Automic VaultAutomic Vault

brew

Install duck with Homebrew, chocolatey, apt, MacPorts

Command-line interface for Cyberduck (a multi-protocol file transfer tool). Version 9.5.2.45323 via Homebrew; verified 2026-07-02.

install

Additional install commands

macOS

Homebrewverified · 100%
brew install duck

local Homebrew formula metadata

MacPortsverified · 94%
sudo port install duck

MacPorts ports tree · net/duck/Portfile · source: api.github.com

Linux

Debian aptverified · 92%
sudo apt install duck

Debian stable package indexes · duck · source: deb.debian.org

overview

Package summary

Command-line interface for Cyberduck (a multi-protocol file transfer tool)

Commands and aliases

  • duck

history

Project history and usage

duck is the command-line interface for Cyberduck, the long-running file-transfer client. It gives Cyberduck's multi-protocol transfer stack a scriptable shell front end for FTP, SFTP, WebDAV, S3-compatible storage, OpenStack Swift, and other cloud-storage backends.

Project history

Cyberduck began as a macOS file-transfer application and its official changelog reaches back to early 2000s releases. The current source repository describes Cyberduck as a libre file transfer client for macOS and Windows, with a command-line interface for Linux, macOS, and Windows.

The duck CLI packages the Cyberduck transfer engine for terminal users. Its homepage presents it as Cyberduck for the command line and documents Homebrew, Chocolatey, RPM, and DEB installation paths.

Adoption history

duck's adoption follows Cyberduck's protocol breadth rather than the popularity curve of a standalone Unix transfer tool. Users choose it when they want one command-line client that speaks the same storage profiles and cloud protocols as Cyberduck and Mountain Duck.

Packaging through Homebrew, Chocolatey, Debian/Ubuntu-style repositories, and RPM repositories made the CLI available to automation users who do not run the desktop application.

How it is used

The CLI is used for uploads, downloads, remote editing workflows, and copies between servers or cloud providers. It is especially relevant for scripted access to storage backends that otherwise require provider-specific CLIs.

Because the same upstream project also ships GUI Cyberduck and Mountain Duck components, duck sits at the command-line edge of a broader file-transfer product family.

Why package nerds care

duck is interesting because the package name is short and generic while the project identity is really Cyberduck CLI. Package databases should preserve that relationship so users do not confuse it with unrelated projects named duck.

It also demonstrates a common packaging pattern: a GUI application exposes a CLI package with a different formula name, while sharing source code and protocol implementations with the main application.

Timeline

  • 2003: Cyberduck 2.1 appears in the official changelog.
  • 2015: duck.sh copyright history starts, matching the CLI's public packaging era.
  • 2020s: Cyberduck continues shipping desktop releases while duck remains the CLI package for Linux, macOS, and Windows.
  • 2026: Cyberduck 9.5.0 appears in the official changelog.

Related projects

  • Cyberduck is the parent project and desktop client; Mountain Duck is a related mount-to-desktop product from the same ecosystem.
  • duck overlaps in use with rclone, lftp, sftp, aws-cli, and provider-specific cloud storage CLIs, but its protocol coverage comes from the Cyberduck stack.

security posture

Risk level: green

narrow executable package without higher-risk signals.

Risk classifier

green risk · low confidence · appliance

Why

  • narrow executable package without higher-risk signals

Signals

  • metadata:no-higher-risk-signals

Install behavior

  • No Homebrew post-install hook is recorded in formula metadata.
  • Homebrew bottle metadata is available for 6 platform targets.
  • Installs with 1 runtime dependencies.
  • Build metadata lists 3 build dependencies.

Recommended review

Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.

executables

Installed executables

CommandKindExposureNote
duckcliglobal executable

freshness

Version and freshness

These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.

page generated2026-07-08
manager version9.5.2.45323
manager updated2026-07-02
local dataok
upstreamnot checked
latest detectednot detected

https://duck.sh/

  • infoRelease/tag comparison is only available for GitHub repositories.https://duck.sh/none confidence

install metadata

Package metadata

Package keybrew:duck
Version9.5.2.45323
Package managerHomebrew
Package manager pagehttps://formulae.brew.sh/formula/duck
Homepagehttps://duck.sh/
Repositoryhttps://github.com/iterate-ch/cyberduck
Upstream docshttps://docs.duck.sh/cli
LicenseGPL-3.0-only
Source archivehttps://dist.duck.sh/duck-src-9.5.2.45323.tar.gz
Last updated2026-07-02T13:39:51Z
Pulseupdated
Dependenciesopenjdk
Build dependenciesant, maven, pkgconf
Uses from macOSlibffi
Bottleavailable (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux)
Homebrew post-installnot defined
Servicenone declared

registry facts

Source database details

Source DatabaseHomebrew formula API
Taphomebrew/core
Full Nameduck
Version Scheme0
Revision0
Head VersionHEAD
Conflicts With
  • duckscript
Requirements
  • xcode
Bottle Stable Root URLhttps://ghcr.io/v2/homebrew/core
Deprecatedno
Disabledno
Keg Onlyno
URL Keys
  • head
  • stable

source database matches

Other package-manager records

Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.

Debian apt95%

duck 0.14.4

checks URLs in debian/control and debian/upstream files

https://salsa.debian.org/debian/duck

sudo apt install duck
  • Section: devel
  • Architecture: all
  • 20 dependencies
  • 4 optional deps
  • normalized package name match
  • Matched by: Duck
Debian stable package indexes · deb.debian.org · Debian stable package indexes: duck from https://deb.debian.org/debian/dists/stable/main/binary-amd64/Packages.xz
Ubuntu apt95%

duck 0.14.2

checks URLs in debian/control and debian/upstream files

https://salsa.debian.org/debian/duck

sudo apt install duck
  • Section: universe/devel
  • Architecture: all
  • 20 dependencies
  • 4 optional deps
  • normalized package name match
  • Matched by: Duck
Ubuntu 24.04 LTS package indexes · archive.ubuntu.com · Ubuntu 24.04 LTS package indexes: duck from https://archive.ubuntu.com/ubuntu/dists/noble/universe/binary-amd64/Packages.gz
MacPorts95%

duck

sudo port install duck
  • normalized package name match
  • Matched by: Duck
MacPorts ports tree · api.github.com · MacPorts ports tree: net/duck/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1
Chocolatey95%

duck

choco install duck
  • normalized package name match
  • Matched by: Duck
Chocolatey community package catalog · community.chocolatey.org · Chocolatey community package catalog: duck from http://community.chocolatey.org/api/v2/Packages?$filter=IsLatestVersion&$select=Id&$top=1000&$skiptoken='11','dotultimate'

source trail

Generated from repository data

This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.

Used sources

  • Geiger risk classifier
  • Nucleus package database
  • av.db category and tag curation
  • cross-ecosystem install command graph
  • curated package history
  • external package-manager database matches
  • package relationship graph
  • package version freshness
  • package-page enrichment