Automic VaultAutomic Vault

brew / portes d'approbation

Installer gh avec Homebrew, chocolatey, apt, dnf, MacPorts, Nix, zypper, scoop, winget

Consultez les chemins d'installation, exécutables, métadonnées et notes de sécurité de gh pour les workflows d'agents IA.

sécurité des agents

Réponse sur la sécurité des agents

gh is the GitHub control-plane CLI for repositories, releases, issues, and authenticated developer state.

Accès aux identifiants

Reads GitHub CLI tokens and can print or use them for API calls.

Modification distante

Can modify repositories, pull requests, releases, secrets, and organization state.

Risque de publication ou d'artéfact

Can create releases, upload assets, and trigger release automation.

Contrôle recommandé

Use GitHub token protection plus approval gates for write and token-display commands.

Conseils d'utilisation par les agents

Permit status and read-only queries; require approval for token output, release creation, repo writes, and workflow dispatch.

installation

Commandes d'installation supplémentaires

macOS

Homebrewvérifié · 100%
brew install gh

local Homebrew formula metadata

MacPortsvérifié · 94%
sudo port install gh

MacPorts ports tree · devel/gh/Portfile · Source: api.github.com

Linux

Debian aptvérifié · 92%
sudo apt install gh

Debian stable package indexes · gh · Source: deb.debian.org

Fedora dnfvérifié · 92%
sudo dnf install gh

Fedora Rawhide package metadata · gh · Source: dl.fedoraproject.org

Nixvérifié · 92%
nix profile install nixpkgs#gh

nixpkgs package indexes · pkgs/by-name/gh/gh/package.nix · Source: api.github.com

openSUSE zyppervérifié · 92%
sudo zypper install gh

openSUSE Tumbleweed package metadata · gh · Source: download.opensuse.org

aperçu

Résumé du paquet

GitHub command-line tool

historique

Historique du projet et usages

GitHub CLI, invoked as `gh`, is GitHub's official command-line tool for working with pull requests, issues, repositories, releases, Actions, authentication, and GitHub API data from a terminal.

Historique du projet

GitHub created the cli/cli repository in October 2019 and opened the project as a new official CLI distinct from the older community `hub` tool. GitHub announced the beta in February 2020 and released GitHub CLI 1.0 in September 2020.

The README frames `gh` as a standalone tool that brings GitHub concepts next to `git` and source code work. The project grew into a cross-platform Go CLI with first-party manuals, release binaries, package repositories, GitHub Enterprise support, extension support, API helpers, and later supply-chain features such as build provenance attestations for release artifacts.

Historique d'adoption

GitHub CLI has broad adoption because it is distributed through GitHub's own package repositories and release binaries, package managers such as Homebrew and WinGet, and GitHub-hosted Actions runner images. Its first-party status made it a standard automation interface for GitHub workflows in shells and CI jobs.

Modes d'utilisation

Practitioners use `gh` to create and review pull requests, triage issues, clone and browse repositories, trigger or inspect Actions workflows, manage releases and gists, authenticate to GitHub hosts, call the GitHub API, and script repository operations without leaving the command line.

Pourquoi les passionnés de paquets s'y intéressent

For package and automation ecosystems, `gh` is important because it gives GitHub an official, versioned executable surface. Package maintainers can depend on consistent commands across macOS, Linux, and Windows, while CI authors can use a preinstalled or easily installed binary instead of hand-rolling API calls.

Chronologie

  • 2019: The cli/cli repository was created.
  • 2020: GitHub announced GitHub CLI beta.
  • 2020: GitHub CLI 1.0.0 was published.
  • 2024: The README records release build provenance attestations beginning with version 2.50.0.

Related projects

  • The README compares GitHub CLI with `hub`, noting that `hub` behaves as a proxy to `git` while `gh` is a standalone tool for GitHub workflows.

portes d'approbation

Métadonnées de revue humaine pour commandes risquées

La graine locale de portes d'approbation contient 7 règles pour gh. Points d'entrée couverts : gh. Niveaux de sévérité : critique, élevé. Couverture : partial, revu le 2026-05-21.

Exemples d'actions contrôlées

  • Print the active GitHub authentication token.
  • Create or refresh local GitHub authentication state.
  • Delete a GitHub repository.
  • Change repository settings, visibility, topics, or metadata.
  • Merge a pull request.
  • Create, upload to, edit, or delete GitHub releases.
  • Trigger a GitHub Actions workflow.

local files

Configuration and credential file locations

These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.

Configuration files

Config paths the tool may read or write during local use.

