Automic VaultAutomic Vault

brew

Install dotslash with Homebrew, Nix, pacman, scoop

Simplified executable deployment. Version 0.5.9 via Homebrew; verified 2026-04-10.

install

Additional install commands

macOS

Homebrewverified · 100%
brew install dotslash

local Homebrew formula metadata

Linux

Nixverified · 92%
nix profile install nixpkgs#dotslash

nixpkgs package indexes · pkgs/by-name/do/dotslash/package.nix · source: api.github.com

Arch Linux pacmanverified · 92%
sudo pacman -S dotslash

Arch Linux sync databases · dotslash · source: geo.mirror.pkgbuild.com

Windows

Scoopverified · 92%
scoop install main/dotslash

Scoop official bucket manifest trees · bucket/dotslash.json · source: api.github.com

overview

Package summary

Simplified executable deployment

Commands and aliases

  • dotslash

history

Project history and usage

DotSlash is Meta's command-line tool for representing platform-specific heavyweight executables as small text files that fetch, verify, and run the correct binary on demand. It is aimed at executable deployment inside source repositories and reproducible build environments.

Project history

Meta announced DotSlash publicly on February 6, 2024 as an open-source developer-infrastructure tool. The first GitHub release, v0.1.0, was published the same day, and subsequent 2024 and 2025 releases iterated on the executable-deployment model.

Adoption history

DotSlash grew from the internal need to vendor large toolchain binaries without bloating repositories or relying on each developer's host environment. Its package-manager adoption includes Homebrew, Nix, pacman, and Scoop entries, which made the `dotslash` interpreter easier to install across common workstation setups.

How it is used

Developers create small executable DotSlash files that describe per-platform providers, sizes, hashes, archive formats, and paths. On first execution, DotSlash downloads and verifies the matching artifact; later executions reuse the cached binary.

Why package nerds care

DotSlash is package-nerd bait because it sits between vendoring, lockfiles, binary caches, and hermetic build tooling. It treats executable resolution as data checked into source control, while leaving the large artifacts outside the repository and verifying them with content hashes.

Timeline

  • 2024: Meta announced DotSlash and published v0.1.0 on February 6.
  • 2024: The project shipped several early releases through v0.4.x.
  • 2025: v0.5.x releases continued the public release train.

Related projects

  • Buck2
  • Bazel
  • Nix
  • Scoop
  • Homebrew

security posture

Risk level: green

narrow executable package without higher-risk signals.

Risk classifier

green risk · low confidence · appliance

Why

  • narrow executable package without higher-risk signals

Signals

  • metadata:no-higher-risk-signals

Install behavior

  • No Homebrew post-install hook is recorded in formula metadata.
  • Homebrew bottle metadata is available for 6 platform targets.
  • Build metadata lists 1 build dependencies.

Recommended review

Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.

executables

Installed executables

CommandKindExposureNote
dotslashcliglobal executable

freshness

Version and freshness

These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.

page generated2026-07-08
manager version0.5.9
manager updated2026-04-10
local dataok
upstreamcurrent
latest detectedv0.5.9

https://github.com/facebook/dotslash

  • okNo freshness warnings were generated.

install metadata

Package metadata

Package keybrew:dotslash
Version0.5.9
Package managerHomebrew
Package manager pagehttps://formulae.brew.sh/formula/dotslash
Homepagehttps://dotslash-cli.com
Repositoryhttps://github.com/facebook/dotslash
Upstream docshttps://dotslash-cli.com/docs
LicenseApache-2.0
Source archivehttps://github.com/facebook/dotslash/archive/refs/tags/v0.5.9.tar.gz
Last updated2026-04-10T00:41:26Z
Pulseupdated
Build dependenciesrust
Bottleavailable (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux)
Homebrew post-installnot defined
Servicenone declared

registry facts

Source database details

Source DatabaseHomebrew formula API
Taphomebrew/core
Full Namedotslash
Version Scheme0
Revision0
Bottle Stable Root URLhttps://ghcr.io/v2/homebrew/core
Deprecatedno
Disabledno
Keg Onlyno
URL Keys
  • stable

source database matches

Other package-manager records

Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.

Nix95%

dotslash

nix profile install nixpkgs#dotslash
  • normalized package name match
  • Matched by: Dotslash
nixpkgs package indexes · api.github.com · nixpkgs package indexes: pkgs/by-name/do/dotslash/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1
pacman95%

dotslash 0.5.8-1

Command-line tool to facilitate fetching an executable, caching it, and then running it

https://github.com/facebook/dotslash

sudo pacman -S dotslash
  • License: MIT AND Apache-2.0
  • Architecture: x86_64
  • 1 dependencies
  • normalized package name match
  • Matched by: Dotslash
Arch Linux sync databases · geo.mirror.pkgbuild.com · Arch Linux sync databases: dotslash from https://geo.mirror.pkgbuild.com/extra/os/x86_64/extra.db.tar.gz
Scoop95%

main/dotslash

scoop install main/dotslash
  • normalized package name match
  • Matched by: Dotslash
Scoop official bucket manifest trees · api.github.com · Scoop official bucket manifest trees: bucket/dotslash.json from https://api.github.com/repos/ScoopInstaller/Main/git/trees/master?recursive=1

source trail

Generated from repository data

This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.

Used sources

  • Geiger risk classifier
  • Nucleus package database
  • av.db category and tag curation
  • cross-ecosystem install command graph
  • curated package history
  • external package-manager database matches
  • package relationship graph
  • package version freshness
  • package-page enrichment