Automic VaultAutomic Vault

brew

Install yamale with Homebrew, apt, Nix

Schema and validator for YAML. Version 6.1.0 via Homebrew; verified from local package data.

install

Additional install commands

macOS

Homebrewverified · 100%
brew install yamale

local Homebrew formula metadata

overview

Package summary

Schema and validator for YAML

Commands and aliases

  • yamale

history

Project history and usage

Yamale is a Python library and command-line tool for validating YAML files with schemas written in Yamale's own YAML-based schema language. It fills the small but common gap between loose YAML configuration files and heavyweight JSON Schema workflows.

Project history

23andMe published the Yamale repository in January 2014. The README describes it simply as a schema and validator for YAML, with both CLI and Python API entry points. Its schema format keeps schemas as YAML documents whose leaves are validator expressions such as `str()`, `int()`, includes, recursion, strict-mode controls, and custom validators.

The PyPI history shows public releases beginning in June 2014 and continued maintenance into the 6.x series. Over time the README added Python 3-only requirements, optional ruamel.yaml parsing for YAML 1.2 support, multiprocessing CLI validation, strict-mode controls, and a warning that schemas should come from trusted sources because the schema language is executable enough to be treated as a trust boundary.

Adoption history

Yamale adoption is mostly practical: teams with YAML configuration, data files, or repository conventions can add a schema file and run a CLI check in tests or continuous integration. It is attractive when a project wants a readable schema next to YAML data without converting the validation problem to JSON Schema.

How it is used

From the command line, Yamale searches a target path for YAML files and looks nearby or upward for a schema file unless one is specified. From Python, callers build schema and data objects with `yamale.make_schema` and `yamale.make_data`, then call `yamale.validate` and handle validation errors.

Yamale is best suited to project-owned schemas: configuration contracts, fixtures, data drops, and repository policy checks. Its own README cautions against accepting malicious schema definitions from untrusted sources.

Why package nerds care

For package nerds, Yamale is a tidy example of a domain-specific validator that stayed deliberately smaller than JSON Schema. It shows up as both a CLI package and a Python import, useful for making YAML-heavy projects less ambiguous without buying into a larger schema ecosystem.

Timeline

  • 2014-01: The public GitHub repository was created under 23andMe.
  • 2014-06: PyPI records the earliest available Yamale release uploads.
  • 2020s: The README documents Python 3.8+, optional ruamel.yaml parsing, CLI multiprocessing, includes, recursion, and strict-mode behavior.
  • 2025: PyPI records the 6.x release line.

Related projects

  • Yamale sits near JSON Schema validators, PyKwalify, Cerberus-style Python validators, and YAML linters, but it keeps its own compact schema expression syntax rather than adopting JSON Schema as the schema language.

security posture

Risk level: green

narrow executable package without higher-risk signals.

Risk classifier

green risk · low confidence · appliance

Why

  • narrow executable package without higher-risk signals

Signals

  • metadata:no-higher-risk-signals

Install behavior

  • No Homebrew post-install hook is recorded in formula metadata.
  • Homebrew bottle metadata is available for 6 platform targets.
  • Installs with 2 runtime dependencies.

Recommended review

Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.

executables

Installed executables

CommandKindExposureNote
yamalecliglobal executable

freshness

Version and freshness

These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.

page generated2026-07-08
manager version6.1.0
manager updated
local dataok
upstreamnot checked
latest detectednot detected

https://github.com/23andMe/Yamale

  • infoNo package-manager update timestamp was available.low confidence
  • infoNo cached GitHub release or tag data was available.https://github.com/23andMe/Yamalenone confidence

install metadata

Package metadata

Package keybrew:yamale
Version6.1.0
Package managerHomebrew
Package manager pagehttps://formulae.brew.sh/formula/yamale
Homepagehttps://github.com/23andMe/Yamale
Repositoryhttps://github.com/23andMe/Yamale
Upstream docshttps://github.com/23andMe/Yamale#readme
LicenseMIT
Source archivehttps://files.pythonhosted.org/packages/da/64/9e5de0e829920b848dcf5fe3ff64936d83cc7471babd264588b08bca97e0/yamale-6.1.0.tar.gz
Dependencieslibyaml, python@3.14
Bottleavailable (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux)
Homebrew post-installnot defined
Servicenone declared

registry facts

Source database details

Source DatabaseHomebrew formula API
Taphomebrew/core
Full Nameyamale
Version Scheme0
Revision0
Head VersionHEAD
Bottle Stable Root URLhttps://ghcr.io/v2/homebrew/core
Deprecatedno
Disabledno
Keg Onlyno
URL Keys
  • head
  • stable

source database matches

Other package-manager records

Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.

Debian apt95%

python3-yamale 6.0.0.1-1

schema and validator for YAML

https://github.com/23andMe/Yamale

sudo apt install python3-yamale
  • Section: python
  • Architecture: all
  • Source Package: yamale
  • 3 dependencies
  • normalized package name match
  • Matched by: Yamale
Debian stable package indexes · deb.debian.org · Debian stable package indexes: python3-yamale from https://deb.debian.org/debian/dists/stable/main/binary-amd64/Packages.xz
Nix95%

yamale

nix profile install nixpkgs#yamale
  • normalized package name match
  • Matched by: Yamale
nixpkgs package indexes · raw.githubusercontent.com · nixpkgs package indexes: yamale from https://raw.githubusercontent.com/NixOS/nixpkgs/master/pkgs/top-level/all-packages.nix

source trail

Generated from repository data

This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.

Used sources

  • Geiger risk classifier
  • Nucleus package database
  • av.db category and tag curation
  • cross-ecosystem install command graph
  • curated package history
  • external package-manager database matches
  • package relationship graph
  • package version freshness
  • package-page enrichment