Automic VaultAutomic Vault

brew

Install certigo with Homebrew, apk, MacPorts, Nix, scoop

Utility to examine and validate certificates in a variety of formats. Version 1.18.0 via Homebrew; verified 2026-04-10.

install

Additional install commands

macOS

Homebrewverified · 100%
brew install certigo

local Homebrew formula metadata

MacPortsverified · 94%
sudo port install certigo

MacPorts ports tree · sysutils/certigo/Portfile · source: api.github.com

Linux

Alpine Linux apkverified · 92%
sudo apk add certigo

Alpine Linux edge package indexes · certigo · source: dl-cdn.alpinelinux.org

Nixverified · 92%
nix profile install nixpkgs#certigo

nixpkgs package indexes · pkgs/by-name/ce/certigo/package.nix · source: api.github.com

Windows

Scoopverified · 92%
scoop install main/certigo

Scoop official bucket manifest trees · bucket/certigo.json · source: api.github.com

overview

Package summary

Utility to examine and validate certificates in a variety of formats

Commands and aliases

  • certigo

history

Project history and usage

certigo is Square's certificate inspection and validation CLI. Its README positions it as a debugging tool for SSL/TLS issues, with support for common certificate and keystore formats, remote TLS connections, StartTLS protocols, validation, linting, and JSON output.

Project history

The public repository was created in 2016 under square/certigo and has continued to receive upstream releases, including v1.18.0 in 2026. The project is written in Go and documents Go module-based development.

Adoption history

certigo moved beyond a GitHub-only utility into regular package-manager channels. The supplied package facts list APK, Homebrew, MacPorts, Nix, and Scoop, and the README itself documents Homebrew installation for macOS.

How it is used

certigo is commonly used to dump certificate files and keystores, connect to servers to inspect and verify TLS chains, and verify certificate chains against expected names. Its JSON output makes it scriptable with tools such as jq.

Why package nerds care

Package nerds care about certigo because it packages a practical slice of TLS troubleshooting into one portable CLI. It handles formats and protocols that otherwise push users toward several different OpenSSL, keytool, and ad hoc shell invocations.

Timeline

  • 2016: Public GitHub repository created.
  • 2022: v1.16.0 released.
  • 2025: v1.17.x releases published.
  • 2026: v1.18.0 released.

Related projects

  • The README examples pair certigo JSON output with jq, and its feature set overlaps with OpenSSL and Java keystore inspection workflows.

security posture

Risk level: green

narrow executable package without higher-risk signals.

Risk classifier

green risk · low confidence · appliance

Why

  • narrow executable package without higher-risk signals

Signals

  • metadata:no-higher-risk-signals

Install behavior

  • No Homebrew post-install hook is recorded in formula metadata.
  • Homebrew bottle metadata is available for 6 platform targets.
  • Build metadata lists 1 build dependencies.

Recommended review

Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.

executables

Installed executables

CommandKindExposureNote
certigocliglobal executable

freshness

Version and freshness

These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.

page generated2026-07-08
manager version1.18.0
manager updated2026-04-10
local dataok
upstreamcurrent
latest detectedv1.18.0

https://github.com/square/certigo

  • okNo freshness warnings were generated.

install metadata

Package metadata

Package keybrew:certigo
Version1.18.0
Package managerHomebrew
Package manager pagehttps://formulae.brew.sh/formula/certigo
Homepagehttps://github.com/square/certigo
Repositoryhttps://github.com/square/certigo
Upstream docshttps://github.com/square/certigo#readme
LicenseApache-2.0
Source archivehttps://github.com/square/certigo/archive/refs/tags/v1.18.0.tar.gz
Last updated2026-04-10T21:11:33Z
Pulseupdated
Build dependenciesgo
Bottleavailable (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux)
Homebrew post-installnot defined
Servicenone declared

registry facts

Source database details

Source DatabaseHomebrew formula API
Taphomebrew/core
Full Namecertigo
Version Scheme0
Revision0
Head VersionHEAD
Bottle Stable Root URLhttps://ghcr.io/v2/homebrew/core
Deprecatedno
Disabledno
Keg Onlyno
URL Keys
  • head
  • stable

source database matches

Other package-manager records

Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.

Nix95%

certigo

nix profile install nixpkgs#certigo
  • normalized package name match
  • Matched by: Certigo
nixpkgs package indexes · api.github.com · nixpkgs package indexes: pkgs/by-name/ce/certigo/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1
apk95%

certigo 1.16.0-r33

Utility to examine and validate certificates in a variety of formats

https://github.com/square/certigo

sudo apk add certigo
  • License: Apache-2.0
  • Architecture: x86_64
  • Source Package: certigo
  • 1 dependencies
  • 1 provides
  • normalized package name match
  • Matched by: Certigo
Alpine Linux edge package indexes · dl-cdn.alpinelinux.org · Alpine Linux edge package indexes: certigo from https://dl-cdn.alpinelinux.org/alpine/edge/testing/x86_64/APKINDEX.tar.gz
MacPorts95%

certigo

sudo port install certigo
  • normalized package name match
  • Matched by: Certigo
MacPorts ports tree · api.github.com · MacPorts ports tree: sysutils/certigo/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1
Scoop95%

main/certigo

scoop install main/certigo
  • normalized package name match
  • Matched by: Certigo
Scoop official bucket manifest trees · api.github.com · Scoop official bucket manifest trees: bucket/certigo.json from https://api.github.com/repos/ScoopInstaller/Main/git/trees/master?recursive=1

source trail

Generated from repository data

This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.

Used sources

  • Geiger risk classifier
  • Nucleus package database
  • av.db category and tag curation
  • cross-ecosystem install command graph
  • curated package history
  • external package-manager database matches
  • package relationship graph
  • package version freshness
  • package-page enrichment