{"id":15033318,"url":"https://github.com/homebrew/brew","last_synced_at":"2026-04-06T08:00:57.104Z","repository":{"id":37270680,"uuid":"53238813","full_name":"Homebrew/brew","owner":"Homebrew","description":"🍺 The missing package manager for macOS (or Linux)","archived":false,"fork":false,"pushed_at":"2026-04-03T18:17:19.000Z","size":111075,"stargazers_count":47357,"open_issues_count":32,"forks_count":11058,"subscribers_count":734,"default_branch":"main","last_synced_at":"2026-04-03T18:19:08.909Z","etag":null,"topics":["brew","homebrew","macos","package-manager","ruby"],"latest_commit_sha":null,"homepage":"https://brew.sh","language":"Ruby","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"bsd-2-clause","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Homebrew.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":"CODEOWNERS","security":null,"support":"docs/Support-Tiers.md","governance":"docs/governance/2019-membership.md","roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":"AGENTS.md","dco":null,"cla":null},"funding":{"github":"Homebrew","open_collective":"homebrew","patreon":"homebrew"}},"created_at":"2016-03-06T05:08:38.000Z","updated_at":"2026-04-03T15:17:33.000Z","dependencies_parsed_at":"2024-01-28T16:01:51.990Z","dependency_job_id":"5c3cc6e6-9d44-4469-a34c-6a8e196e1be8","html_url":"https://github.com/Homebrew/brew","commit_stats":{"total_commits":30915,"total_committers":1247,"mean_commits":24.79149959903769,"dds":0.8524017467248908,"last_synced_commit":"62c1f5b42bb9959414d1e016f96385f48b9b961d"},"previous_names":[],"tags_count":496,"template":false,"template_full_name":null,"purl":"pkg:github/Homebrew/brew","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Homebrew%2Fbrew","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Homebrew%2Fbrew/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Homebrew%2Fbrew/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Homebrew%2Fbrew/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Homebrew","download_url":"https://codeload.github.com/Homebrew/brew/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Homebrew%2Fbrew/sbom","scorecard":{"id":63069,"data":{"date":"2025-08-11","repo":{"name":"github.com/Homebrew/brew","commit":"a0d01bc7c410bdb55794f4858c29e9c79e0e485c"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":5.9,"checks":[{"name":"Code-Review","score":10,"reason":"all changesets reviewed","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Maintained","score":10,"reason":"30 commit(s) and 17 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Info: jobLevel 'contents' permission set to 'read': .github/workflows/actionlint.yml:31","Info: jobLevel 'contents' permission set to 'read': .github/workflows/actionlint.yml:86","Info: jobLevel 'contents' permission set to 'read': .github/workflows/codeql-analysis.yml:20","Info: jobLevel 'actions' permission set to 'read': .github/workflows/codeql-analysis.yml:19","Info: jobLevel 'contents' permission set to 'read': .github/workflows/copilot-setup-steps.yml:15","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/pkg-installer.yml:215","Info: jobLevel 'contents' permission set to 'read': .github/workflows/pkg-installer.yml:37","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/stale-issues.yml:66","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/stale-issues.yml:36","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/sync-default-branches.yml:26","Info: found token with 'none' permissions: .github/workflows/actionlint.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/autogenerated-files.yml:13","Warn: no topLevel permission defined: .github/workflows/codeql-analysis.yml:1","Warn: no topLevel permission defined: .github/workflows/copilot-setup-steps.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/docker.yml:15","Info: topLevel 'contents' permission set to 'read': .github/workflows/docs.yml:8","Info: topLevel 'pages' permission set to 'read': .github/workflows/docs.yml:9","Info: topLevel 'contents' permission set to 'read': .github/workflows/doctor.yml:13","Info: found token with 'none' permissions: .github/workflows/pkg-installer.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/rubydoc.yml:11","Info: topLevel 'contents' permission set to 'read': .github/workflows/sbom.yml:14","Info: topLevel 'contents' permission set to 'read': .github/workflows/sorbet.yml:20","Info: topLevel 'contents' permission set to 'read': .github/workflows/spdx.yml:14","Info: topLevel 'contents' permission set to 'read': .github/workflows/sponsors-maintainers-man-completions.yml:23","Info: found token with 'none' permissions: .github/workflows/stale-issues.yml:1","Info: found token with 'none' permissions: .github/workflows/sync-default-branches.