Automic VaultAutomic Vault

brew

minisign mit Homebrew, apk, apt, dnf, MacPorts, Nix, pacman, scoop, winget, zypper installieren

Prüfe Installationswege, Executables, Metadaten und Sicherheitshinweise für minisign in AI-Agent-Workflows.

Installation

Weitere Installationsbefehle

macOS

Homebrewverifiziert · 100%
brew install minisign

local Homebrew formula metadata

MacPortsverifiziert · 94%
sudo port install minisign

MacPorts ports tree · security/minisign/Portfile · Quelle: api.github.com

Linux

Alpine Linux apkverifiziert · 92%
sudo apk add minisign

Alpine Linux edge package indexes · minisign · Quelle: dl-cdn.alpinelinux.org

Debian aptverifiziert · 92%
sudo apt install minisign

Debian stable package indexes · minisign · Quelle: deb.debian.org

Fedora dnfverifiziert · 92%
sudo dnf install minisign

Fedora Rawhide package metadata · minisign · Quelle: dl.fedoraproject.org

Nixverifiziert · 92%
nix profile install nixpkgs#minisign

nixpkgs package indexes · pkgs/by-name/mi/minisign/package.nix · Quelle: api.github.com

Arch Linux pacmanverifiziert · 92%
sudo pacman -S minisign

Arch Linux sync databases · minisign · Quelle: geo.mirror.pkgbuild.com

openSUSE zypperverifiziert · 92%
sudo zypper install minisign

openSUSE Tumbleweed package metadata · minisign · Quelle: download.opensuse.org

Windows

Scoopverifiziert · 92%
scoop install main/minisign

Scoop official bucket manifest trees · bucket/minisign.json · Quelle: api.github.com

Windows Package Managerverifiziert · 92%
winget install --id jedisct1.minisign -e

Windows Package Manager source index · jedisct1.minisign · Quelle: cdn.winget.microsoft.com

Überblick

Paketzusammenfassung

Sign files & verify signatures. Works with signify in OpenBSD

Verlauf

Projektgeschichte und Nutzung

Minisign is Frank Denis's portable file-signing and signature-verification tool. It follows the same broad idea as OpenBSD signify: keep release signing small, scriptable, and based on public-key signatures rather than a large certificate or web-of-trust system. The project page describes it as lightweight and built around Ed25519 keys; Homebrew summarizes the package as a tool to sign files and verify signatures that works with OpenBSD signify.

Projektgeschichte

Operationally, minisign creates a key pair, signs one or more files into .minisig signature files, and verifies a file using either a public-key file or a public key supplied directly on the command line. A notable part of its format is the trusted comment, which can bind metadata such as filenames, resource identifiers, timestamps, or version numbers to the signature and helps prevent downgrade-style mistakes. Its documented signature format moved toward pre-hashed Ed25519 signatures using Blake2b-512, while retaining awareness of a legacy non-prehashed format.

Wie es verwendet wird

Minisign's ecosystem role is release-integrity plumbing: projects can publish a small public key and detached signatures without adopting a heavier package-signing infrastructure. Its packaging footprint in the input record spans Homebrew, Alpine, Debian, Fedora, MacPorts, Nix, Arch, Scoop, Ubuntu, WinGet, and openSUSE, which fits that role as a small security utility expected to be present across many operating systems.

Sicherheitslage

Risikostufe: grün

narrow executable package without higher-risk signals.

Risikoklassifikator

grün Risiko · niedrig Konfidenz · appliance

Warum

  • narrow executable package without higher-risk signals

Signale

  • metadata:no-higher-risk-signals

Installationsverhalten

  • In den Formelmetadaten ist kein Homebrew-Post-install-Hook erfasst.
  • Homebrew-Bottle-Metadaten sind für 8 Plattformziele verfügbar.
  • Installiert mit 1 Laufzeitabhängigkeiten.
  • Build-Metadaten listen 2 Build-Abhängigkeiten.

