Look at the meta for the Debian:11 project I notice that this uses the following 3 sources: https://build.opensuse.org/projects/Debian:11/meta <repository name="standard"> <download arch="x86_64" url="http://ftp.de.debian.org/debian/bullseye/main" repotype="deb"> <repository name="update"> <download arch="x86_64" url="http://ftp.de.debian.org/debian/bullseye-updates/main" repotype="deb"> <repository name="backports"> <download arch="x86_64" url="http://ftp.de.debian.org/debian/bullseye-backports/main" repotype="deb"> I wonder if should also include the debian security source? This will contain security fixes that are neither in update or standard (until the next twice yearly point release of standard). deb http://deb.debian.org/debian-security/ bullseye-security main See: https://wiki.debian.org/SourcesList for full details of debian sources. (the same would apply to Debian:12 too)