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/tests.yml:12","Warn: topLevel 'contents' permission set to 'write': .github/workflows/vendor-gems.yml:21","Info: topLevel 'pull-requests' permission set to 'read': .github/workflows/vendor-gems.yml:22","Info: topLevel 'contents' permission set to 'read': .github/workflows/vendor-version.yml:10"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE.txt:0","Info: FSF or OSI recognized license: BSD 2-Clause \"Simplified\" License: LICENSE.txt:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Binary-Artifacts","score":0,"reason":"binaries present in source code","details":["Warn: binary detected: Library/Homebrew/test/support/fixtures/elf/c.elf:1","Warn: binary detected: Library/Homebrew/test/support/fixtures/elf/hello:1","Warn: binary detected: Library/Homebrew/test/support/fixtures/elf/hello_with_rpath:1","Warn: binary detected: Library/Homebrew/test/support/fixtures/elf/libforty.so.0:1","Warn: binary detected: Library/Homebrew/test/support/fixtures/elf/libhello.so.0:1","Warn: binary detected: Library/Homebrew/test/support/fixtures/mach/a.out:1","Warn: binary detected: Library/Homebrew/test/support/fixtures/mach/fat.bundle:1","Warn: binary detected: Library/Homebrew/test/support/fixtures/mach/fat.dylib:1","Warn: binary detected: Library/Homebrew/test/support/fixtures/mach/i386.bundle:1","Warn: binary detected: Library/Homebrew/test/support/fixtures/mach/i386.dylib:1","Warn: binary detected: Library/Homebrew/test/support/fixtures/mach/x86_64.bundle:1","Warn: binary detected: Library/Homebrew/test/support/fixtures/mach/x86_64.dylib:1","Warn: binary detected: Library/Homebrew/test/support/fixtures/test.jar:1","Warn: binary detected: Library/Homebrew/vendor/bundle/ruby/3.4.0/gems/concurrent-ruby-1.3.5/lib/concurrent-ruby/concurrent/concurrent_ruby.jar:1"],"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact 4.6.3 not signed: https://api.github.com/repos/Homebrew/brew/releases/239210262","Warn: release artifact 4.6.2 not signed: https://api.github.com/repos/Homebrew/brew/releases/239118779","Warn: release artifact 4.6.1 not signed: https://api.github.com/repos/Homebrew/brew/releases/239030460","Warn: release artifact 4.6.0 not signed: https://api.github.com/repos/Homebrew/brew/releases/237613976","Warn: release artifact 4.5.13 not signed: https://api.github.com/repos/Homebrew/brew/releases/235560430","Warn: release artifact 4.6.3 does not have provenance: https://api.github.com/repos/Homebrew/brew/releases/239210262","Warn: release artifact 4.6.2 does not have provenance: https://api.github.com/repos/Homebrew/brew/releases/239118779","Warn: release artifact 4.6.1 does not have provenance: https://api.github.com/repos/Homebrew/brew/releases/239030460","Warn: release artifact 4.6.0 does not have provenance: https://api.github.com/repos/Homebrew/brew/releases/237613976","Warn: release artifact 4.5.13 does not have provenance: https://api.github.com/repos/Homebrew/brew/releases/235560430"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Pinned-Dependencies","score":3,"reason":"dependency not pinned by hash detected -- score normalized to 3","details":["Info: Possibly incomplete results: error parsing shell code: parameter expansion requires a literal: .vscode/ruby-lsp-activate.sh:0","Info: Possibly incomplete results: error parsing shell code: / must follow an expression: Library/Homebrew/shims/super/cc:0","Warn: third-party GitHubAction not pinned by hash: .github/workflows/actionlint.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/actionlint.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/autogenerated-files.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/autogenerated-files.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/copilot-setup-steps.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/copilot-setup-steps.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/docs.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/docs.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/doctor.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/doctor.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/doctor.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/doctor.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/pkg-installer.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/pkg-installer.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/pkg-installer.yml:254: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/pkg-installer.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/rubydoc.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/rubydoc.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sbom.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/sbom.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sbom.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/sbom.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sbom.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/sbom.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sbom.yml:83: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/sbom.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sbom.yml:109: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/sbom.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sorbet.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/sorbet.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sorbet.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/sorbet.