macOS
Homebrewverified · 100%
brew install gitsignlocal Homebrew formula metadata
MacPortsverified · 94%
sudo port install gitsignMacPorts ports tree · security/gitsign/Portfile · source: api.github.com
brew / rang 6010
Installer gitsign
Consultez les chemins d'installation, exécutables, métadonnées et notes de sécurité de gitsign pour les workflows d'agents IA.
installation
Installer avec Automic Vault
Automic Vault
sudo av install brew:gitsignLinux
Debian aptverified · 92%
sudo apt install gitsignDebian stable package indexes · gitsign · source: deb.debian.org
Nixverified · 92%
nix profile install nixpkgs#gitsignnixpkgs package indexes · pkgs/by-name/gi/gitsign/package.nix · source: api.github.com
Arch Linux pacmanverified · 92%
sudo pacman -S gitsignArch Linux sync databases · gitsign · source: geo.mirror.pkgbuild.com
openSUSE zypperverified · 92%
sudo zypper install gitsignopenSUSE Tumbleweed package metadata · gitsign · source: download.opensuse.org
Windows
Scoopverified · 92%
scoop install main/gitsignScoop official bucket manifest trees · bucket/gitsign.json · source: api.github.com
Source du gestionnaire de paquets
Notes de plateforme
- Aucune note de plateforme propre au paquet n'était présente.
aperçu
Résumé du paquet
Keyless Git signing using Sigstore
Page d'accueil
Commandes et alias
- gitsign
- gitsign-credential-cache
posture de sécurité
Niveau de risque : green
narrow executable package without higher-risk signals.
Risk classifier
green risk · low confidence · appliance
Why
- narrow executable package without higher-risk signals
Signals
- metadata:no-higher-risk-signals
Install behavior
- No Homebrew post-install hook is recorded in formula metadata.
- Homebrew bottle metadata is available for 6 platform targets.
- Build metadata lists 1 build dependencies.
Revue recommandée
Avant une utilisation sans surveillance par un agent, vérifiez si l'outil lit des identifiants en clair, écrit un état distant, publie des artefacts ou lance des plugins.
exécutables
Exécutables installés
| Commande | Type | Exposition | Note |
|---|---|---|---|
gitsign | cli | global executable | |
gitsign-credential-cache | cli | global executable |
fraîcheur
Version et fraîcheur
Ces signaux séparent l'âge de génération de la page, l'activité du gestionnaire de paquets et la comparaison avec les versions amont. Un retard de version n'est signalé que lorsqu'une URL de preuve et des versions comparables sont présentes.
page générée2026-06-10
version du gestionnaire0.16.1
gestionnaire mis à jour2026-06-08
données localesok
amontcurrent
dernière version détectéev0.16.1
https://github.com/sigstore/gitsign
- okNo freshness warnings were generated.
métadonnées d'installation
Métadonnées du paquet
| Package key | brew:gitsign |
|---|---|
| Version | 0.16.1 |
| Package manager | Homebrew |
| Package manager page | https://formulae.brew.sh/formula/gitsign |
| Homepage | https://github.com/sigstore/gitsign |
| Repository | https://github.com/sigstore/gitsign |
| Upstream docs | https://docs.sigstore.dev/ |
| License | Apache-2.0 |
| Source archive | https://github.com/sigstore/gitsign/archive/refs/tags/v0.16.1.tar.gz |
| Last updated | 2026-06-08T21:43:20Z |
| Pulse | updated |
| Build dependencies | go |
| Bottle | available (arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | not defined |
| Service | none declared |
registry facts
Source database details
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | gitsign |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
source database matches
Other package-manager records
Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.
Debian apt95%
gitsign 0.13.0-2+b2
Keyless Git signing using Sigstore (program)
https://github.com/sigstore/gitsign
sudo apt install gitsign- Section: vcs
- Architecture: amd64
- Source Package: gitsign
- 1 dependencies
- normalized package name match
- Matched by: Gitsign
Debian apt95%
golang-github-sigstore-gitsign-dev 0.13.0-2
Keyless Git signing using Sigstore (library)
https://github.com/sigstore/gitsign
sudo apt install golang-github-sigstore-gitsign-dev- Section: golang
- Architecture: all
- Source Package: gitsign
- 10 dependencies
- normalized package name match
- Matched by: Gitsign
Nix95%
gitsign
nix profile install nixpkgs#gitsign- normalized package name match
- Matched by: Gitsign
pacman95%
gitsign 0.14.0-2
Keyless Git signing using Sigstore
https://github.com/sigstore/gitsign
sudo pacman -S gitsign- License: APACHE
- Architecture: x86_64
- normalized package name match
- Matched by: Gitsign
zypper95%
gitsign 0.16.0-1.1
Keyless Git signing using Sigstore
https://github.com/sigstore/gitsign
sudo zypper install gitsign- License: Apache-2.0
- Category: Unspecified
- Architecture: x86_64
- Source Package: gitsign
- 1 dependencies
- 1 provides
- normalized package name match
- Matched by: Gitsign
zypper95%
gitsign-credential-cache 0.16.0-1.1
Credential cache for gitsign
https://github.com/sigstore/gitsign
sudo zypper install gitsign-credential-cache- License: Apache-2.0
- Category: Unspecified
- Architecture: x86_64
- Source Package: gitsign
- 3 dependencies
- 2 provides
- normalized package name match
- Matched by: Gitsign
MacPorts95%
gitsign
sudo port install gitsign- normalized package name match
- Matched by: Gitsign
Scoop95%
main/gitsign
scoop install main/gitsign- normalized package name match
- Matched by: Gitsign
piste source
Généré depuis les données du dépôt
Cette page est servie par av-web depuis l'artéfact SQLite privé des paquets généré par scripts/generate-pkg-sqlite.py.
Sources utilisées
- Geiger risk classifier
- Nucleus package database
- av.db category and tag curation
- cross-ecosystem install command graph
- external package-manager database matches
- package relationship graph
- package version freshness
- package-page enrichment