macOS
brew install trezor-agentlocal Homebrew formula metadata
brew
Consultez les chemins d'installation, exécutables, métadonnées et notes de sécurité de trezor-agent pour les workflows d'agents IA.
installation
brew install trezor-agentlocal Homebrew formula metadata
nix profile install nixpkgs#trezor-agentnixpkgs package indexes · trezor-agent · Source: raw.githubusercontent.com
aperçu
Hardware SSH/GPG agent for Trezor and Ledger
historique
trezor-agent is a hardware-backed SSH, GPG, and age agent that grew out of early Trezor firmware support for using a hardware wallet as an identity and signing device. In package-manager culture it sits in the security-tools niche: a small CLI package that lets developers keep authentication and signing keys on a hardware device while still using familiar Unix tools.
Trezor firmware 1.3.4, announced in September 2015, credited Roman Zeyde's work and introduced NIST P-256 support so a Trezor could be used for SSH login. The official instructions in that announcement installed `trezor_agent`, generated a public key with `trezor-agent`, and used the result in `authorized_keys`.
Firmware 1.3.6 extended the same idea beyond SSH by adding GPG key generation for signing email or documents and by pointing users to Trezor Agent for the user-space tooling. The repository later generalized the model into a shared `libagent` plus device-specific agents for Trezor, Blockstream Jade, and OnlyKey.
The project was adopted by users who wanted hardware-backed developer identity without changing their normal SSH, Git, GPG, or password-store workflows. Its README lists signing email, Git commits, and software packages, managing passwords with `pass` or `passage`, and authenticating web tunnels and file transfers as representative uses.
Package-manager availability through Homebrew and Nix made it installable in the same way as other command-line security tools, which mattered because trezor-agent is usually used from shells, SSH subprocesses, Git commands, GPG, and systemd user units rather than as a standalone application.
For SSH, users derive a public key from an identity string, add that public key to remote access controls, and run commands or shells with `SSH_AUTH_SOCK` pointed at the agent. The official SSH guide also documents Git and Mercurial repository access, Git commit signing through SSH signatures, and optional systemd socket activation.
For GPG, users initialize a dedicated `GNUPGHOME` such as `~/.gnupg/trezor`, then continue using normal GPG-aware software while the agent asks the hardware device to sign or decrypt. The GPG guide covers commit and tag signing, password-store integration, file signing/decryption, and email use.
trezor-agent is interesting to package nerds because it turns a cryptocurrency hardware wallet into a Unix authentication primitive. It bridges hardware-wallet APIs into the ecosystem of `ssh-agent`, GnuPG, Git signing, `pass`, systemd user sockets, and age plugins.
The package is also a good example of Homebrew packaging for a tool whose value is not a daemon or GUI, but a collection of small executables that plug into existing developer workflows: `trezor-agent`, `trezor-gpg`, `trezor-gpg-agent`, `trezor-signify`, and `age-plugin-trezor`.
posture de sécurité
Aucun manifest local de gestion des secrets correspondant n'a été trouvé pour trezor-agent. Les métadonnées de paquet Nucleus restent publiées ici afin que la couverture future dispose d'une URL stable.
Avant une utilisation sans surveillance par un agent, vérifiez si l'outil lit des identifiants en clair, écrit un état distant, publie des artefacts ou lance des plugins.
local files
These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.
Config paths the tool may read or write during local use.
~/.ssh/agent.conf~/.gnupg/trezorexécutables
| Commande | Type | Exposition | Note |
|---|---|---|---|
age-plugin-trezor | cli | exécutable global | |
trezor-agent | cli | exécutable global | |
trezor-gpg | cli | exécutable global | |
trezor-gpg-agent | cli | exécutable global | |
trezor-signify | cli | exécutable global | |
trezor_agent.py | cli | exécutable global |
fraîcheur
Ces signaux séparent l'âge de génération de la page, l'activité du gestionnaire de paquets et la comparaison avec les versions amont. Un retard de version n'est signalé que lorsqu'une URL de preuve et des versions comparables sont présentes.
https://github.com/romanz/trezor-agent
métadonnées d'installation
| Clé du paquet | brew:trezor-agent |
|---|---|
| Version | 0.13.0 |
| Gestionnaire de paquets | Homebrew |
| Page du gestionnaire de paquets | https://formulae.brew.sh/formula/trezor-agent |
| Page d'accueil | https://github.com/romanz/trezor-agent |
| Dépôt | https://github.com/romanz/trezor-agent |
| Docs amont | https://github.com/romanz/trezor-agent#readme |
| Licence | LGPL-3.0-only |
| Archive source | https://files.pythonhosted.org/packages/d9/b1/e533c417259dc112a067226d4c95cb772d7c090b696a61a065e1e41429d6/trezor_agent-0.13.0.tar.gz |
| Dernière mise à jour | 2026-05-15T11:13:55Z |
| Pulse | updated |
| Dépendances | certifi, cryptography, hidapi, libsodium, libusb, python@3.14 |
| Dépendances de compilation | pkgconf, rust |
| Bouteille | disponible (sur arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| post-install Homebrew | non défini |
| Service | aucun déclaré |
faits du registre
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | trezor-agent |
| Version Scheme | 0 |
| Revision | 2 |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
correspondances dans les bases sources
Les correspondances proviennent d’index externes de gestionnaires de paquets et restent séparées des liens de paquets Automic Vault locaux.
trezor-agent
nix profile install nixpkgs#trezor-agentpiste source
Cette page est servie par av-web depuis l'artéfact SQLite privé des paquets généré par scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.