# aws-rotate-key mit Homebrew, Nix installieren

Prüfe Installationswege, Executables, Metadaten und Sicherheitshinweise für aws-rotate-key in AI-Agent-Workflows.

## Installation

```sh
sudo av install brew:aws-rotate-key
```

Weitere Installationsbefehle:

### macOS

- Homebrew (100%):

```sh
brew install aws-rotate-key
```

  Evidenz: local Homebrew formula metadata

### Linux

- Nix (92%):

```sh
nix profile install nixpkgs#aws-rotate-key
```

  Evidenz: nixpkgs package indexes: pkgs/by-name/aw/aws-rotate-key/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1

## Paketfakten

- **Paketschlüssel:** brew:aws-rotate-key
- **Paketmanager:** Homebrew
- **Paketmanager-Seite:** <https://formulae.brew.sh/formula/aws-rotate-key>
- **Version:** 1.2.0
- **Quellzusammenfassung:** Easily rotate your AWS access key
- **Homepage:** <https://github.com/stefansundin/aws-rotate-key>
- **Repository:** <https://github.com/stefansundin/aws-rotate-key>
- **Upstream-Dokumentation:** <https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_access-keys.html>
- **Lizenz:** MIT
- **Quellarchiv:** <https://github.com/stefansundin/aws-rotate-key/archive/refs/tags/v1.2.0.tar.gz>
- **Generiert:** 2026-07-08T07:18:31+00:00

## Executables

- aws-rotate-key (cli)
- aws-rotate-key (Alias)

## Build-Abhängigkeiten

- go

## Installationsverhalten

- Post-install-Hook: nicht definiert
- Bottle: verfügbar auf arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, arm64_ventura, sonoma, ventura, x86_64_linux

## Version und Aktualität

- Seite generiert: 2026-07-08
- Manager-Version: 1.2.0
- lokale Daten: OK
- Upstream-Repository: https://github.com/stefansundin/aws-rotate-key
- neueste erkannte Version: v1.2.0 (aktuell)
- Info: No package-manager update timestamp was available.
## Projektgeschichte und Nutzung

aws-rotate-key is a small Go CLI for rotating AWS IAM access keys stored in the shared AWS credentials file.

### Projektgeschichte

The public repository begins in September 2016 with commits that create a new key, replace the old key in the credentials file, inspect last-used metadata, and add the README. Its purpose has remained narrow: automate a security best-practice task that is easy to perform incorrectly by hand.

### Adoptionsgeschichte

The README documents binaries from GitHub Releases, Homebrew installation on macOS, a PPA for Ubuntu, and go install. That packaging mix reflects a utility meant for individual operators and small automation scripts rather than a larger platform.

### Wie es verwendet wird

The tool reads AWS credentials from the credentials file, lists the IAM user's access keys, explains the planned rotation steps, waits for confirmation unless told otherwise, writes the new key pair back to the credentials file, and deactivates or deletes the old key.

It supports profile selection, an alternate authentication profile, MFA, automatic yes-to-prompts, and deleting rather than deactivating the old key.

### Warum Paket-Nerds sich dafür interessieren

Its package-manager appeal is that it turns a fussy IAM/API sequence into one binary with few moving parts. The downside for maintainers is that it edits credentials directly, so provenance and version trust matter more than the code size suggests.

### Zeitleiste

- 2016: Initial public commits implement key creation and credentials-file replacement.
- 2016: v1.0.0 tag appears.
- 2024: Current code uses AWS SDK for Go v2 modules in go.mod.

### Related projects

- AWS IAM access-key rotation guidance and AWS CLI shared credentials files are the upstream AWS surfaces the tool automates.

### Quellen

- <https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_access-keys.html#Using_RotateAccessKey>
- <https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-files.html>
- <https://github.com/stefansundin/aws-rotate-key#readme>
- official git history and tags from https://github.com/stefansundin/aws-rotate-key


## Sicherheitshinweise

narrow executable package without higher-risk signals.

- **Geiger-Risiko:** grün / niedrig
- narrow executable package without higher-risk signals


## Configuration and credential file locations

These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.


## Credential files

- Unix: ~/.aws/credentials
- Windows: C:\Users\USERNAME\.aws\credentials
## Details aus der Quelldatenbank

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** aws-rotate-key
- **Version Scheme:** 0
- **Revision:** 0
- **Head Version:** HEAD
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** head, stable

## Andere Paketmanager-Einträge

- Nix - aws-rotate-key: normalized package name match | nixpkgs package indexes: pkgs/by-name/aw/aws-rotate-key/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1


## Verwandte Links

- [Cloud CLI packages](https://www.automicvault.com/de/pkg/cloud-clis/) - Belongs to a cloud or infrastructure command family.
- [Source-control packages](https://www.automicvault.com/de/pkg/source-control-tools/) - Belongs to a source-control command family.
- [Terminal utility packages](https://www.automicvault.com/de/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Networking and protocol packages](https://www.automicvault.com/de/pkg/networking-protocol-tools/) - Matched network, protocol, or remote-service metadata.
- [go](https://www.automicvault.com/de/pkg/brew/go/) - Build dependency declared by Homebrew.
- [amazon-ecs-cli](https://www.automicvault.com/de/pkg/brew/amazon-ecs-cli/) - Shares av.db curated category or tags: aws, cli, cloud-infrastructure.
- [aws-amplify](https://www.automicvault.com/de/pkg/brew/aws-amplify/) - Shares av.db curated category or tags: aws, cli, cloud-infrastructure.
- [aws-cdk](https://www.automicvault.com/de/pkg/brew/aws-cdk/) - Shares av.db curated category or tags: aws, cli, cloud-infrastructure.
- [aws-console](https://www.automicvault.com/de/pkg/brew/aws-console/) - Shares av.db curated category or tags: aws, cli, cloud-infrastructure.
- [aws-elasticbeanstalk](https://www.automicvault.com/de/pkg/brew/aws-elasticbeanstalk/) - Shares av.db curated category or tags: aws, cli, cloud-infrastructure.
- [aws-es-proxy](https://www.automicvault.com/de/pkg/brew/aws-es-proxy/) - Shares av.db curated category or tags: aws, cli, cloud-infrastructure.
- [aws-google-auth](https://www.automicvault.com/de/pkg/brew/aws-google-auth/) - Shares av.db curated category or tags: aws, cli, cloud-infrastructure.
- [aws-iam-authenticator](https://www.automicvault.com/de/pkg/brew/aws-iam-authenticator/) - Shares av.db curated category or tags: aws, cli, cloud-infrastructure.

## Combined YAML source

View the package source record on GitHub. [combined/aws-rotate-key.yml](https://github.com/automic-vault/db/blob/main/combined/aws-rotate-key.yml)


## Quellen

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- curated configuration and credential file locations
- curated package history
- package version freshness
- av.db category and tag curation
- package relationship graph
- external package-manager database matches
- cross-ecosystem install command graph