Empfohlene Prüfung

Prüfe vor unbeaufsichtigter Agent-Nutzung, ob das Tool Klartext-Credentials liest, Remote-Zustand schreibt, Artefakte veröffentlicht oder Plugins ausführt.

Executables

Installierte Executables

BefehlArtSichtbarkeitHinweis
minisigncliglobales Executable

Aktualität

Version und Aktualität

Diese Signale trennen das Alter der Seitengenerierung, Aktivität des Paketmanagers und Upstream-Release-Vergleich. Versionsrückstand wird nur gemeldet, wenn eine Evidenz-URL und vergleichbare Versionen vorhanden sind.

Seite generiert2026-07-08
Manager-Version0.12
Manager aktualisiert
lokale DatenOK
Upstreamaktuell
neueste erkannte Version0.12

https://github.com/jedisct1/minisign

  • InfoNo package-manager update timestamp was available.niedrig Konfidenz

Installationsmetadaten

Paketmetadaten

Paketschlüsselbrew:minisign
Version0.12
PaketmanagerHomebrew
Paketmanager-Seitehttps://formulae.brew.sh/formula/minisign
Homepagehttps://jedisct1.github.io/minisign/
Repositoryhttps://github.com/jedisct1/minisign
Upstream-Dokumentationhttps://jedisct1.github.io/minisign
LizenzISC
Quellarchivhttps://github.com/jedisct1/minisign/archive/refs/tags/0.12.tar.gz
Abhängigkeitenlibsodium
Build-Abhängigkeitencmake, pkgconf
Bottleverfügbar (auf arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, arm64_ventura, sonoma, ventura, x86_64_linux)
Homebrew post-installnicht definiert
Dienstkeiner deklariert

Registry-Fakten

Details aus der Quelldatenbank

Source DatabaseHomebrew formula API
Taphomebrew/core
Full Nameminisign
Version Scheme0
Revision0
Bottle Stable Root URLhttps://ghcr.io/v2/homebrew/core
Deprecatedno
Disabledno
Keg Onlyno
URL Keys
  • stable

Source-Datenbank-Treffer

Andere Paketmanager-Einträge

Treffer stammen aus externen Paketmanager-Indizes und bleiben von lokalen Automic-Vault-Paketlinks getrennt.

Debian apt95%

minisign 0.12-1

Dead simple tool to sign files and verify signatures

https://jedisct1.github.io/minisign/

sudo apt install minisign
  • Section: misc
  • Architecture: amd64
  • 2 Abhängigkeiten
  • normalized package name match
  • Abgeglichen nach: Minisign
Debian stable package indexes · deb.debian.org · Debian stable package indexes: minisign from https://deb.debian.org/debian/dists/stable/main/binary-amd64/Packages.xz
Nix95%

minisign

nix profile install nixpkgs#minisign
  • normalized package name match
  • Abgeglichen nach: Minisign
nixpkgs package indexes · api.github.com · nixpkgs package indexes: pkgs/by-name/mi/minisign/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1
Ubuntu apt95%

minisign 0.11-1

Dead simple tool to sign files and verify signatures

https://jedisct1.github.io/minisign/

sudo apt install minisign
  • Section: universe/misc
  • Architecture: amd64
  • 2 Abhängigkeiten
  • normalized package name match
  • Abgeglichen nach: Minisign
Ubuntu 24.04 LTS package indexes · archive.ubuntu.com · Ubuntu 24.04 LTS package indexes: minisign from https://archive.ubuntu.com/ubuntu/dists/noble/universe/binary-amd64/Packages.gz
apk95%

minisign 0.12-r2

Simple tool to sign files and verify signatures

https://jedisct1.github.io/minisign/

sudo apk add minisign
  • License: ISC
  • Architecture: x86_64
  • Source Package: minisign
  • 1 Abhängigkeiten
  • 1 stellt bereit
  • normalized package name match
  • Abgeglichen nach: Minisign
Alpine Linux edge package indexes · dl-cdn.alpinelinux.org · Alpine Linux edge package indexes: minisign from https://dl-cdn.alpinelinux.org/alpine/edge/community/x86_64/APKINDEX.tar.gz
apk95%

