macOS
brew install git-houndlocal Homebrew formula metadata
brew
Git plugin that prevents sensitive data from being committed. Version 1.0.0 via Homebrew; verified from local package data.
install
brew install git-houndlocal Homebrew formula metadata
nix profile install nixpkgs#git-houndnixpkgs package indexes · pkgs/by-name/gi/git-hound/package.nix · source: api.github.com
overview
Git plugin that prevents sensitive data from being committed
history
git-hound is a Git plugin for preventing sensitive data from entering commits. It checks staged diffs against user-provided PCRE regular expressions before commit operations proceed.
The repository was created in November 2015 as a Go command-line plugin. Its README presents Hound as a small Git extension with precompiled release binaries, Go installation, and Homebrew installation paths.
git-hound fits the mid-2010s rise of local secret-scanning tools, when teams began adding pre-commit checks for passwords, database settings, tokens, and machine-specific paths. Its adoption stayed niche compared with larger scanners, but the repository attracted several hundred stars and was packaged for Homebrew and Nix.
Practitioners run `git hound commit` to sniff staged changes before invoking `git commit`, or `git hound sniff` to scan a commit, a manual diff, a whole codebase, or repository history. The `.githound.yml` file separates warning patterns, failure patterns, and skipped filenames.
The package is interesting because it exposes Git's plugin naming convention: installing `git-hound` makes `git hound` available. It is also a compact example of pre-commit security tooling before secret scanning became a standard hosted-platform feature.
security posture
narrow executable package without higher-risk signals.
green risk · low confidence · appliance
Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.
local files
These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.
Config paths the tool may read or write during local use.
.githound.ymlexecutables
| Command | Kind | Exposure | Note |
|---|---|---|---|
git-hound | cli | global executable |
freshness
These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.
https://github.com/ezekg/git-hound
install metadata
| Package key | brew:git-hound |
|---|---|
| Version | 1.0.0 |
| Package manager | Homebrew |
| Package manager page | https://formulae.brew.sh/formula/git-hound |
| Homepage | https://github.com/ezekg/git-hound |
| Repository | https://github.com/ezekg/git-hound |
| Upstream docs | https://github.com/ezekg/git-hound#readme |
| License | MIT |
| Source archive | https://github.com/ezekg/git-hound/archive/refs/tags/1.0.0.tar.gz |
| Build dependencies | go |
| Bottle | available (on arm64_big_sur, arm64_linux, arm64_monterey, arm64_sequoia, arm64_sonoma, arm64_tahoe, arm64_ventura, big_sur, catalina, monterey, sonoma, ventura, x86_64_linux) |
| Homebrew post-install | not defined |
| Service | none declared |
registry facts
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | git-hound |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
source database matches
Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.
git-hound
nix profile install nixpkgs#git-houndsource trail
This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.