macOS
brew install git-cryptlocal Homebrew formula metadata
sudo port install git-cryptMacPorts ports tree · devel/git-crypt/Portfile · Source: api.github.com
brew
Consultez les chemins d'installation, exécutables, métadonnées et notes de sécurité de git-crypt pour les workflows d'agents IA.
installation
brew install git-cryptlocal Homebrew formula metadata
sudo port install git-cryptMacPorts ports tree · devel/git-crypt/Portfile · Source: api.github.com
sudo apk add git-cryptAlpine Linux edge package indexes · git-crypt · Source: dl-cdn.alpinelinux.org
sudo apt install git-cryptDebian stable package indexes · git-crypt · Source: deb.debian.org
sudo dnf install git-cryptFedora Rawhide package metadata · git-crypt · Source: dl.fedoraproject.org
nix profile install nixpkgs#git-cryptnixpkgs package indexes · pkgs/by-name/gi/git-crypt/package.nix · Source: api.github.com
sudo pacman -S git-cryptArch Linux sync databases · git-crypt · Source: geo.mirror.pkgbuild.com
sudo zypper install git-cryptopenSUSE Tumbleweed package metadata · git-crypt · Source: download.opensuse.org
scoop install main/git-cryptScoop official bucket manifest trees · bucket/git-crypt.json · Source: api.github.com
aperçu
Enable transparent encryption/decryption of files in a git repo
historique
git-crypt is Andrew Ayer's transparent encryption tool for selected files in a Git repository. It uses Git filters so protected files are encrypted in commits and decrypted in a working tree after the repository is unlocked.
The Git history starts in July 2012, and the first release, 0.1, followed in November 2012. The author's project page explains the motivation: protecting secret material in a configuration-management repository while still letting other people inspect and contribute to the non-secret parts.
Version 0.4 in 2014 was a major workflow release: it added optional GPG support, stored the symmetric key inside `.git`, added multiple-key support, introduced `git-crypt status`, and began experimental Windows support. Version 0.5 in 2015 added the man page and improved lock and unlock performance with newer Git versions.
Later releases were maintenance-oriented. Version 0.6 in 2017 added OpenSSL 1.1 support, switched to C++11, honored Git configuration such as `gpg.program`, and added `git-crypt.repoStateDir`. Version 0.7 in 2022 addressed macOS argument-list issues, and version 0.8 in 2025 adjusted OpenSSL support and avoided problematic short GPG key IDs.
git-crypt became a common answer for repositories that are mostly public or shareable but contain a small number of encrypted secrets. Its README and project page stress graceful degradation: contributors without the key can clone and commit, but cannot read encrypted file contents.
Package-manager adoption is broad for a niche security tool, with packages across Homebrew, Debian and Ubuntu, Fedora-family distributions, MacPorts, Nix, Arch-family repositories, Scoop, and others in the input metadata. That breadth reflects stable CLI demand rather than a large framework ecosystem.
Users initialize a repository with `git-crypt init`, mark protected paths in `.gitattributes` with `filter=git-crypt diff=git-crypt`, and unlock after cloning with either GPG keys or an exported symmetric key.
Practitioners use it for secrets that belong beside source or infrastructure code, such as private keys, passwords, API credentials, or environment-specific files. The documentation is explicit about limits: file names, commit messages, symlink targets, and other metadata are not encrypted, and access revocation is not solved for old history.
git-crypt is significant because it turns Git's filter machinery into a packaging-friendly secrets workflow without requiring a service, a custom remote, or a separate encrypted repository. That simplicity made it attractive to developers who wanted secrets-in-repo ergonomics with ordinary Git hosting.
It also has the classic maintainer tradeoffs of a security CLI: OpenSSL compatibility, GPG behavior, Git filter semantics, deterministic encryption constraints, and clear documentation of what is not protected.
posture de sécurité
broad file, network, media, or database tool signal.
risque blue · confiance moyen · tool
Avant une utilisation sans surveillance par un agent, vérifiez si l'outil lit des identifiants en clair, écrit un état distant, publie des artefacts ou lance des plugins.
local files
These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.
Config paths the tool may read or write during local use.
.gitattributes.git-crypt/exécutables
| Commande | Type | Exposition | Note |
|---|---|---|---|
git-crypt | cli | exécutable global |
fraîcheur
Ces signaux séparent l'âge de génération de la page, l'activité du gestionnaire de paquets et la comparaison avec les versions amont. Un retard de version n'est signalé que lorsqu'une URL de preuve et des versions comparables sont présentes.
https://www.agwa.name/projects/git-crypt/
métadonnées d'installation
| Clé du paquet | brew:git-crypt |
|---|---|
| Version | 0.8.0 |
| Gestionnaire de paquets | Homebrew |
| Page du gestionnaire de paquets | https://formulae.brew.sh/formula/git-crypt |
| Page d'accueil | https://www.agwa.name/projects/git-crypt/ |
| Dépôt | https://github.com/AGWA/git-crypt |
| Docs amont | https://github.com/AGWA/git-crypt#readme |
| Licence | GPL-3.0-or-later |
| Archive source | https://www.agwa.name/projects/git-crypt/downloads/git-crypt-0.8.0.tar.gz |
| Dernière mise à jour | 2026-05-25T16:07:30Z |
| Pulse | updated |
| Dépendances | openssl@4 |
| Dépendances de compilation | docbook, docbook-xsl |
| Bouteille | disponible (sur arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| post-install Homebrew | non défini |
| Service | aucun déclaré |
faits du registre
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | git-crypt |
| Version Scheme | 0 |
| Revision | 1 |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
correspondances dans les bases sources
Les correspondances proviennent d’index externes de gestionnaires de paquets et restent séparées des liens de paquets Automic Vault locaux.
git-crypt 0.7.0-0.1+b1
Transparent file encryption in git
https://www.agwa.name/projects/git-crypt
sudo apt install git-cryptgit-crypt
nix profile install nixpkgs#git-cryptgit-crypt 0.7.0-0.1build3
Transparent file encryption in git
https://www.agwa.name/projects/git-crypt
sudo apt install git-cryptgit-crypt 0.7.0-r0
Transparent file encryption in git
https://www.agwa.name/projects/git-crypt
sudo apk add git-cryptgit-crypt-doc 0.7.0-r0
Transparent file encryption in git (documentation)
https://www.agwa.name/projects/git-crypt
sudo apk add git-crypt-docgit-crypt 0.8.0-2.fc44
Transparent file encryption in git
https://www.agwa.name/projects/git-crypt
sudo dnf install git-cryptgit-crypt 0.8.0-1
Transparent file encryption in Git
https://www.agwa.name/projects/git-crypt
sudo pacman -S git-cryptgit-crypt 0.8.0-1.2
Transparent file encryption in git
https://www.agwa.name/projects/git-crypt/
sudo zypper install git-cryptgit-crypt
sudo port install git-cryptmain/git-crypt
scoop install main/git-cryptpiste source
Cette page est servie par av-web depuis l'artéfact SQLite privé des paquets généré par scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.