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sorbet.yml:47: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/sorbet.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sorbet.yml:103: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/sorbet.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sorbet.yml:129: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/sorbet.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/spdx.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/spdx.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/spdx.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/spdx.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/spdx.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/spdx.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/spdx.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/spdx.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/spdx.yml:103: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/spdx.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sponsors-maintainers-man-completions.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/sponsors-maintainers-man-completions.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sponsors-maintainers-man-completions.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/sponsors-maintainers-man-completions.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sponsors-maintainers-man-completions.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/sponsors-maintainers-man-completions.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sponsors-maintainers-man-completions.yml:128: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/sponsors-maintainers-man-completions.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sponsors-maintainers-man-completions.yml:153: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/sponsors-maintainers-man-completions.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sync-default-branches.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/sync-default-branches.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/tests.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:143: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/tests.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:166: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/tests.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:189: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/tests.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:196: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/tests.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:499: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/tests.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/tests.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:224: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/tests.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:259: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/tests.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:407: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/tests.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:447: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/tests.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/vendor-gems.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/vendor-gems.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/vendor-gems.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/vendor-gems.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/vendor-gems.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/vendor-gems.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/vendor-gems.yml:104: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/vendor-gems.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/vendor-version.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/Homebrew/brew/vendor-version.yml/main?enable=pin","Warn: containerImage not pinned by hash: Dockerfile:4","Info:  33 out of  33 GitHub-owned GitHubAction dependencies pinned","Info:  12 out of  58 third-party GitHubAction dependencies pinned","Info:   0 out of   1 containerImage dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: github.com/Homebrew/.github/SECURITY.md:1","Info: Found linked content: github.com/Homebrew/.github/SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: github.com/Homebrew/.github/SECURITY.md:1","Info: Found text in security policy: github.com/Homebrew/.github/SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Branch-Protection","score":4,"reason":"branch protection is not maximal on development and all release branches","details":["Info: 'allow deletion' disabled on branch 'main'","Info: 'force pushes' disabled on branch 'main'","Info: 'branch protection settings apply to administrators' is required to merge on branch 'main'","Warn: 'stale review dismissal' is disabled on branch 'main'","Warn: required approving review count is 1 on branch 'main'","Warn: codeowners review is not required on branch 'main'","Warn: 'last push approval' is disabled on branch 