[Bug] Use of deprecated apt-key method

[Sitric1]

Describe the bug
The Orb repository setup uses deprecated APT key management methods, causing warning messages during apt update. The repository signing key is being stored in the legacy /etc/apt/trusted.gpg keyring instead of using the modern key storage approach recommended by APT.

To Reproduce
Steps to reproduce the behavior:

Install Orb application following official installation instructions on Ubuntu/Debian
Run sudo apt update
Observe warning message in terminal output
See warning: W: https://pkgs.orb.net/stable/ubuntu/dists/orb/InRelease: Key is stored in legacy trusted.gpg keyring (/etc/apt/trusted.gpg), see the DEPRECATION section in apt-key(8) for details.

Expected behavior
The repository key should be stored in /usr/share/keyrings/ or /etc/apt/trusted.gpg.d/ with a signed-by directive in the repository configuration file. Running apt update should complete without deprecation warnings.

Screenshots
If applicable, add screenshots to help explain your problem.

Environment (please complete the following information):

• OS: Linux (Zorin OS)
• OS Version: Zorin OS 18
• Orb App Version: 1.3.6

Additional context
The apt-key command and storing keys in /etc/apt/trusted.gpg have been deprecated since Ubuntu 20.10/Debian 11.

[mignaulo]

Hi @Sitric1, thanks for your report!

Did you install using our install script or using our manual instructions?
For our manual instructions, we have two variants for Ubuntu (and derivatives):
Ubuntu before 20.04: https://orb.net/docs/setup-sensor/linux/ubuntu-before-2004 (which uses apt-key add)
Ubuntu 20.04 and up: https://orb.net/docs/setup-sensor/linux/ubuntu-2004-up (which uses the keyrings folder and signed-by)

If you used the automatic install script, it might have trouble determining if Zorin is recent enough to use the keyring vs the legacy method. Could you provide me with the contents of /etc/os-release from your machine?

How do you like Zorin OS 18 btw?

[Sitric1]

Here's the output of cat /etc/os-realease:

PRETTY_NAME="Zorin OS 18"
NAME="Zorin OS"
VERSION_ID="18"
VERSION="18"
VERSION_CODENAME=noble
ID=zorin
ID_LIKE="ubuntu debian"
HOME_URL="https://zorin.com/os/"
SUPPORT_URL="https://help.zorin.com/"
BUG_REPORT_URL="https://zorin.com/os/feedback/"
PRIVACY_POLICY_URL="https://zorin.com/legal/privacy/"
UBUNTU_CODENAME=noble
LOGO=zorin-logo

I'm pretty sure I installed Orb sensor via the manual instructions through the terminal but it might have been the instructions for Ubuntu < 20.04.
So I just ran the "Install Orb on Ubuntu 20.04 and above" instructions on the website and it resolved the deprecation warning.

Those correct steps for Zorin OS 18 (Ubuntu 22.04-based) are:

sudo mkdir -p --mode=0755 /usr/share/keyrings
curl -fsSL https://pkgs.orb.net/stable/debian/orbforge.noarmor.gpg | sudo tee /usr/share/keyrings/orbforge-keyring.gpg >/dev/null
curl -fsSL https://pkgs.orb.net/stable/ubuntu/ubuntu.orbforge-keyring.list | sudo tee /etc/apt/sources.list.d/orb.list
sudo apt-get update
sudo apt-get install orb
sudo systemctl enable --now orb-update.timer

I'm loving Zorin OS! It's by far the most polished Linux distro I have ever tried. Very easy to use, performs well, GNOME desktop environment is beautiful. Used stock Ubuntu and Linux Mint for Uni projects and other things but since Win10 EOL I have gone 100% Linux daily driver.