macOS
brew install cycodelocal Homebrew formula metadata
brew
Boost security in your dev lifecycle via SAST, SCA, Secrets & IaC scanning. Version 3.17.0 via Homebrew; verified 2026-07-07.
install
brew install cycodelocal Homebrew formula metadata
overview
Boost security in your dev lifecycle via SAST, SCA, Secrets & IaC scanning
history
Cycode CLI is a local and CI-oriented security scanner for Cycode users, covering secrets, infrastructure-as-code misconfigurations, SCA vulnerabilities, and SAST findings.
The cycode-cli repository was created in July 2022 and published early releases later that year. Its README has grown from a scanner guide into a broader command-line manual covering authentication, configuration, pre-commit and pre-push hooks, repository and path scans, SBOM reports, and an experimental MCP server.
Official installation paths include PyPI, Homebrew, and GitHub Releases, which lets teams choose between Python packaging, macOS package management, and standalone executables. The README also documents pre-commit integration, making the CLI part of developer workflow rather than only a central CI scanner.
Users authenticate with cycode auth, cycode configure, or environment variables, then run scans over repositories, paths, commit history, pre-commit, or pre-push contexts. The CLI stores global credentials and URLs under the user's .cycode directory and local ignore rules in .cycode/config.yaml where scans are run.
For package maintainers, Cycode CLI is a security SaaS client with real local state: packaging needs to expose the cycode executable cleanly while leaving credentials, service URLs, and ignore-rule config in user- or project-owned YAML files.
security posture
No matching local secret-handling manifest was found for cycode. Nucleus package metadata is still published here so future coverage has a stable package URL.
Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.
local files
These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.
Config paths the tool may read or write during local use.
~/.cycode/config.yaml./.cycode/config.yamlCredential-bearing paths to review before unattended agent runs.
~/.cycode/credentials.yamlexecutables
| Command | Kind | Exposure | Note |
|---|---|---|---|
cycode | cli | global executable |
freshness
These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.
https://github.com/cycodehq/cycode-cli
install metadata
| Package key | brew:cycode |
|---|---|
| Version | 3.17.0 |
| Package manager | Homebrew |
| Package manager page | https://formulae.brew.sh/formula/cycode |
| Homepage | https://github.com/cycodehq/cycode-cli |
| Repository | https://github.com/cycodehq/cycode-cli |
| Upstream docs | https://github.com/cycodehq/cycode-cli#readme |
| License | MIT |
| Source archive | https://files.pythonhosted.org/packages/32/a0/3a7fc8e4cbc2e4357e0068f6c10c9de00fb621d395a319430deb267d65bf/cycode-3.17.0.tar.gz |
| Last updated | 2026-07-07T09:59:01Z |
| Pulse | updated |
| Dependencies | certifi, cryptography, libyaml, pydantic, python@3.14, rpds-py |
| Bottle | available (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | not defined |
| Service | none declared |
registry facts
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | cycode |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
source trail
This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.