'main'","Warn: 'up-to-date branches' is disabled on branch 'main'","Info: status check found to merge onto on branch 'main'","Info: PRs are required in order to make changes on branch 'main'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Packaging","score":10,"reason":"packaging workflow detected","details":["Info: Project packages its releases by way of GitHub Actions.: .github/workflows/docker.yml:146"],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Vulnerabilities","score":10,"reason":"0 existing vulnerabilities detected","details":null,"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}},{"name":"SAST","score":10,"reason":"SAST tool is run on all commits","details":["Info: SAST configuration detected: CodeQL","Info: all commits (30) are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}}]},"last_synced_at":"2025-08-15T02:06:33.943Z","repository_id":37270680,"created_at":"2025-08-15T02:06:33.943Z","updated_at":"2025-08-15T02:06:33.943Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31464100,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-05T21:22:52.476Z","status":"online","status_checked_at":"2026-04-06T02:00:07.287Z","response_time":112,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["brew","homebrew","macos","package-manager","ruby"],"created_at":"2024-09-24T20:20:47.270Z","updated_at":"2026-04-06T08:00:57.096Z","avatar_url":"https://github.com/Homebrew.png","language":"Ruby","readme":"# Homebrew\n\n[![GitHub release](https://img.shields.io/github/release/Homebrew/brew.svg)](https://github.com/Homebrew/brew/releases)\n[![License](https://img.shields.io/github/license/Homebrew/brew)](https://github.com/Homebrew/brew/blob/HEAD/LICENSE.txt)\n\nFeatures, usage and installation instructions are [summarised on the homepage](https://brew.sh). Terminology (e.g. the difference between a Cellar, Tap, Cask and so forth) is [explained here](https://docs.brew.sh/Formula-Cookbook#homebrew-terminology).\n\n## What Packages Are Available?\n\n1. Type `brew formulae` for a list.\n2. Or visit [formulae.brew.sh](https://formulae.brew.sh) to browse packages online.\n\n## More Documentation\n\n`brew help`, `man brew` or check [our documentation](https://docs.brew.sh/).\n\n## Troubleshooting\n\nFirst, please run `brew update` and `brew doctor`.\n\nSecond, read the [Troubleshooting Checklist](https://docs.brew.sh/Troubleshooting).\n\n**If you don't read these it will take us far longer to help you with your problem.**\n\n## Donations\n\nHomebrew is a non-profit project run entirely by unpaid volunteers. We need your funds to pay for software, hardware and hosting around continuous integration and future improvements to the project. Every donation will be spent on making Homebrew better for our users.\n\nPlease consider a regular donation through [GitHub Sponsors](https://github.com/sponsors/Homebrew), [Open Collective](https://opencollective.com/homebrew) or [Patreon](https://www.patreon.com/homebrew). Homebrew is fiscally hosted by the [Open Source Collective](https://opencollective.com/opensource).\n\nFor questions about donations, including corporate giving, please email the Homebrew PLC at [plc@brew.sh](mailto:plc@brew.sh).\n\n## Community\n\n- [Homebrew/discussions (forum)](https://github.com/orgs/Homebrew/discussions)\n- [@homebrew@fosstodon.org (Mastodon)](https://fosstodon.org/@homebrew)\n- [@brew.sh (Bluesky)](https://bsky.app/profile/brew.sh)\n- [@MacHomebrew (𝕏 (formerly known as Twitter))](https://x.com/MacHomebrew)\n\n## Contributing\n\nWe'd love you to contribute to Homebrew. First, please read our [Contribution Guide](CONTRIBUTING.md) and [Code of Conduct](https://github.com/Homebrew/.github/blob/HEAD/CODE_OF_CONDUCT.md#code-of-conduct).\n\nWe explicitly welcome contributions from people who have never contributed to open-source before: we were all beginners once! We can help build on a partially working pull request with the aim of getting it merged. We are also actively seeking to diversify our contributors and especially welcome contributions from women from all backgrounds and people of colour.\n\nA good starting point for contributing is to first [tap `homebrew/core`](https://docs.brew.sh/FAQ#can-i-edit-formulae-myself), then run `brew audit --strict` with some of the packages you use (e.g. `brew audit --strict wget` if you use `wget`) and read through the warnings. Try to fix them until `brew audit --strict` shows no results and [submit a pull request](https://docs.brew.sh/How-To-Open-a-Homebrew-Pull-Request). If no formulae you use have warnings you can run `brew audit --strict` without arguments to have it run on all packages and pick one.\n\nAlternatively, for something more substantial, check out one of the issues labelled `help wanted` in [Homebrew/brew](https://github.com/homebrew/brew/issues?q=is%3Aopen+is%3Aissue+label%3A%22help+wanted%22) or [Homebrew/homebrew-core](https://github.com/homebrew/homebrew-core/issues?q=is%3Aopen+is%3Aissue+label%3A%22help+wanted%22).\n\nGood luck!\n\n## Security\n\nPlease report security issues by filling in [the security advisory form](https://github.com/homebrew/brew/security/advisories/new).