# Install notation with Homebrew, Nix, winget

CLI tool to sign and verify OCI artifacts and container images. Version 1.3.2 via Homebrew; verified from local package data.

## Install

```sh
sudo av install brew:notation
```

Additional install commands:

### macOS

- Homebrew (100%):

```sh
brew install notation
```

  Evidence: local Homebrew formula metadata

### Linux

- Nix (92%):

```sh
nix profile install nixpkgs#notation
```

  Evidence: nixpkgs package indexes: pkgs/by-name/no/notation/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1

### Windows

- winget (92%):

```sh
winget install --id NotaryProject.Notation -e
```

  Evidence: Windows Package Manager source index: NotaryProject.Notation from https://cdn.winget.microsoft.com/cache/source.msix

## Package facts

- **Package key:** brew:notation
- **Package manager:** Homebrew
- **Package manager page:** <https://formulae.brew.sh/formula/notation>
- **Version:** 1.3.2
- **Source summary:** CLI tool to sign and verify OCI artifacts and container images
- **Homepage:** <https://notaryproject.dev/>
- **Repository:** <https://github.com/notaryproject/notation>
- **Upstream docs:** <https://github.com/notaryproject/notation#readme>
- **License:** Apache-2.0
- **Source archive:** <https://github.com/notaryproject/notation/archive/refs/tags/v1.3.2.tar.gz>
- **Generated:** 2026-07-08T07:18:31+00:00

## Executables

- notation (cli)
- notation (alias)

## Build dependencies

- go

## Install behavior

- Post-install hook: not defined
- Bottle: available on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux

## Freshness

- Page generated: 2026-07-08
- Package-manager version: 1.3.2
- Local data: ok
- Upstream repository: https://github.com/notaryproject/notation
- Upstream latest detected: v1.3.2 (current)
- info: No package-manager update timestamp was available.
## Project history and usage

Notation is the Notary Project command-line implementation for signing and verifying OCI artifacts and container images. Its role is narrower than a general packaging or registry client: it exists to put signatures into the OCI registry ecosystem and to enforce trust policy when artifacts are pulled or promoted.

### Project history

The public tag history for notaryproject/notation starts with v0.7.0-alpha.1 on 2021-10-20, followed by a long alpha and release-candidate line before the first stable v1.0.0 release on 2023-08-15. The v1.0.0 release notes describe it as the CLI reference implementation of the Notary Project Specifications v1.0.0 and call out signing, verification, signature inspection, registry authentication through Docker credential stores, plugin support, trust policy, trust stores, and certificate revocation support.

The project sits inside the broader Notary Project, which is a CNCF Incubating project. That matters for adoption because Notation is not just a standalone CLI: it is tied to a standards-oriented supply-chain security effort around OCI registries and signatures.

### Adoption history

Adoption is strongest in container supply-chain security workflows rather than general developer CLI usage. The README points users at quickstarts for signing and validating container images and at cloud-provider integrations such as Azure Key Vault and AWS Signer. Homebrew analytics are modest, with 256 installs over the 365-day window reported by the formula JSON, which fits a specialized security tool rather than a broad daily shell utility.

### How it is used

Package nerds use notation where signatures need to be attached to images or other OCI artifacts and then verified by policy. The practical loop is: authenticate to a registry, sign an artifact, inspect or list signatures, configure trust stores and trust policy, and verify before promotion or deployment. Plugin support is important because signing keys often live in KMS systems rather than local files.

### Why package nerds care

Notation is significant because it is one of the concrete tools package and registry people reach for when discussing OCI-native signatures. Its value is less about command-line ergonomics and more about being the executable face of the Notary Project specifications.

### Timeline

- 2021-10-20: v0.7.0-alpha.1 tag in the public repository.
- 2023-08-15: v1.0.0 release announced as the first stable Notation CLI V1 release.
- 2025-04-24: v1.3.2 tag, the stable version packaged by Homebrew in the checked formula metadata.
- 2025-03-12: v2.0.0-alpha.1 tag appeared, showing active work beyond the 1.x line.

### Related projects

- Notary Project specifications, OCI image/distribution specifications, ORAS, Docker credential stores, Azure Key Vault, AWS Signer.

