# badkeys を Homebrew, Nix でインストール

badkeys のインストール経路、実行ファイル、メタデータ、AI エージェント向けセキュリティノートを確認します。

## インストール

```sh
sudo av install brew:badkeys
```

追加のインストールコマンド:

### macOS

- Homebrew (100%):

```sh
brew install badkeys
```

  証拠: local Homebrew formula metadata

### Linux

- Nix (92%):

```sh
nix profile install nixpkgs#badkeys
```

  証拠: nixpkgs package indexes: pkgs/by-name/ba/badkeys/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1

## パッケージ情報

- **パッケージキー:** brew:badkeys
- **パッケージマネージャ:** Homebrew
- **パッケージマネージャページ:** <https://formulae.brew.sh/formula/badkeys>
- **バージョン:** 0.0.19
- **ソース概要:** Tool to find common vulnerabilities in cryptographic public keys
- **ホームページ:** <https://badkeys.info>
- **リポジトリ:** <https://github.com/badkeys/badkeys>
- **上流ドキュメント:** <https://badkeys.info/>
- **ライセンス:** MIT
- **ソースアーカイブ:** <https://files.pythonhosted.org/packages/bd/a7/b222a5f0db2bc9e765252a109da1ab1baeed0da6e0b050e2baa3208650c4/badkeys-0.0.19.tar.gz>
- **最終更新:** 2026-06-17T09:59:35Z
- **生成日時:** 2026-07-08T18:08:21+00:00

## 実行可能ファイル

- badkeys (cli)
- badkeys (エイリアス)

## 依存関係

- cryptography
- gmp
- libmpc
- mpfr
- python@3.14

## インストール挙動

- post-install フック: 未定義
- Bottle: 利用可能 対象 arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux

## バージョンと鮮度

- ページ生成日: 2026-07-08
- マネージャ版: 0.0.19
- マネージャ更新日: 2026-06-17
- ローカルデータ: OK
- 上流リポジトリ: https://badkeys.info
- 情報: Release/tag comparison is only available for GitHub repositories.
## プロジェクトの歴史と使われ方

badkeys is a Python tool and library for checking cryptographic public keys against known vulnerability patterns and blocklist data. It sits in the practical security-tooling niche between certificate/key parsers and vulnerability scanners.

### プロジェクトの歴史

The badkeys GitHub repository was created in January 2022. Its README says the tool checks public keys in multiple formats for known vulnerabilities, with a public web version at badkeys.info.

The README credits Hanno Boeck as author, says the work was initially funded in 2022 through the CIDI project and CISAT at the IT University of Copenhagen, and notes later 2025/2026 support from NLnet's NGI0 Core Fund.

### 採用の歴史

The project is distributed through PyPI and appears in Homebrew and Nix in the batch package metadata. The README also points users to Repology for distribution packages, suggesting upstream expected operating-system packaging beyond Python-only installation.

Release names show the project expanding its checks over time, including DKIM support in 2024, parser robustness and return-code improvements in 2026, and a 'Post-Quantum Edition' release in June 2026.

### 使われ方

badkeys users first download blocklist data with badkeys --update-bl, then scan key, certificate, CSR, SSH public key, TLS host, or SSH host material. The README documents return codes that distinguish application errors, parser problems, and vulnerable keys.

Its command-line use is intentionally automation-friendly: quiet output when no vulnerable keys are found, an all-keys output flag for audits, and bitmask return codes for CI or batch scans.

### パッケージ好きにとっての重要性

badkeys is package-nerd relevant because it turns a pile of cryptographic failure cases into a reusable CLI and library with data updates. Packaging it gives security teams a repeatable way to scan public keys without copying ad hoc scripts around.

It also illustrates a modern security package pattern: a small Python CLI, external vulnerability/blocklist data, optional network scanning modes, and package-manager availability for workstation and CI installation.

