Guardian Suite · Verify before you install
Every Guardian Desktop release is a signed .deb published as a GitLab Release. No binaries are served from this website — this page shows you how to verify the package you download so a swapped or tampered file is caught before you install it.
Download three files from the latest Guardian Desktop GitLab Release: the package, the checksum file, and its signature.
One time. Confirm the fingerprint below matches the key you import.
Release signing key fingerprint (also published in SECURITY.md):
<PUBLISH ON KEY GENERATION — full 40-hex GPG fingerprint>
This is the release/artifact key. It is distinct from the per-device JWT issuer key.
If either check fails, do not install — the file was altered in transit or on the mirror. Contact security@neuralciberguard.org.
guardian-desktop account.NoNewPrivileges, ProtectSystem=strict, syscall filtering, capability bounding, CPU/memory ceilings)./etc/guardian-desktop/agent.env (root-owned, 0640) — set your dashboard URL, enrolment token, and tenant.Full install guide ships in the package at /usr/share/doc/guardian-desktop/INSTALL.md.