\n\n## Who We Are\n\nHomebrew's [Project Leader](https://docs.brew.sh/Homebrew-Governance#project-leader) is [Mike McQuaid](https://github.com/MikeMcQuaid).\n\nHomebrew's [Lead Maintainers](https://docs.brew.sh/Homebrew-Governance#lead-maintainer) are [Bevan Kay](https://github.com/bevanjkay), [Bo Anderson](https://github.com/Bo98), [Branch Vincent](https://github.com/branchv), [Carlo Cabrera](https://github.com/carlocab), [Dustin Rodrigues](https://github.com/dtrodrigues), [FX Coudert](https://github.com/fxcoudert), [Issy Long](https://github.com/issyl0), [Justin Krehel](https://github.com/krehel), [Michael Cho](https://github.com/cho-m), [Michka Popoff](https://github.com/iMichka), [Mike McQuaid](https://github.com/MikeMcQuaid), [Nanda H Krishna](https://github.com/nandahkrishna), [Patrick Linnane](https://github.com/p-linnane), [Rui Chen](https://github.com/chenrui333), [Ruoyu Zhong](https://github.com/ZhongRuoyu), [Sam Ford](https://github.com/samford), [Sean Molenaar](https://github.com/SMillerDev) and [Thierry Moisan](https://github.com/Moisan).\n\nHomebrew's other Maintainers are [Anton Melnikov](https://github.com/botantony), [Caleb Xu](https://github.com/alebcay), [Daeho Ro](https://github.com/daeho-ro), [Douglas Eichelberger](https://github.com/dduugg), [Eric Knibbe](https://github.com/EricFromCanada), [Klaus Hipp](https://github.com/khipp), [Markus Reiter](https://github.com/reitermarkus), [Rylan Polster](https://github.com/Rylan12), [Štefan Baebler](https://github.com/stefanb) and [William Woodruff](https://github.com/woodruffw).\n\nFormer Maintainers with significant contributions include [Alexander Bayandin](https://github.com/bayandin), [Miccal Matthews](https://github.com/miccal), [Misty De Méo](https://github.com/mistydemeo), [Shaun Jackman](https://github.com/sjackman), [Vítor Galvão](https://github.com/vitorgalvao), [Claudia Pellegrino](https://github.com/claui), [Seeker](https://github.com/SeekingMeaning), [Jan Viljanen](https://github.com/javian), [JCount](https://github.com/jcount), [commitay](https://github.com/commitay), [Dominyk Tiller](https://github.com/DomT4), [Tim Smith](https://github.com/tdsmith), [Baptiste Fontaine](https://github.com/bfontaine), [Xu Cheng](https://github.com/xu-cheng), [Martin Afanasjew](https://github.com/UniqMartin), [Brett Koonce](https://github.com/asparagui), [Charlie Sharpsteen](https://github.com/Sharpie), [Jack Nagel](https://github.com/jacknagel), [Adam Vandenberg](https://github.com/adamv), [Andrew Janke](https://github.com/apjanke), [Alex Dunn](https://github.com/dunn), [neutric](https://github.com/neutric), [Tomasz Pajor](https://github.com/nijikon), [Uladzislau Shablinski](https://github.com/vladshablinsky), [Alyssa Ross](https://github.com/alyssais), [ilovezfs](https://github.com/ilovezfs), [Chongyu Zhu](https://github.com/lembacon) and Homebrew's creator: [Max Howell](https://github.com/mxcl).\n\n## License\n\nCode is under the [BSD 2-clause \"Simplified\" License](LICENSE.txt).\nDocumentation is under the [Creative Commons Attribution license](https://creativecommons.org/licenses/by/4.0/).\n\n## Sponsors\n\nOur macOS continuous integration infrastructure is hosted by [MacStadium's Orka](https://www.macstadium.com/customers/homebrew).\n\n[![Powered by MacStadium](https://cloud.githubusercontent.com/assets/125011/22776032/097557ac-eea6-11e6-8ba8-eff22dfd58f1.png)](https://www.macstadium.com)\n\nSecure password storage and syncing is provided by [1Password for Teams](https://1password.com/teams/).\n\n[\u003cimg src=\"https://i.1password.com/akb/featured/1password-icon.svg\" alt=\"1Password\" height=\"64\"\u003e](https://1password.com)\n\n\u003chttps://brew.sh\u003e's DNS is [resolving with DNSimple](https://dnsimple.com/resolving/homebrew).\n\n[![DNSimple](https://cdn.dnsimple.com/assets/resolving-with-us/logo-light.png)](https://dnsimple.com/resolving/homebrew#gh-light-mode-only)\n[![DNSimple](https://cdn.dnsimple.com/assets/resolving-with-us/logo-dark.png)](https://dnsimple.com/resolving/homebrew#gh-dark-mode-only)\n\nHomebrew is generously supported by [GitHub](https://github.com/github), [Joshua Baer](https://github.com/joshuabaer), [Custom Ink](https://github.com/customink), [Randy Reddig](https://github.com/ydnar), [Codecademy](https://github.com/Codecademy), [SAP](https://github.com/SAP), [b.well](https://github.com/icanbwell), [Aagam Dalal](https://github.com/AaDalal), [Workbrew](https://github.com/Workbrew) and many other users and organisations via [GitHub Sponsors](https://github.com/sponsors/Homebrew).\n\n[![GitHub](https://github.com/github.png?size=64)](https://github.com/github)\n","funding_links":["https://github.com/sponsors/Homebrew","https://opencollective.com/homebrew","https://patreon.com/homebrew","https://www.patreon.com/homebrew","https://opencollective.com/opensource"],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fhomebrew%2Fbrew","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fhomebrew%2Fbrew","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fhomebrew%2Fbrew/lists"}