# Install authz0 with Homebrew, Nix

Automated authorization test tool. Version 1.1.2 via Homebrew; verified from local package data.

## Install

```sh
sudo av install brew:authz0
```

Additional install commands:

### macOS

- Homebrew (100%):

```sh
brew install authz0
```

  Evidence: local Homebrew formula metadata

### Linux

- Nix (92%):

```sh
nix profile install nixpkgs#authz0
```

  Evidence: nixpkgs package indexes: pkgs/by-name/au/authz0/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1

## Package facts

- **Package key:** brew:authz0
- **Package manager:** Homebrew
- **Package manager page:** <https://formulae.brew.sh/formula/authz0>
- **Version:** 1.1.2
- **Source summary:** Automated authorization test tool
- **Homepage:** <https://authz0.hahwul.com/>
- **Repository:** <https://github.com/hahwul/authz0>
- **Upstream docs:** <https://authz0.hahwul.com/>
- **License:** MIT
- **Source archive:** <https://github.com/hahwul/authz0/archive/refs/tags/v1.1.2.tar.gz>
- **Generated:** 2026-07-08T18:08:21+00:00

## Executables

- authz0 (cli)
- authz0 (alias)

## Build dependencies

- go

## Install behavior

- Post-install hook: not defined
- Bottle: available on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux

## Freshness

- Page generated: 2026-07-08
- Package-manager version: 1.1.2
- Local data: ok
- Upstream repository: https://github.com/hahwul/authz0
- Upstream latest detected: v1.1.2 (current)
- info: No package-manager update timestamp was available.
## Project history and usage

Authz0 is a Go CLI for automated authorization and access-control testing. It models target URLs, roles, assertions, and credentials in YAML templates, then scans for unauthorized access based on those role definitions.

### Project history

The public repository was created in January 2022. The README describes the tool as an automated authorization test tool that identifies unauthorized access using URLs, roles, and credentials.

Early releases moved quickly: v1.0.0 shipped in January 2022, v1.1.0 added `setCred` plus imports from ZAP, HAR, and Burp history, and v1.1.2 followed in March 2022. The repository has continued to receive activity even though Homebrew currently tracks the older 1.1.2 release.

### Adoption history

Authz0 is distributed through Go install, Homebrew via the project's tap instructions, Snapcraft, Docker, and a GitHub Action according to official docs and the README. The Homebrew core formula packages 1.1.2 from the official GitHub tag, while the input also records Nix packaging.

The tool sits in the bug-bounty and application-security packaging lane: small enough to install as a single CLI, but designed to consume artifacts from Burp, ZAP, HAR exports, and YAML templates created during manual security testing.

### How it is used

A typical flow is `authz0 new` to generate a YAML template, `authz0 setUrl`, `setRole`, and `setCred` to add test data, then `authz0 scan` to execute checks. The docs show credential headers stored inside the user-supplied template file rather than a fixed global credentials location.

Because the template path is chosen by the user, there is no official fixed config-file or credentials-file location to record. The official structure docs document the YAML schema, not an application config path.

### Why package nerds care

Authz0 is notable for packaging a common appsec workflow as a reproducible CLI: collect URLs from ZAP/Burp/HAR, map roles to allowed and denied routes, and run the same authorization checks again in CI or local testing.

Its package history also shows the difference between upstream activity and packaged stable versions: the repository is active, while the Homebrew stable formula remains at the 2022 1.1.2 release.

### Timeline

- 2022-01: Public GitHub repository created.
- 2022-01: v1.0.0 released.
- 2022-01: v1.1.0 added `setCred` and ZAP/HAR/Burp import flags.
- 2022-03: v1.1.2 released.
- 2022-05: GitHub Action release tag published.

### Related projects

- Authz0 is designed to work around artifacts from OWASP ZAP, Burp Suite, HAR files, Docker, GitHub Actions, and Go-based CLI installation.

### Sources

- <https://api.github.com/repos/hahwul/authz0>
- <https://authz0.hahwul.com/installation.html>
- <https://authz0.hahwul.com/structure/template.html>
- <https://authz0.hahwul.com/usage/>
- <https://authz0.hahwul.com/usage/setCred.html>
- <https://formulae.brew.sh/api/formula/authz0.json>
- <https://github.com/hahwul/authz0#readme>
- <https://github.com/hahwul/authz0/releases>


## Security Notes

narrow executable package without higher-risk signals.

- **Geiger risk:** green / low
- narrow executable package without higher-risk signals

## Source Database Details

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** authz0
- **Version Scheme:** 0
- **Revision:** 0
- **Head Version:** HEAD
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** head, stable

## Other Package-Manager Records

- Nix - authz0: normalized package name match | nixpkgs package indexes: pkgs/by-name/au/authz0/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1


## Related links

- [Terminal utility packages](https://www.automicvault.com/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Networking and protocol packages](https://www.automicvault.com/pkg/networking-protocol-tools/) - Matched network, protocol, or remote-service metadata.
- [Security and crypto packages](https://www.automicvault.com/pkg/security-crypto-tools/) - Matched security, identity, cryptography, password, signing, or certificate metadata.
- [Homebrew utility packages](https://www.automicvault.com/pkg/brew-utility-packages/) - Matched Homebrew package provider.
- [go](https://www.automicvault.com/pkg/brew/go/) - Build dependency declared by Homebrew.
- [git-credential-oauth](https://www.automicvault.com/pkg/brew/git-credential-oauth/) - Shares av.db curated category or tags: cli, oauth, security.
- [opa](https://www.automicvault.com/pkg/brew/opa/) - Shares av.db curated category or tags: authorization, cli, security.
- [openfga](https://www.automicvault.com/pkg/brew/openfga/) - Shares av.db curated category or tags: authorization, cli, security.
- [permify](https://www.automicvault.com/pkg/brew/permify/) - Shares av.db curated category or tags: authorization, cli, security.
- [spicedb](https://www.automicvault.com/pkg/brew/spicedb/) - Shares av.db curated category or tags: authorization, cli, security.
- [acme.sh](https://www.automicvault.com/pkg/brew/acme-sh/) - Shares av.db curated category or tags: cli, security.
- [aescrypt](https://www.automicvault.com/pkg/brew/aescrypt/) - Shares av.db curated category or tags: cli, security.
- [aespipe](https://www.automicvault.com/pkg/brew/aespipe/) - Shares av.db curated category or tags: cli, security.

## Combined YAML source

View the package source record on GitHub. [combined/authz0.yml](https://github.com/automic-vault/db/blob/main/combined/authz0.yml)


## Sources

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- curated package history
- package version freshness
- av.db category and tag curation
- package relationship graph
- external package-manager database matches
- cross-ecosystem install command graph
