# Install betterleaks with Homebrew, dnf, MacPorts, Nix, winget

Secrets scanner built for configurability and speed. Version 1.6.1 via Homebrew; verified 2026-06-30.

## Install

```sh
sudo av install brew:betterleaks
```

Additional install commands:

### macOS

- Homebrew (100%):

```sh
brew install betterleaks
```

  Evidence: local Homebrew formula metadata

- MacPorts (94%):

```sh
sudo port install betterleaks
```

  Evidence: MacPorts ports tree: security/betterleaks/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1

### Linux

- dnf (92%):

```sh
sudo dnf install betterleaks
```

  Evidence: Fedora Rawhide package metadata: betterleaks from https://dl.fedoraproject.org/pub/fedora/linux/development/rawhide/Everything/x86_64/os/repodata/e5ca8ce900cd68f5419e1c39ae517343100b306336cbaeb70a3c153121d95094-primary.xml.zst

- Nix (92%):

```sh
nix profile install nixpkgs#betterleaks
```

  Evidence: nixpkgs package indexes: pkgs/by-name/be/betterleaks/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1

### Windows

- winget (92%):

```sh
winget install --id Betterleaks.Betterleaks -e
```

  Evidence: Windows Package Manager source index: Betterleaks.Betterleaks from https://cdn.winget.microsoft.com/cache/source.msix

## Package facts

- **Package key:** brew:betterleaks
- **Package manager:** Homebrew
- **Package manager page:** <https://formulae.brew.sh/formula/betterleaks>
- **Version:** 1.6.1
- **Source summary:** Secrets scanner built for configurability and speed
- **Homepage:** <https://betterleaks.com>
- **Repository:** <https://github.com/betterleaks/betterleaks>
- **Upstream docs:** <https://github.com/betterleaks/betterleaks#readme>
- **License:** MIT
- **Source archive:** <https://github.com/betterleaks/betterleaks/archive/refs/tags/v1.6.1.tar.gz>
- **Last updated:** 2026-06-30T18:02:33Z
- **Generated:** 2026-07-10T07:20:53+00:00

## Executables

- betterleaks (cli)
- betterleaks (alias)

## Build dependencies

- go

## Install behavior

- Post-install hook: not defined
- Bottle: available on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux

## Freshness

- Page generated: 2026-07-10
- Package-manager version: 1.6.1
- Package-manager updated: 2026-06-30
- Local data: ok
- Upstream repository: https://github.com/betterleaks/betterleaks
- Upstream latest detected: v1.6.1 (current)
## Project history and usage

Betterleaks is a new secrets-scanning CLI focused on configurable detection, contextual filtering, secret validation, and scanning across Git, local directories, GitHub, GitLab, Hugging Face, S3, and stdin.

### Project history

The official repository was created in February 2026 and describes Betterleaks as maintained by the people behind Gitleaks, including Gitleaks' original author. Early 2026 releases moved quickly, reaching v1.6.0 by June 2026.

### Adoption history

Adoption history is still young, but the input already records Homebrew, Fedora, MacPorts, Nix, and winget packaging. The project also publishes container usage through GitHub Container Registry in its README installation examples.

### How it is used

Betterleaks is used to scan repositories, local paths, hosted forges, object storage, and stdin for secrets. Its configuration model uses TOML rules with Expr-based filters and validation checks, and it keeps compatibility with Gitleaks-shaped configs.

### Why package nerds care

Betterleaks matters to package nerds as a fast-moving 2026 entry in the secret-scanning ecosystem: it inherits expectations from Gitleaks but pushes more logic into configurable filters and validation. The interesting packaging angle is how quickly a security CLI can appear across Homebrew, Linux packages, containers, and Windows package feeds.

### Timeline

- 2026: Repository created in February.
- 2026: Early 1.x releases published through spring and summer.
- 2026: v1.6.0 released in June.

### Related projects

- Related projects include Gitleaks, TruffleHog, git-secrets, detect-secrets, and hosted secret-scanning features in GitHub and GitLab.

### Sources

- <https://api.github.com/repos/betterleaks/betterleaks>
- <https://api.github.com/repos/betterleaks/betterleaks/releases>
- <https://raw.githubusercontent.com/betterleaks/betterleaks/main/README.md>
- source_facts.package-manager


## Security Notes

No matching local secret-handling manifest was found for betterleaks. Nucleus package metadata is still published here so future coverage has a stable package URL.



## Configuration and credential file locations

These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.


## Configuration files

- Unix: ./.betterleaks.toml, ./.gitleaks.toml
## Source Database Details

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** betterleaks
- **Version Scheme:** 0
- **Revision:** 0
- **Head Version:** HEAD
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** head, stable

## Other Package-Manager Records

- Nix - betterleaks: normalized package name match | nixpkgs package indexes: pkgs/by-name/be/betterleaks/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1
- dnf - betterleaks - 1.4.0-1.fc45: normalized package name match | Fedora Rawhide package metadata: betterleaks from https://dl.fedoraproject.org/pub/fedora/linux/development/rawhide/Everything/x86_64/os/repodata/e5ca8ce900cd68f5419e1c39ae517343100b306336cbaeb70a3c153121d95094-primary.xml.zst | Secrets scanner built for configurability and speed | https://github.com/betterleaks/betterleaks
- MacPorts - betterleaks: normalized package name match | MacPorts ports tree: security/betterleaks/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1
- winget - Betterleaks.Betterleaks: normalized package name match | Windows Package Manager source index: Betterleaks.Betterleaks from https://cdn.winget.microsoft.com/cache/source.msix


## Related links

- [Terminal utility packages](https://www.automicvault.com/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Networking and protocol packages](https://www.automicvault.com/pkg/networking-protocol-tools/) - Matched network, protocol, or remote-service metadata.
- [Security and crypto packages](https://www.automicvault.com/pkg/security-crypto-tools/) - Matched security, identity, cryptography, password, signing, or certificate metadata.
- [Homebrew utility packages](https://www.automicvault.com/pkg/brew-utility-packages/) - Matched Homebrew package provider.
- [go](https://www.automicvault.com/pkg/brew/go/) - Build dependency declared by Homebrew.
- [checkpwn](https://www.automicvault.com/pkg/brew/checkpwn/) - Shares av.db curated category or tags: cli, passwords, security.
- [detect-secrets](https://www.automicvault.com/pkg/brew/detect-secrets/) - Shares av.db curated category or tags: cli, secret-scanning, security.
- [diceware](https://www.automicvault.com/pkg/brew/diceware/) - Shares av.db curated category or tags: cli, passwords, security.
- [git-hound](https://www.automicvault.com/pkg/brew/git-hound/) - Shares av.db curated category or tags: cli, secret-scanning, security.
- [git-secrets](https://www.automicvault.com/pkg/brew/git-secrets/) - Shares av.db curated category or tags: cli, secret-scanning, security.
- [gitleaks](https://www.automicvault.com/pkg/brew/gitleaks/) - Shares av.db curated category or tags: cli, secret-scanning, security.
- [hack-browser-data](https://www.automicvault.com/pkg/brew/hack-browser-data/) - Shares av.db curated category or tags: cli, passwords, security.
- [kingfisher](https://www.automicvault.com/pkg/brew/kingfisher/) - Shares av.db curated category or tags: cli, secret-scanning, security.

## Combined YAML source

View the package source record on GitHub. [combined/betterleaks.yml](https://github.com/automic-vault/db/blob/main/combined/betterleaks.yml)


## Sources

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- curated configuration and credential file locations
- curated package history
- package version freshness
- av.db category and tag curation
- package relationship graph
- external package-manager database matches
- cross-ecosystem install command graph
