc. ]
```
export PATH="$HOME/.local/share/hysp/bin/:$PATH"
```

🐤 Help menu

hysp |install|uninstall|search| -h # check for help menu

🔻 Installing a pkg

hysp install -p <pkg> # use --force to overwrite already installed binary

🧁 Removing a pkg

hysp remove -p <pkg>

🔭 Search for available pkgs

hysp search -p <pkg> # use --silent to strip down the console i/o

⚕️ Checking configuration health

hysp health

Hosting custom repo 💾

Hysp provies the following configuration, which can be overwritten by defining a config file. Default config

  [source]
  remote = "https://raw.githubusercontent.com/metis-os/hysp-pkgs/main/data/"
  aarch = "Architecture"

  [local]
  home="/home/user/.local/share/hysp"
  bin="/home/user/.local/share/hysp/bin/" 
  data="/home/user/.local/share/hysp/data/Architecture/"

Explanation

Name	Description	Default
`remote`	Package repository	`metis-os/hysp-pkgs`
`home`	Home for `hysp`	`hysp`
`bin`	Directory to save the binaries	`~/.local/share/hysp/bin`
`data`	Directory to save pkg data	`~/.local/share/hysp/data/Architecture`
`aarch`	Your system Architecture	Only supported `X86_64,aarch64`

🎄 Tree view of the repo

.
├── available.toml # Storing available pkgs info (Optional)
├── data
│   └── x86_64 # Your cpu Architecture (aarch64 and x86_64) supported for now
│       └── foo.toml # where the package data are stored (needed)

📂 Sample pkg

[bin]
name = "$BIN" # Name of the pkg to be installed as

[package]
architecture = "x86_64" # Your aarchitecture 
name = "$BIN" # Your package name
description = "$DESCRIPTION" # Description
author = "$AUTHOR" # Author 
repo = "$REPO_URL" 
stars = "${STARS}"
version = "$PKG_VERSION"
updated = "$PKG_RELEASED"
size = "$SIZE"
sha = "$SHA" 
source = "$SOURCE_URL" # Source of the binary wherever it's hosted
language = "$LANGUAGE"
license = "$LICENSE"

[package.conditions]
conflicts  = ["$BIN"] # Conflictions 
requires = [] # Dependencies 

[package.metadata]
keywords = $TOPICS
categories = ["Utilities"]

Packages whuat?? 📦

There is a list of packages available in metis-os/hysp-pkgs . You can confidently utilize the default configuration without any hesitation. However, if you prefer to host your own packages, you have the option to do so by creating your own custom configuration file under ~/.config/hysp/config.toml. See #repo

Support 💌

I am a student currently attending university. I like working for Open Source in my free time. If you find my tool or work beneficial, please consider supporting me via KO-FI or ESEWA* (Nepal only), Or by leaving a star ⭐ ; I'll appreciate your action :)

License ㊙️

Everything is license under the MIT except for the packages... They hold their own livess :oOO

Comments

[pkg request]: Package presenterm for hysp-pkgs

Package Name

presenterm

Package Homepage

https://github.com/mfontanini/presenterm

Software Architecture

x86_64, aarch64_arm

Purpose/Description

It's a terminal slideshow tool.

Additional Information

No response

Check Package Availability

No
package request

opened by pwnwriter 1
inconsistent docs re default data location

Default config file: data="/home/user/.local/share/hysp/data/Architecture/"

Explanation immediately below data Directory to save pkg data ~/.local/share/hysp/data

Noticed because it seemed strange to have a single bin dir for x64 and aarch64 with different data dirs for the two. Probably just a documentation misfire.

opened by JonChesterfield 1
Suggestion for Improved User Feedback When No Packages are Installed in hysp
Dear @pwnwriter,

First and foremost, I'd like to extend my heartfelt appreciation for your work on this fascinating project. It's been an exciting journey exploring what hysp has to offer.

I've recently encountered a minor issue that I believe could be improved for a better user experience. Upon initial use of hysp, specifically when running hysp list, I received an error message due to the absence of any installed packages. While the error makes sense given that no packages were installed, I propose a more user-friendly approach to this scenario.