### Sources

- <https://formulae.brew.sh/api/formula/notation.json>
- <https://github.com/notaryproject/notation>
- <https://github.com/notaryproject/notation/releases/tag/v1.0.0>
- <https://notaryproject.dev/docs/quickstart-guides/quickstart-sign-image-artifact/>
- <https://www.cncf.io/projects/notary/>


## Security Notes

broad file, network, media, or database tool signal. infrastructure mutation or orchestration signal.

- **Geiger risk:** orange / medium
- broad file, network, media, or database tool signal
- infrastructure mutation or orchestration signal


## Configuration and credential file locations

These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.


## Configuration files

- Linux: ~/.config/notation/config.json
- macOS: ~/Library/Application Support/notation/config.json
- Windows: ~/AppData/Roaming/notation/config.json

## Credential files

- Linux: ~/.config/notation/config.json, ~/.config/notation/signingkeys.json, ~/.docker/config.json
- macOS: ~/Library/Application Support/notation/config.json, ~/Library/Application Support/notation/signingkeys.json, ~/.docker/config.json
- Windows: ~/AppData/Roaming/notation/config.json, ~/AppData/Roaming/notation/signingkeys.json
## Source Database Details

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** notation
- **Version Scheme:** 0
- **Revision:** 0
- **Head Version:** HEAD
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** head, stable

## Other Package-Manager Records

- Nix - notation: normalized package name match | nixpkgs package indexes: pkgs/by-name/no/notation/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1
- winget - NotaryProject.Notation: normalized package name match | Windows Package Manager source index: NotaryProject.Notation from https://cdn.winget.microsoft.com/cache/source.msix


## Related links

- [Cloud CLI packages](https://www.automicvault.com/pkg/cloud-clis/) - Belongs to a cloud or infrastructure command family.
- [Secret-risk packages](https://www.automicvault.com/pkg/secret-risk-packages/) - Has protected-tool coverage, approval-gate, or non-low Geiger security signals.
- [Terminal utility packages](https://www.automicvault.com/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Networking and protocol packages](https://www.automicvault.com/pkg/networking-protocol-tools/) - Matched network, protocol, or remote-service metadata.
- [go](https://www.automicvault.com/pkg/brew/go/) - Build dependency declared by Homebrew.
- [cosign](https://www.automicvault.com/pkg/brew/cosign/) - Shares av.db curated category or tags: cli, security, software-supply-chain, supply-chain-security.
- [gitsign](https://www.automicvault.com/pkg/brew/gitsign/) - Shares av.db curated category or tags: cli, security, signing, software-supply-chain, supply-chain-security.
- [gittuf](https://www.automicvault.com/pkg/brew/gittuf/) - Shares av.db curated category or tags: cli, security, software-supply-chain, supply-chain-security.
- [poutine](https://www.automicvault.com/pkg/brew/poutine/) - Shares av.db curated category or tags: cli, security, software-supply-chain, supply-chain-security.
- [rekor-cli](https://www.automicvault.com/pkg/brew/rekor-cli/) - Shares av.db curated category or tags: cli, security, software-supply-chain, supply-chain-security.
- [safety](https://www.automicvault.com/pkg/brew/safety/) - Shares av.db curated category or tags: cli, security, software-supply-chain, supply-chain-security.
- [sigstore](https://www.automicvault.com/pkg/brew/sigstore/) - Shares av.db curated category or tags: cli, security, software-supply-chain, supply-chain-security.
- [bom](https://www.automicvault.com/pkg/brew/bom/) - Shares av.db curated category or tags: cli, security, software-supply-chain.
- [cdxgen](https://www.automicvault.com/pkg/brew/cdxgen/) - Security-sensitive metadata or terminology overlaps. Shared terms: chain, cli, security, sign, software-supply-chain.

## Combined YAML source

View the package source record on GitHub. [combined/notation.yml](https://github.com/automic-vault/db/blob/main/combined/notation.yml)


## Sources

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- curated configuration and credential file locations
- curated package history
- package version freshness
- av.db category and tag curation
- package relationship graph
- external package-manager database matches
- cross-ecosystem install command graph
