Automic VaultAutomic Vault

brew

Install cek with Homebrew

Explore the (overlay) filesystem and layers of OCI container images. Version 0.2.0 via Homebrew; verified 2026-05-16.

install

Additional install commands

macOS

Homebrewverified · 100%
brew install cek

local Homebrew formula metadata

overview

Package summary

Explore the (overlay) filesystem and layers of OCI container images

Commands and aliases

  • cek

history

Project history and usage

cek, the container exploration kit, is a Go CLI for inspecting OCI container image filesystems and layers without running containers.

Project history

The official repository was created on December 27, 2025. The README positions cek as a command-line utility for browsing files, reading contents, inspecting layer mechanics, listing tags, exporting images, and showing image metadata.

Adoption history

The project is young but has a clear package-manager path through Homebrew and Go installation. The official repository metadata showed more than 300 stars and its first listed GitHub release, v0.2.0, was published on May 16, 2026.

How it is used

Users run commands such as `cek ls`, `cek cat`, `cek tags`, `cek export`, `cek tree`, and `cek inspect` against OCI image references. The tool can use local container daemon sockets through `DOCKER_HOST` or pull from remote registries.

Why package nerds care

cek is useful to package and container maintainers because it inspects image contents, layers, tags, and metadata without launching a container, which fits CI, registry triage, air-gapped transfer, and image-diff workflows.

Timeline

  • 2025: The official GitHub repository was created.
  • 2026: v0.2.0 was published on GitHub Releases.
  • 2026: The official repository metadata recorded active development into July.

Related projects

  • Docker, Podman, and containerd are supported local daemon sources named in the README.
  • OCI image registries are the remote source for image pulls and tag listing.

security posture

Risk level: orange

infrastructure mutation or orchestration signal.

Risk classifier

orange risk · medium confidence · infrastructure

Why

  • infrastructure mutation or orchestration signal

Signals

  • text:container

Install behavior

  • No Homebrew post-install hook is recorded in formula metadata.
  • Homebrew bottle metadata is available for 6 platform targets.
  • Build metadata lists 1 build dependencies.

Recommended review

Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.

executables

Installed executables

CommandKindExposureNote
cekcliglobal executable

freshness

Version and freshness

These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.

page generated2026-07-08
manager version0.2.0
manager updated2026-05-16
local dataok
upstreamcurrent
latest detectedv0.2.0

https://github.com/bschaatsbergen/cek

  • okNo freshness warnings were generated.

install metadata

Package metadata

Package keybrew:cek
Version0.2.0
Package managerHomebrew
Package manager pagehttps://formulae.brew.sh/formula/cek
Homepagehttps://github.com/bschaatsbergen/cek
Repositoryhttps://github.com/bschaatsbergen/cek
Upstream docshttps://github.com/bschaatsbergen/cek#readme
LicenseMIT
Source archivehttps://github.com/bschaatsbergen/cek/archive/refs/tags/v0.2.0.tar.gz
Last updated2026-05-16T14:38:51Z
Pulseupdated
Build dependenciesgo
Bottleavailable (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux)
Homebrew post-installnot defined
Servicenone declared

registry facts

Source database details

Source DatabaseHomebrew formula API
Taphomebrew/core
Full Namecek
Version Scheme0
Revision0
Head VersionHEAD
Bottle Stable Root URLhttps://ghcr.io/v2/homebrew/core
Deprecatedno
Disabledno
Keg Onlyno
URL Keys
  • head
  • stable

source trail

Generated from repository data

This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.

Used sources

  • Geiger risk classifier
  • Nucleus package database
  • av.db category and tag curation
  • cross-ecosystem install command graph
  • curated package history
  • package relationship graph
  • package version freshness
  • package-page enrichment