minisign-doc 0.12-r2

Simple tool to sign files and verify signatures (documentation)

https://jedisct1.github.io/minisign/

sudo apk add minisign-doc
  • License: ISC
  • Architecture: x86_64
  • Source Package: minisign
  • normalized package name match
  • Abgeglichen nach: Minisign
Alpine Linux edge package indexes · dl-cdn.alpinelinux.org · Alpine Linux edge package indexes: minisign-doc from https://dl-cdn.alpinelinux.org/alpine/edge/community/x86_64/APKINDEX.tar.gz
dnf95%

minisign 0.12-3.fc44

A dead simple tool to sign files and verify digital signatures

https://github.com/jedisct1/minisign

sudo dnf install minisign
  • License: ISC
  • Category: Unspecified
  • Architecture: x86_64
  • Source Package: minisign
  • 3 Abhängigkeiten
  • 1 stellt bereit
  • normalized package name match
  • Abgeglichen nach: Minisign
Fedora Rawhide package metadata · dl.fedoraproject.org · Fedora Rawhide package metadata: minisign from https://dl.fedoraproject.org/pub/fedora/linux/development/rawhide/Everything/x86_64/os/repodata/e5ca8ce900cd68f5419e1c39ae517343100b306336cbaeb70a3c153121d95094-primary.xml.zst
pacman95%

minisign 0.12-2

A dead-simple tool to sign files and verify digital signatures

https://github.com/jedisct1/minisign

sudo pacman -S minisign
  • License: ISC
  • Architecture: x86_64
  • 1 Abhängigkeiten
  • normalized package name match
  • Abgeglichen nach: Minisign
Arch Linux sync databases · geo.mirror.pkgbuild.com · Arch Linux sync databases: minisign from https://geo.mirror.pkgbuild.com/extra/os/x86_64/extra.db.tar.gz
zypper95%

minisign 0.12-2.3

A dead simple tool to sign files and verify signatures

https://jedisct1.github.io/minisign/

sudo zypper install minisign
  • License: ISC
  • Category: Productivity/Networking/Security
  • Architecture: x86_64
  • Source Package: minisign
  • 2 Abhängigkeiten
  • 1 stellt bereit
  • normalized package name match
  • Abgeglichen nach: Minisign
openSUSE Tumbleweed package metadata · download.opensuse.org · openSUSE Tumbleweed package metadata: minisign from https://download.opensuse.org/tumbleweed/repo/oss/repodata/be8d3611d25469107f32075a1697e69ec57a2b850b42348a658cc671ad5ec2b50760d02c3e59524d50da9a11d5be799bdaffba2e166e8ca8858512e3c0bd665d-primary.xml.zst
MacPorts95%

minisign

sudo port install minisign
  • normalized package name match
  • Abgeglichen nach: Minisign
MacPorts ports tree · api.github.com · MacPorts ports tree: security/minisign/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1
Scoop95%

main/minisign

scoop install main/minisign
  • normalized package name match
  • Abgeglichen nach: Minisign
Scoop official bucket manifest trees · api.github.com · Scoop official bucket manifest trees: bucket/minisign.json from https://api.github.com/repos/ScoopInstaller/Main/git/trees/master?recursive=1
winget95%

jedisct1.minisign

winget install --id jedisct1.minisign -e
  • normalized package name match
  • Abgeglichen nach: Minisign
Windows Package Manager source index · cdn.winget.microsoft.com · Windows Package Manager source index: jedisct1.minisign from https://cdn.winget.microsoft.com/cache/source.msix

Quellspur

Aus Repository-Daten generiert

Diese Seite wird von av-web aus dem privaten Paket-SQLite-Artefakt bereitgestellt, das scripts/generate-pkg-sqlite.py erstellt.

Verwendete Quellen

  • Geiger risk classifier
  • Nucleus package database
  • av.db category and tag curation
  • cross-ecosystem install command graph
  • curated package history
  • external package-manager database matches
  • package relationship graph
  • package version freshness
  • package-page enrichment