USB air-gapped system for GPG

How to create air-gapped system without network capabilities for GPG

As a developer using Linux and nixos, I want to create an air-gapped system without network capabilities, So that I can securely perform GPG Key Generation.

Nixos

Clone

git clone [email protected]:drduh/YubiKey-Guide.git
cd YubiKey-Guide

Update packages

nix flake update --commit-lock-file

Build image

nix build --experimental-features "nix-command flakes" .#nixosConfigurations.yubikeyLive.x86_64-linux.config.system.build.isoImage

Copy it to a USB drive (in this example device is /dev/sda):

lsblk
sudo cp -v result/iso/yubikeyLive.iso /dev/sda ; sync