Homepage
Not present in the local metadata.
brew package intelligence
heroku/brew/heroku
Automic Vault tracks heroku/brew/heroku because plain text heroku api token matters when AI agents run command-line tools on macOS.
overview
What Automic Vault knows about heroku/brew/heroku
This package is present in local Automic Vault package data. The page is generated so package-specific security metadata has a stable URL.
Commands and aliases
No executable aliases were found in the local package database.
radioisotope
Plain Text Heroku API Token
The Heroku CLI stores login tokens in .netrc entries for api.heroku.com and git.heroku.com, and accepts HEROKU_API_KEY as an environment override. Our isotope stores the token in the macOS keychain and injects it while `heroku` runs.
Local README excerpt
Heroku CLI Radioisotope
The Heroku CLI stores login tokens in .netrc entries for api.heroku.com and git.heroku.com. The radioisotope moves the token into the macOS keychain as HEROKU_API_KEY and injects it while heroku runs.
Caveats
- Only the default
.netrcpath and explicitNETRCpath are migrated. - The migration expects the API and Git Heroku entries to use the same token.
heroku auth:loginand account switching can write new.netrcstate; those
changes are not persisted back to the keychain by the wrapper.
- Direct execution of the original binary will not receive credentials.
Source: data/radioisotopes/heroku/README.md
Coverage source
https://github.com/heroku/homebrew-brew/blob/HEAD/Formula/heroku.rb
Caveats
- Only the default .netrc path and explicit NETRC path are migrated.
- API and Git Heroku entries must use the same token.
- Login/account switching commands can write new .netrc state that is not persisted to keychain.
- Direct execution of the original binary will not receive credentials.
install metadata
Resolver facts
| Package key | brew:heroku/brew/heroku |
|---|
source trail
Generated from repository data
This page is regenerated by scripts/generate-pkg-pages.py. Deployments refuse to publish if www/pkg/ is stale relative to local package data.
Used sources
- local isotope README
- radioisotope security manifest