macOS
brew install jwt-clilocal Homebrew formula metadata
sudo port install jwt-cliMacPorts ports tree · devel/jwt-cli/Portfile · source: api.github.com
brew
Super fast CLI tool to decode and encode JWTs built in Rust. Version 6.2.0 via Homebrew; verified from local package data.
install
brew install jwt-clilocal Homebrew formula metadata
sudo port install jwt-cliMacPorts ports tree · devel/jwt-cli/Portfile · source: api.github.com
sudo apk add jwt-cliAlpine Linux edge package indexes · jwt-cli · source: dl-cdn.alpinelinux.org
nix profile install nixpkgs#jwt-clinixpkgs package indexes · pkgs/by-name/jw/jwt-cli/package.nix · source: api.github.com
sudo pacman -S jwt-cliArch Linux sync databases · jwt-cli · source: geo.mirror.pkgbuild.com
sudo apt install jwtDebian stable package indexes · jwt · source: deb.debian.org
scoop install main/jwt-cliScoop official bucket manifest trees · bucket/jwt-cli.json · source: api.github.com
overview
Super fast CLI tool to decode and encode JWTs built in Rust
history
jwt-cli is a Rust command-line utility for decoding, verifying, and encoding JSON Web Tokens. It became a common package-manager answer to the everyday developer need to inspect opaque bearer tokens from a shell pipeline.
Mike Engel released jwt-cli publicly in March 2017, with GitHub release metadata showing 0.1.0 as an initial prerelease on March 6, 2017. The README frames the tool around two goals: decoding JWT headers and claims like other JWT CLIs, and encoding new JWTs with flexible headers, claims, and secrets.
The project evolved with the Rust JWT ecosystem. Its changelog records a move to the `jsonwebtoken` crate in 0.3.0, JSON output in 2.1.0, stdin support in 2.4.0, ECDSA support in 2.5.0, PEM support through `jsonwebtoken` 7 in 3.0.0, stricter expiration handling and file secrets in 5.0.0, EdDSA and output-file support in 6.0.0, and JWKS support in 6.1.0.
The tool spread through several package ecosystems because JWT inspection is a cross-platform developer workflow. The README documents installation through Homebrew, MacPorts, Cargo, FreeBSD ports, Scoop, and Arch Linux, and the Homebrew formula also records package-manager distribution under the `jwt-cli` formula.
jwt-cli is used in two main ways: as an interactive command such as `jwt decode TOKEN`, and as a pipeline component, for example extracting an access token with `curl` and `jq` and piping it into `jwt decode -`. Encoding support lets developers create test tokens without reaching for a web UI.
Its significance is package-manager convenience: JWTs are everywhere in web auth, and a small static-ish Rust CLI with shell completion, stdin behavior, and broad OS packaging is exactly the kind of utility users expect to install with one command.
security posture
narrow executable package without higher-risk signals.
green risk · low confidence · appliance
Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.
executables
| Command | Kind | Exposure | Note |
|---|---|---|---|
jwt | cli | global executable |
freshness
These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.
https://github.com/mike-engel/jwt-cli
install metadata
| Package key | brew:jwt-cli |
|---|---|
| Version | 6.2.0 |
| Package manager | Homebrew |
| Package manager page | https://formulae.brew.sh/formula/jwt-cli |
| Homepage | https://github.com/mike-engel/jwt-cli |
| Repository | https://github.com/mike-engel/jwt-cli |
| Upstream docs | https://github.com/mike-engel/jwt-cli |
| License | MIT |
| Source archive | https://github.com/mike-engel/jwt-cli/archive/refs/tags/6.2.0.tar.gz |
| Build dependencies | rust |
| Bottle | available (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, arm64_ventura, sonoma, ventura, x86_64_linux) |
| Homebrew post-install | not defined |
| Service | none declared |
registry facts
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | jwt-cli |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
source database matches
Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.
jwt-cli
nix profile install nixpkgs#jwt-clijwt-cli 6.2.0-r0
Super fast CLI tool to decode and encode JWTs
https://github.com/mike-engel/jwt-cli
sudo apk add jwt-clijwt-cli 6.2.0-1
A super fast CLI tool to decode and encode JWTs
https://github.com/mike-engel/jwt-cli
sudo pacman -S jwt-clijwt-cli
sudo port install jwt-climain/jwt-cli
scoop install main/jwt-clijwt 5.0.0+really4.5.2-1+b2
golang implementation of JSON Web Tokens (command line)
https://github.com/golang-jwt/jwt
sudo apt install jwtjwt 5.0.0+really4.5.0-1
golang implementation of JSON Web Tokens (command line)
https://github.com/golang-jwt/jwt
sudo apt install jwtsource trail
This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.