Unix
$XDG_CONFIG_HOME/gh/config.yml~/.config/gh/config.yml
Windows
%AppData%\GitHub CLI\config.yml

Credential files

Credential-bearing paths to review before unattended agent runs.

Unix
$XDG_CONFIG_HOME/gh/hosts.yml~/.config/gh/hosts.yml
Windows
%AppData%\GitHub CLI\hosts.yml

exécutables

Exécutables installés

CommandeTypeExpositionNote
ghcliexécutable global

fraîcheur

Version et fraîcheur

Ces signaux séparent l'âge de génération de la page, l'activité du gestionnaire de paquets et la comparaison avec les versions amont. Un retard de version n'est signalé que lorsqu'une URL de preuve et des versions comparables sont présentes.

page générée2026-07-10
version du gestionnaire2.96.0
gestionnaire mis à jour2026-07-03
données localesOK
amontà jour
dernière version détectéev2.96.0

https://github.com/cli/cli

  • OKAucun avertissement de fraîcheur n'a été généré.

métadonnées d'installation

Métadonnées du paquet

Clé du paquetbrew:gh
Version2.96.0
Gestionnaire de paquetsHomebrew
Page du gestionnaire de paquetshttps://formulae.brew.sh/formula/gh
Page d'accueilhttps://cli.github.com/
Dépôthttps://github.com/cli/cli
Docs amonthttps://cli.github.com/manual/gh
LicenceMIT
Archive sourcehttps://github.com/cli/cli/archive/refs/tags/v2.96.0.tar.gz
Dernière mise à jour2026-07-03T00:29:16Z
Pulseupdated
Dépendances de compilationgo
Bouteilledisponible (sur arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux)
post-install Homebrewnon défini
Serviceaucun déclaré

faits du registre

Détails de la base source

Source DatabaseHomebrew formula API
Taphomebrew/core
Full Namegh
Version Scheme0
Revision0
Head VersionHEAD
Bottle Stable Root URLhttps://ghcr.io/v2/homebrew/core
Deprecatedno
Disabledno
Keg Onlyno
URL Keys
  • head
  • stable

correspondances dans les bases sources

Autres enregistrements de gestionnaires de paquets

Les correspondances proviennent d’index externes de gestionnaires de paquets et restent séparées des liens de paquets Automic Vault locaux.

Debian apt95%

gh 2.46.0-3

GitHub CLI, GitHub’s official command line tool

https://cli.github.com/

sudo apt install gh
  • Section: utils
  • Architecture: amd64
  • 1 Dépendances
  • normalized package name match
  • Correspondance par : Gh
Debian stable package indexes · deb.debian.org · Debian stable package indexes: gh from https://deb.debian.org/debian/dists/stable/main/binary-amd64/Packages.xz
Nix95%

gh

nix profile install nixpkgs#gh
  • normalized package name match
  • Correspondance par : Gh
nixpkgs package indexes · api.github.com · nixpkgs package indexes: pkgs/by-name/gh/gh/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1
Ubuntu apt95%

gh 2.45.0-1build1

GitHub CLI, GitHub’s official command line tool

https://cli.github.com/

sudo apt install gh
  • Section: universe/utils
  • Architecture: amd64
  • 1 Dépendances
  • normalized package name match
  • Correspondance par : Gh
Ubuntu 24.04 LTS package indexes · archive.ubuntu.com · Ubuntu 24.04 LTS package indexes: gh from https://archive.ubuntu.com/ubuntu/dists/noble/universe/binary-amd64/Packages.gz
dnf95%

gh 2.93.0-1.fc45

GitHub's official command line tool

https://github.com/cli/cli

sudo dnf install gh
  • License: Apache-2.0 AND BSD-2-Clause AND BSD-3-Clause AND ISC AND MIT AND MPL-2.0 AND Unlicense
  • Category: Unspecified
  • Architecture: x86_64
  • Source Package: gh
  • 4 Dépendances
  • 2 fournit
  • normalized package name match
  • Correspondance par : Gh
Fedora Rawhide package metadata · dl.fedoraproject.org · Fedora Rawhide package metadata: gh from https://dl.fedoraproject.org/pub/fedora/linux/development/rawhide/Everything/x86_64/os/repodata/e5ca8ce900cd68f5419e1c39ae517343100b306336cbaeb70a3c153121d95094-primary.xml.zst
zypper95%