### タイムライン

- 2022: Public GitHub repository created and initial CIDI/CISAT funding period described by upstream.
- 2024: v0.0.7 and v0.0.9 releases published; v0.0.9 added DKIM support.
- 2025: Upstream README notes NLnet NGI0 Core Fund support across 2025/2026.
- 2026: v0.0.19 'Post-Quantum Edition' released.

### Related projects

- badkeys is adjacent to OpenSSL, SSH host-key audit tooling, TLS scanners, DKIM key checking, and certificate linting tools.
- The README notes Paramiko as an optional dependency for SSH scanning.

### ソース

- <https://badkeys.info/>
- <https://github.com/badkeys/badkeys>
- <https://github.com/badkeys/badkeys/releases>
- <https://pypi.org/project/badkeys/>
- source_facts.package-manager


## セキュリティノート

badkeys に一致するローカルシークレット処理マニフェストは見つかりませんでした。将来の対応で安定したパッケージ URL を使えるよう、Nucleus パッケージメタデータはここに公開されています。


## ソースデータベース詳細

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** badkeys
- **Version Scheme:** 0
- **Revision:** 0
- **Head Version:** HEAD
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** head, stable

## 他のパッケージマネージャ記録

- Nix - badkeys: normalized package name match | nixpkgs package indexes: pkgs/by-name/ba/badkeys/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1


## 関連リンク

- [Terminal utility packages](https://www.automicvault.com/ja/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Networking and protocol packages](https://www.automicvault.com/ja/pkg/networking-protocol-tools/) - Matched network, protocol, or remote-service metadata.
- [Security and crypto packages](https://www.automicvault.com/ja/pkg/security-crypto-tools/) - Matched security, identity, cryptography, password, signing, or certificate metadata.
- [Homebrew utility packages](https://www.automicvault.com/ja/pkg/brew-utility-packages/) - Matched Homebrew package provider.
- [python@3.14](https://www.automicvault.com/ja/pkg/brew/python-3-14/) - Runtime dependency declared by Homebrew.
- [argon2](https://www.automicvault.com/ja/pkg/brew/argon2/) - Shares av.db curated category or tags: cli, cryptography, security.
- [bcrypt](https://www.automicvault.com/ja/pkg/brew/bcrypt/) - Shares av.db curated category or tags: cli, cryptography, security.
- [botan](https://www.automicvault.com/ja/pkg/brew/botan/) - Shares av.db curated category or tags: cli, cryptography, security.
- [ccrypt](https://www.automicvault.com/ja/pkg/brew/ccrypt/) - Shares av.db curated category or tags: cli, cryptography, security.
- [cfssl](https://www.automicvault.com/ja/pkg/brew/cfssl/) - Shares av.db curated category or tags: cli, cryptography, security.
- [gmssl](https://www.automicvault.com/ja/pkg/brew/gmssl/) - Shares av.db curated category or tags: cli, cryptography, security.
- [gnupg-pkcs11-scd](https://www.automicvault.com/ja/pkg/brew/gnupg-pkcs11-scd/) - Shares av.db curated category or tags: cli, cryptography, security.
- [gnutls](https://www.automicvault.com/ja/pkg/brew/gnutls/) - Shares av.db curated category or tags: cli, cryptography, security.
- [safety](https://www.automicvault.com/ja/pkg/brew/safety/) - Both packages touch the same language runtime or ecosystem. Shared terms: cli, cryptography, python, python-3-14, security.
- [snyk-agent-scan](https://www.automicvault.com/ja/pkg/brew/snyk-agent-scan/) - Both packages touch the same language runtime or ecosystem. Shared terms: cli, cryptography, python, python-3-14, security.

## Combined YAML source

View the package source record on GitHub. [combined/badkeys.yml](https://github.com/automic-vault/db/blob/main/combined/badkeys.yml)


## ソース

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- curated package history
- package version freshness
- av.db category and tag curation
- package relationship graph
- external package-manager database matches
- cross-ecosystem install command graph
