macOS
brew install gitleakslocal Homebrew formula metadata
sudo port install gitleaksMacPorts ports tree · security/gitleaks/Portfile · source: api.github.com
brew
Audit git repos for secrets. Version 8.30.1 via Homebrew; verified from local package data.
install
brew install gitleakslocal Homebrew formula metadata
sudo port install gitleaksMacPorts ports tree · security/gitleaks/Portfile · source: api.github.com
sudo apk add gitleaksAlpine Linux edge package indexes · gitleaks · source: dl-cdn.alpinelinux.org
sudo apt install gitleaksDebian stable package indexes · gitleaks · source: deb.debian.org
sudo dnf install gitleaksFedora Rawhide package metadata · gitleaks · source: dl.fedoraproject.org
nix profile install nixpkgs#gitleaksnixpkgs package indexes · pkgs/by-name/gi/gitleaks/package.nix · source: api.github.com
sudo pacman -S gitleaksArch Linux sync databases · gitleaks · source: geo.mirror.pkgbuild.com
sudo zypper install gitleaksopenSUSE Tumbleweed package metadata · gitleaks · source: download.opensuse.org
choco install gitleaksChocolatey community package catalog · gitleaks · source: community.chocolatey.org
scoop install main/gitleaksScoop official bucket manifest trees · bucket/gitleaks.json · source: api.github.com
winget install --id Gitleaks.Gitleaks -eWindows Package Manager source index · Gitleaks.Gitleaks · source: cdn.winget.microsoft.com
overview
Audit git repos for secrets
history
Gitleaks is an open-source secret scanner for Git repositories, files, directories, and standard input. It is best known as a fast CLI that can run locally, in pre-commit hooks, in containers, or in CI before leaked credentials reach shared history.
The GitHub repository was created in January 2018 and grew around a rule-based scanner for passwords, API keys, and tokens. The project is written in Go and ships a default TOML configuration containing detection rules and allowlists.
The v8 command model consolidated scanning around git, dir, and stdin modes, while older detect and protect commands were hidden for compatibility. The README later described the project as feature complete, with security patches as the maintenance focus and Betterleaks named as the author's new direction.
Gitleaks gained strong adoption in the DevSecOps ecosystem because it fits several control points: developer workstations, pre-commit hooks, pull-request checks, scheduled repository scans, and containerized CI jobs. The project homepage cites large Docker, GitHub release, and Homebrew usage figures, and the GitHub repository has a large star and fork count.
The official Gitleaks GitHub Action widened adoption by giving teams a hosted-CI path for scanning pull requests and commits without writing their own wrapper around the CLI.
Practitioners use gitleaks git to scan repository history, gitleaks dir to scan working trees or exported source, and gitleaks stdin for pipeline streams. Baseline reports let teams suppress already-known findings while failing builds for newly introduced secrets.
Teams customize .gitleaks.toml when they need organization-specific rules, allowlists, report formats, or redaction behavior. In package-manager workflows, the single binary makes it easy to add secret scanning to local development and CI images without a language runtime.
Gitleaks is a package-manager favorite because it is a Go security utility with broad platform binaries, Docker images, a pre-commit hook, and an official action. That combination makes it easy to pin in reproducible developer environments and CI toolchains.
security posture
narrow executable package without higher-risk signals.
green risk · low confidence · appliance
Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.
local files
These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.
Config paths the tool may read or write during local use.
(target path)/.gitleaks.tomlexecutables
| Command | Kind | Exposure | Note |
|---|---|---|---|
gitleaks | cli | global executable |
freshness
These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.
https://github.com/gitleaks/gitleaks
install metadata
| Package key | brew:gitleaks |
|---|---|
| Version | 8.30.1 |
| Package manager | Homebrew |
| Package manager page | https://formulae.brew.sh/formula/gitleaks |
| Homepage | https://gitleaks.io/ |
| Repository | https://github.com/gitleaks/gitleaks |
| Upstream docs | https://github.com/gitleaks/gitleaks#readme |
| License | MIT |
| Source archive | https://github.com/gitleaks/gitleaks/archive/refs/tags/v8.30.1.tar.gz |
| Build dependencies | go |
| Bottle | available (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | not defined |
| Service | none declared |
registry facts
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | gitleaks |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
source database matches
Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.
gitleaks 8.16.0-1+b12
protect and discover secrets using Gitleaks 🔑
https://github.com/gitleaks/gitleaks
sudo apt install gitleaksgitleaks
nix profile install nixpkgs#gitleaksgitleaks 8.16.0-1build1
protect and discover secrets using Gitleaks 🔑
https://github.com/gitleaks/gitleaks
sudo apt install gitleaksgitleaks 8.30.1-r0
Audit Git repos for secrets and keys
https://github.com/gitleaks/gitleaks
sudo apk add gitleaksgitleaks-bash-completion 8.30.1-r0
Bash completions for gitleaks
https://github.com/gitleaks/gitleaks
sudo apk add gitleaks-bash-completiongitleaks-doc 8.30.1-r0
Audit Git repos for secrets and keys (documentation)
https://github.com/gitleaks/gitleaks
sudo apk add gitleaks-docgitleaks-fish-completion 8.30.1-r0
Fish completions for gitleaks
https://github.com/gitleaks/gitleaks
sudo apk add gitleaks-fish-completiongitleaks-zsh-completion 8.30.1-r0
Zsh completions for gitleaks
https://github.com/gitleaks/gitleaks
sudo apk add gitleaks-zsh-completiongitleaks 8.30.1-1.fc45
Scan git repos (or files) for secrets using regex and entropy
https://github.com/zricethezav/gitleaks
sudo dnf install gitleaksgitleaks 8.30.1-1
Audit Git repos for secrets and keys
https://github.com/gitleaks/gitleaks
sudo pacman -S gitleaksgitleaks 8.30.1-1.1
Protect and discover secrets using Gitleaks
https://github.com/gitleaks/gitleaks
sudo zypper install gitleaksgitleaks-bash-completion 8.30.1-1.1
Bash Completion for gitleaks
https://github.com/gitleaks/gitleaks
sudo zypper install gitleaks-bash-completiongitleaks-fish-completion 8.30.1-1.1
Fish Completion for gitleaks
https://github.com/gitleaks/gitleaks
sudo zypper install gitleaks-fish-completiongitleaks-zsh-completion 8.30.1-1.1
Zsh Completion for gitleaks
https://github.com/gitleaks/gitleaks
sudo zypper install gitleaks-zsh-completiongitleaks
sudo port install gitleaksgitleaks
choco install gitleakssource trail
This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.