Currently, the system responds with the following error:

$ hysp list Info: Using default configuration. ──────────────────────────────── Error listing files in /home/steinbrueckri/.local/share/hysp/bin: No such file or directory (os error 2)

A more informative and less technical response could enhance the user's understanding of what needs to be done next. For instance, a message like "You have not installed any packages yet" would immediately clarify the situation without implying a system error.

This small change could significantly improve the user experience, especially for those who are new to hysp.

Thank you for considering this suggestion. I am looking forward to your thoughts and the continued evolution of this project.

Best regards, Richard
enhancement
opened by steinbrueckri 1
chore(deps): bump serde from 1.0.192 to 1.0.193
Bumps serde from 1.0.192 to 1.0.193.

Release notes

Sourced from serde's releases.

v1.0.193

Fix field names used for the deserialization of RangeFrom and RangeTo (#2653, #2654, #2655, thanks @emilbonnek)

Commits

44613c7 Release 1.0.193

c706281 Merge pull request #2655 from dtolnay/rangestartend

65d75b8 Add RangeFrom and RangeTo tests

332b0cb Merge pull request #2654 from dtolnay/rangestartend

8c4af41 Fix more RangeFrom / RangeEnd mixups

24a78f0 Merge pull request #2653 from emilbonnek/fix/range-to-from-de-mixup

c91c334 Fix Range{From,To} deserialize mixup

2083f43 Update ui test suite to nightly-2023-11-19

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependencies
opened by dependabot[bot] 0
chore(deps): bump spinoff from 0.7.0 to 0.8.0
Bumps spinoff from 0.7.0 to 0.8.0.

Release notes

Sourced from spinoff's releases.

0.8.0

What's Changed

Spinner instances can now be locked between mutexes and shared between threads

Commits

1d81b51 0.8 (#21)

13f6d1e add: pedantic linting

f82d2a0 remove: unnecessary workflow steps

66585ab fix: readme changes

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependencies
opened by dependabot[bot] 0

Quality of Life Changes & Some must have features in Hysp

Add/Use metadata in config.toml

Note : This should be an optional feature, toggled only if config.toml contains [source].metadata, else print [source].metadata not defined in config file (for self-hosting people)

Default config.toml should contain this field as all the backend work is already done

  [source]
  aarch = "Architecture"
  metadata = "https://raw.githubusercontent.com/metis-os/hysp-pkgs/main/data/metadata.toml" 
  remote = "https://raw.githubusercontent.com/metis-os/hysp-pkgs/main/data/"
  
  [local]
  home="/home/user/.local/share/hysp"
  bin="/home/user/.local/share/hysp/bin/" 
  data="/home/user/.local/share/hysp/data/"

Why ?

Implement cli to list all available packages based on metadata.toml

hysp list (-a | --all) --> List all available Packages
# Default: hysp cli to list only installed packages can be changed to something like: 
hysp list (-i | --installed) --> List only Installed Packages

Implement cli to fuzzy search packages based on metadata.toml

hysp search -p foo --> Should search for *foo*
# Default: hysp cli to install packages should stick to using exact matches
hysp install -p foo --> Should install exactly foo, based on foo.toml

Allow Installing/Uninstalling multiple packages at once

hysp install -p foo bar xyz --> Should install all three, one after another based on their `.toml` files.
# If it's not too much work, the search cli should also be able to search for multiple packages at once:
hysp search -p foo bar xyz --> Should search & print info for all three, and if fuzzy search is already implemented, then it should cotinue to fuzzy search for all three

#Similarly, the remove cmd should also be able to uninstall multiple packages at once
hysp remove -p foo bar xyz --> Should uninstall all three, one after another based on $BIN/$PKG

enhancement

opened by Azathothas 1

[PKG xyz Request] How to request your favorite tools/pkgs to be included in hysp-pkgs [Guide]

Check if it's already included in hysp-pkgs:

hysp search -p "$PKG"

