Verify Shadowfetch Linux

Every public Shadowfetch Linux ISO is shipped with a SHA-256 checksum, a detached GPG signature, and the Shadowfetch signing key. Check those before installing.

Current release

shadowfetch-1.7.0-amd64.iso

1bff5145b3bb3474932977de8ca85b93d014b3109ed2146b01bcf259dcd14b36  shadowfetch-1.7.0-amd64.iso

Signing key

Fingerprint: 8F13CE1535EE1F4A2916A1F73C5C900B7BE80CA1

Download the public key

Commands

gpg --import shadowfetch.gpg.asc
gpg --verify shadowfetch-1.7.0-amd64.iso.asc
shasum -a 256 shadowfetch-1.7.0-amd64.iso

What Shadowfetch provides

• Shadowfetch packages, themes, defaults, Welcome flow, privacy defaults, and local-AI setup.
• A signed APT repository at https://www.shadowfetch.com/linux/apt/.
• Debian testing remains the base package ecosystem. Shadowfetch is independent and not endorsed by Debian.