Air-gapped / offline

NuGetKeep’s licensing is designed for air-gapped and offline deployments. The license key is an ECDSA-signed JWT (ES256) that the server validates against a public key embedded in the binary — there is no network call and no phone-home, ever.

For air-gapped hosts, deliver the key declaratively via the environment variable so no interactive step is needed:

docker run --rm -p 8080:8080 \
  -v nugetkeep-data:/data \
  -e NUGETKEEP_LICENSE_KEY=<your-license-jwt> \
  ghcr.io/atypical-consulting/nugetkeep:latest

Because validation is offline, the server cannot revoke a key before its expiry — keys are time-bounded (annual) and renewed by re-applying the new key. Nothing about your packages, usage, or license leaves your network.