Automic VaultAutomic Vault

brew

Install braid with Homebrew

Simple tool to help track vendor branches in a Git repository. Version 1.1.10 via Homebrew; verified 2026-04-20.

install

Additional install commands

macOS

Homebrewverified · 100%
brew install braid

local Homebrew formula metadata

overview

Package summary

Simple tool to help track vendor branches in a Git repository

Commands and aliases

  • braid

history

Project history and usage

Braid is a Ruby command-line tool for tracking vendored Git repositories inside another Git repository. It records vendored mirrors in .braids.json and provides commands to add, update, diff, and push changes back.

Project history

The GitHub repository for Braid was created in February 2008. Its official site frames the project around the old vendoring problem: projects often copied third-party source into their tree, then struggled to update it or send local changes upstream.

Braid's solution is to keep metadata about the external repository, branch, tag, revision, or subdirectory in .braids.json. That gives a plain Git repository enough memory to update a vendored copy later without converting the vendored directory into a nested repository.

Adoption history

The official documentation presents RubyGems installation with gem install braid, while the input facts record Homebrew packaging. Its audience is narrower than Git itself: teams that deliberately vendor source and need repeatable updates.

Braid remained useful where teams preferred checked-in source copies over package-manager references, especially when local patches or co-evolution with the upstream library made binary package dependencies awkward.

How it is used

Typical usage starts with braid add <repo> <path>, which vendors a remote Git repository into a project path and updates .braids.json. Later, braid update pulls upstream changes, braid diff emits local changes as a patch, and braid push can send local changes back to a source branch.

The documentation also covers pinning to branches, tags, or revisions and selecting subdirectories from a remote repository, making Braid a lightweight alternative to manual copy-and-patch vendoring.

Why package nerds care

Braid is interesting because it sits at the boundary between dependency management and version control. It preserves vendored source inside one repository while adding just enough metadata to make updates reproducible.

For package historians, it captures a pre-monorepo, pre-lockfile style of dependency handling common in Ruby and web projects: when package registries existed, but teams still wanted patched source in-tree.

Timeline

  • 2008-02: The Braid GitHub repository was created.
  • 2022-01: The documentation described supported environments as Linux, macOS, and Windows with recent Git and Ruby dependencies.
  • 2024: The GitHub repository still showed recent activity in official repository metadata.

Related projects

  • Git is the underlying version-control system Braid extends.
  • RubyGems is the installation channel shown in Braid's official documentation.
  • Manual vendoring by copying source trees is the workflow Braid was built to improve.

security posture

Risk level: green

narrow executable package without higher-risk signals.

Risk classifier

green risk · low confidence · appliance

Why

  • narrow executable package without higher-risk signals

Signals

  • metadata:no-higher-risk-signals

Install behavior

  • No Homebrew post-install hook is recorded in formula metadata.
  • Homebrew bottle metadata is available for 6 platform targets.
  • Installs with 1 runtime dependencies.

Recommended review

Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.

local files

Configuration and credential file locations

These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.

Configuration files

Config paths the tool may read or write during local use.

Unix
<repository-root>/.braids.json

executables

Installed executables

CommandKindExposureNote
braidcliglobal executable

freshness

Version and freshness

These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.

page generated2026-07-08
manager version1.1.10
manager updated2026-04-20
local dataok
upstreamcurrent
latest detectedv1.1.10

https://github.com/cristibalan/braid

  • okNo freshness warnings were generated.

install metadata

Package metadata

Package keybrew:braid
Version1.1.10
Package managerHomebrew
Package manager pagehttps://formulae.brew.sh/formula/braid
Homepagehttps://cristibalan.github.io/braid/
Repositoryhttps://github.com/cristibalan/braid
Upstream docshttps://cristibalan.github.io/braid
LicenseMIT
Source archivehttps://github.com/cristibalan/braid/archive/refs/tags/v1.1.10.tar.gz
Last updated2026-04-20T01:21:19Z
Pulseupdated
Dependenciesruby
Bottleavailable (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux)
Homebrew post-installnot defined
Servicenone declared

registry facts

Source database details

Source DatabaseHomebrew formula API
Taphomebrew/core
Full Namebraid
Version Scheme0
Revision2
Bottle Stable Root URLhttps://ghcr.io/v2/homebrew/core
Deprecatedno
Disabledno
Keg Onlyno
URL Keys
  • stable

source trail

Generated from repository data

This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.

Used sources

  • Geiger risk classifier
  • Nucleus package database
  • av.db category and tag curation
  • cross-ecosystem install command graph
  • curated configuration and credential file locations
  • curated package history
  • package relationship graph
  • package version freshness
  • package-page enrichment