macOS
brew install licensedlocal Homebrew formula metadata
brew
Prüfe Installationswege, Executables, Metadaten und Sicherheitshinweise für licensed in AI-Agent-Workflows.
Installation
brew install licensedlocal Homebrew formula metadata
nix profile install nixpkgs#licensednixpkgs package indexes · pkgs/by-name/li/licensed/package.nix · Quelle: api.github.com
Überblick
Cache and verify the licenses of dependencies
Verlauf
Licensed is a Ruby command-line tool for caching dependency license texts and checking them against repository policy. It sits in the GitHub Licensee ecosystem: Licensee detects license text, while Licensed records and verifies the dependency-level results that package managers expose.
The public GitHub repository was created on 2018-02-02 under GitHub's license tooling namespace and later moved under the licensee organization. The README describes the project as a Ruby gem and warns that it is not a complete open-source compliance solution.
The changelog shows the project evolving through compatibility-driven releases: v3 added migration guidance for self-contained builds, v4 removed self-contained executable releases and older Go support, and v5 required Ruby 3.0 or newer.
Licensed became useful to repositories that wanted license checks in development and continuous integration without manually inspecting every transitive dependency. Its source enumerators cover multiple language ecosystems, and its Homebrew formula made the Ruby CLI easy to install on macOS.
A project adds a .licensed.yml file, runs Licensed to cache dependency records, and then runs status or verification commands to catch newly introduced, stale, or disallowed dependency licenses.
Licensed is package-nerd notable because it treats license review as package metadata that can be cached, diffed, and enforced in CI. It also shows the practical boundary between SPDX-style license identification and the messy package-manager work of finding dependency sources.
Sicherheitslage
narrow executable package without higher-risk signals.
grün Risiko · niedrig Konfidenz · appliance
Prüfe vor unbeaufsichtigter Agent-Nutzung, ob das Tool Klartext-Credentials liest, Remote-Zustand schreibt, Artefakte veröffentlicht oder Plugins ausführt.
local files
These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.
Config paths the tool may read or write during local use.
./.licensed.ymlExecutables
| Befehl | Art | Sichtbarkeit | Hinweis |
|---|---|---|---|
licensed | cli | globales Executable |
Aktualität
Diese Signale trennen das Alter der Seitengenerierung, Aktivität des Paketmanagers und Upstream-Release-Vergleich. Versionsrückstand wird nur gemeldet, wenn eine Evidenz-URL und vergleichbare Versionen vorhanden sind.
https://github.com/licensee/licensed
Installationsmetadaten
| Paketschlüssel | brew:licensed |
|---|---|
| Version | 5.1.0 |
| Paketmanager | Homebrew |
| Paketmanager-Seite | https://formulae.brew.sh/formula/licensed |
| Homepage | https://github.com/licensee/licensed |
| Repository | https://github.com/licensee/licensed |
| Upstream-Dokumentation | https://github.com/licensee/licensed#readme |
| Lizenz | MIT |
| Quellarchiv | https://github.com/licensee/licensed.git |
| Zuletzt aktualisiert | 2026-06-13T23:35:01+02:00 |
| Pulse | updated |
| Abhängigkeiten | libgit2, ruby |
| Build-Abhängigkeiten | cmake, pkgconf |
| Von macOS bereitgestellte Bibliotheken | libxml2, libxslt |
| Bottle | verfügbar (auf arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | nicht definiert |
| Dienst | keiner deklariert |
Registry-Fakten
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | licensed |
| Version Scheme | 0 |
| Revision | 0 |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
Source-Datenbank-Treffer
Treffer stammen aus externen Paketmanager-Indizes und bleiben von lokalen Automic-Vault-Paketlinks getrennt.
licensed
nix profile install nixpkgs#licensedQuellspur
Diese Seite wird von av-web aus dem privaten Paket-SQLite-Artefakt bereitgestellt, das scripts/generate-pkg-sqlite.py erstellt.
View the package source record on GitHub.