gh 2.93.0-1.1

The official CLI for GitHub

https://cli.github.com/

sudo zypper install gh
  • License: MIT
  • Category: Unspecified
  • Architecture: x86_64
  • Source Package: gh
  • 2 Dépendances
  • 1 fournit
  • normalized package name match
  • Correspondance par : Gh
openSUSE Tumbleweed package metadata · download.opensuse.org · openSUSE Tumbleweed package metadata: gh from https://download.opensuse.org/tumbleweed/repo/oss/repodata/be8d3611d25469107f32075a1697e69ec57a2b850b42348a658cc671ad5ec2b50760d02c3e59524d50da9a11d5be799bdaffba2e166e8ca8858512e3c0bd665d-primary.xml.zst
zypper95%

gh-bash-completion 2.93.0-1.1

Bash Completion for gh

https://cli.github.com/

sudo zypper install gh-bash-completion
  • License: MIT
  • Category: Unspecified
  • Architecture: noarch
  • Source Package: gh
  • 2 Dépendances
  • 1 fournit
  • normalized package name match
  • Correspondance par : Gh
openSUSE Tumbleweed package metadata · download.opensuse.org · openSUSE Tumbleweed package metadata: gh-bash-completion from https://download.opensuse.org/tumbleweed/repo/oss/repodata/be8d3611d25469107f32075a1697e69ec57a2b850b42348a658cc671ad5ec2b50760d02c3e59524d50da9a11d5be799bdaffba2e166e8ca8858512e3c0bd665d-primary.xml.zst
zypper95%

gh-fish-completion 2.93.0-1.1

Fish completion for gh

https://cli.github.com/

sudo zypper install gh-fish-completion
  • License: MIT
  • Category: Unspecified
  • Architecture: noarch
  • Source Package: gh
  • 1 Dépendances
  • 1 fournit
  • normalized package name match
  • Correspondance par : Gh
openSUSE Tumbleweed package metadata · download.opensuse.org · openSUSE Tumbleweed package metadata: gh-fish-completion from https://download.opensuse.org/tumbleweed/repo/oss/repodata/be8d3611d25469107f32075a1697e69ec57a2b850b42348a658cc671ad5ec2b50760d02c3e59524d50da9a11d5be799bdaffba2e166e8ca8858512e3c0bd665d-primary.xml.zst
zypper95%

gh-zsh-completion 2.93.0-1.1

ZSH Completion for gh

https://cli.github.com/

sudo zypper install gh-zsh-completion
  • License: MIT
  • Category: Unspecified
  • Architecture: noarch
  • Source Package: gh
  • 1 Dépendances
  • 1 fournit
  • normalized package name match
  • Correspondance par : Gh
openSUSE Tumbleweed package metadata · download.opensuse.org · openSUSE Tumbleweed package metadata: gh-zsh-completion from https://download.opensuse.org/tumbleweed/repo/oss/repodata/be8d3611d25469107f32075a1697e69ec57a2b850b42348a658cc671ad5ec2b50760d02c3e59524d50da9a11d5be799bdaffba2e166e8ca8858512e3c0bd665d-primary.xml.zst
MacPorts95%

gh

sudo port install gh
  • normalized package name match
  • Correspondance par : Gh
MacPorts ports tree · api.github.com · MacPorts ports tree: devel/gh/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1
Chocolatey95%

gh

choco install gh
  • normalized package name match
  • Correspondance par : Gh
Chocolatey community package catalog · community.chocolatey.org · Chocolatey community package catalog: gh from http://community.chocolatey.org/api/v2/Packages?$filter=IsLatestVersion&$select=Id&$top=1000&$skiptoken='11','gawk'
Scoop95%

main/gh

scoop install main/gh
  • normalized package name match
  • Correspondance par : Gh
Scoop official bucket manifest trees · api.github.com · Scoop official bucket manifest trees: bucket/gh.json from https://api.github.com/repos/ScoopInstaller/Main/git/trees/master?recursive=1
winget95%

GitHub.cli

winget install --id GitHub.cli -e
  • normalized package name match
  • Correspondance par : Gh
Windows Package Manager source index · cdn.winget.microsoft.com · Windows Package Manager source index: GitHub.cli from https://cdn.winget.microsoft.com/cache/source.msix

piste source

Généré depuis les données du dépôt

Cette page est servie par av-web depuis l'artéfact SQLite privé des paquets généré par scripts/generate-pkg-sqlite.py.

Combined YAML source

View the package source record on GitHub.

combined/gh.yml

Sources utilisées

  • Geiger risk classifier
  • Nucleus package database
  • approval-gate seed metadata
  • av.db category and tag curation
  • cross-ecosystem install command graph
  • curated agent safety answer
  • curated configuration and credential file locations
  • curated package history
  • external package-manager database matches
  • package relationship graph
  • package version freshness
  • package-page enrichment