#-----------------------------------------------------------------------------#
↣ x86_64
#Total Ported Packages --> metis-os/hysp-pkgs
curl -qfsSL "https://raw.githubusercontent.com/metis-os/hysp-pkgs/main/data/metadata.json" | jq -r '.packages[] | select(.architecture == "x86_64")' | jq -r '.name' | sort -u 
#Detailed: https://github.com/metis-os/hysp-pkgs/blob/main/data/x86_64/README.md
#-----------------------------------------------------------------------------#
↣ aarch64 || arm64
curl -qfsSL "https://raw.githubusercontent.com/metis-os/hysp-pkgs/main/data/metadata.json" | jq -r '.packages[] | select(.architecture == "aarch64_arm64")' | jq -r '.name' | sort -u
#Detailed: https://github.com/metis-os/hysp-pkgs/blob/main/data/aarch64_arm64/README.md

Check if it's being built at Azathothas/Toolpacks but not yet ported to hysp-pkgs

Diff:  https://github.com/metis-os/hysp-pkgs/blob/main/.github/PKGS_DIFF.txt

#-----------------------------------------------------------------------------#
↣ x86_64
#Total Hosted pkgs --> Azathothas/Toolpacks
curl -qfsSL "https://api.github.com/repos/Azathothas/Toolpacks/contents/x86_64/" | jq -r '.[].name' | sort -u
#Detailed: https://github.com/Azathothas/Toolpacks/blob/main/x86_64/README.md
#-----------------------------------------------------------------------------#
↣ aarch64 || arm64
#Total Hosted pkgs --> Azathothas/Toolpacks
curl -qfsSL "https://api.github.com/repos/Azathothas/Toolpacks/contents/aarch64_arm64/" | jq -r '.[].name' | sort -u
#Detailed: https://github.com/Azathothas/Toolpacks/blob/main/aarch64_arm64/README.md

If PKG xyz shows up here, have patience, it will eventually be added to hysp-pkgs

There's a pinned issue https://github.com/metis-os/hysp-pkgs/issues/1 that tracks this very thing

If PKG xyz really doesn't exist

Search if it already exists at : https://github.com/metis-os/hysp-pkgs/issues

Create an issue at : metis-os/hysp-pkgs

Use this template:
Title : [PKG REQUEST] $Package_Name for $AARCH
# Example: [PKG REQUEST] fzf for x86_64 Linux
Body :
- Repo : Include Link to Source Code (Github/Gitlab etc)
- Description : A brief description about the pkg, what it is about/does etc.
- Binary Releases : Whethere pre-compiled binaries are provided, if they are then `Yes` else `No`
   - If Binaries are already provided, download/extract it & include output for `file $PKG` & `ldd $PKG`
   - #Example : https://github.com/metis-os/hysp-pkgs/issues/2
- Needs to compile : If Releases are not provided,, or they are dynamic, write `Yes` else `No`
- Compile Instructions : If $PKG needs to be compiled & you know how to make it static, please include the build description.
Note: Your PKG xyz must be able to be compiled statically (Usually go/rust) or have their static binaries published as Releases.

An attempt will be made to compile PKG xyz, but ***if it's always dynamic***, PKG xyz wont be added to hysp-pkgs

Compiled Binary must be less than 100 MB in size. This is because of Github's Size limit.

opened by Azathothas 0

chore(deps): bump clap from 4.4.8 to 4.4.10
Bumps clap from 4.4.8 to 4.4.10.

Release notes

Sourced from clap's releases.

v4.4.10

[4.4.10] - 2023-11-28

Documentation

Link out to changelog

Cross link derive's attribute reference to derive tutorial

v4.4.9

[4.4.9] - 2023-11-27

Fixes

(help) Show correct Command::about under flattened headings

(help) Respect hide when flattening subcommands

Changelog

Sourced from clap's changelog.

[4.4.10] - 2023-11-28

Documentation

Link out to changelog

Cross link derive's attribute reference to derive tutorial

[4.4.9] - 2023-11-27

Fixes

(help) Show correct Command::about under flattened headings

(help) Respect hide when flattening subcommands

Commits

c0a1814 chore: Release

c83e681 docs: Update changelog

91bcac4 Merge pull request #5230 from epage/migrate

030d875 docs: Link out to the changelog at the relevant tag

b661a9d Merge pull request #5229 from epage/derive

a08587b docs(derive): Link to tutorial sections for attributes

21b671f chore: Release

93ba76d docs: Update changelog

c1c55b3 Merge pull request #5228 from epage/flat

b13f6d9 fix(help): Hide 'help' if only flattened subcommand

Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependencies
opened by dependabot[bot] 0