Automic VaultAutomic Vault

brew

Install yeet with Homebrew

Packaging tool that lets you declare build instructions in JavaScript. Version 0.11.0 via Homebrew; verified from local package data.

install

Additional install commands

macOS

Homebrewverified · 100%
brew install yeet

local Homebrew formula metadata

overview

Package summary

Packaging tool that lets you declare build instructions in JavaScript

Commands and aliases

  • yeet

history

Project history and usage

yeet is a Go-based packaging/build helper that runs small JavaScript `yeetfile.js` recipes. It targets the gap between shell scripts and full custom programs, with helpers for native packages, container operations, Git metadata, file installation, and language-specific build steps.

Project history

The TecharoHQ/yeet repository was created on 2025-03-28. Its README presents the project as a way to declare build instructions as small JavaScript snippets, with a first-class `yeetfile.js` example that builds a Go program into an RPM.

The API documentation explains a deliberate design boundary: yeet executes JavaScript with goja, does not provide npm access, and does not allow importing code or data from other files. Reusable functionality is expected to become a native yeet interface instead of a local JavaScript dependency tree.

The tool evolved around practical packaging helpers: `deb`, `rpm`, and `tarball`-style native package builders, systemd extension and portable-service images, Docker aliases, Git helpers, file helpers, Go build helpers, and package upload integrations.

Adoption history

Yeet is a young, niche tool, so adoption evidence is necessarily light. Its README links a Repology packaging-status badge, pkg.go.dev indexes the Go module, Homebrew packages the command, and Techaro discussions mention using yeet while testing Techaro apt/rpm repository definitions.

Its likely adopters are maintainers of Go or mixed-language projects who want packaging recipes to stay close to source without writing full RPM spec/deb-helper machinery by hand for every simple artifact.

How it is used

A project adds a `yeetfile.js` and calls helpers such as `rpm.build` or `deb.build` with descriptor objects. The build callback can invoke shell commands with the `$` tagged-template helper and place compiled output in the package layout paths supplied by yeet.

The API docs also show uses beyond simple packages: building systemd configuration extensions, system extensions, portable service images, Docker images, copying files while preserving modes, reading Git tags, and uploading binary packages to Gitea-backed repositories.

Why package nerds care

Yeet is package-nerd significant because it is packaging tooling about package production itself. It tries to make native artifacts scriptable while avoiding the full dependency sprawl of a JavaScript toolchain.

Its no-import/no-npm rule is also notable: for packaging, fewer moving parts can be a feature. The project bakes common packaging operations into Go-backed helpers and leaves the recipe file as a compact declaration of what to build.

Timeline

  • 2025-03-28: The TecharoHQ/yeet repository is created.
  • 2025: The README documents `yeetfile.js` recipes and native package examples.
  • 2025: The API documentation covers helpers for Debian packages, RPM packages, tarballs, Docker, Git, files, Go builds, Gitea uploads, and systemd image formats.
  • 2025-05-26: A Techaro Anubis discussion references a proof-of-concept apt/rpm repository for testing packages including yeet.

Related projects

  • Related projects and technologies include goja, RPM packaging, Debian packaging, systemd portable services, systemd system extensions, Docker, Gitea package registries, Go build tooling, npm scripts, Make, goreleaser, nfpm, and project-local build recipes.

security posture

Risk level: green

narrow executable package without higher-risk signals.

Risk classifier

green risk · low confidence · appliance

Why

  • narrow executable package without higher-risk signals

Signals

  • metadata:no-higher-risk-signals

Install behavior

  • No Homebrew post-install hook is recorded in formula metadata.
  • Homebrew bottle metadata is available for 6 platform targets.
  • Build metadata lists 1 build dependencies.

Recommended review

Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.

local files

Configuration and credential file locations

These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.

Configuration files

Config paths the tool may read or write during local use.

Unix
yeetfile.js

executables

Installed executables

CommandKindExposureNote
yeetcliglobal executable

freshness

Version and freshness

These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.

page generated2026-07-08
manager version0.11.0
manager updated
local dataok
upstreamcurrent
latest detectedv0.11.0

https://github.com/TecharoHQ/yeet

  • infoNo package-manager update timestamp was available.low confidence

install metadata

Package metadata

Package keybrew:yeet
Version0.11.0
Package managerHomebrew
Package manager pagehttps://formulae.brew.sh/formula/yeet
Homepagehttps://github.com/TecharoHQ/yeet
Repositoryhttps://github.com/TecharoHQ/yeet
Upstream docshttps://github.com/TecharoHQ/yeet#readme
LicenseMIT
Source archivehttps://github.com/TecharoHQ/yeet/archive/refs/tags/v0.11.0.tar.gz
Build dependenciesgo
Bottleavailable (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux)
Homebrew post-installnot defined
Servicenone declared

registry facts

Source database details

Source DatabaseHomebrew formula API
Taphomebrew/core
Full Nameyeet
Version Scheme0
Revision0
Head VersionHEAD
Bottle Stable Root URLhttps://ghcr.io/v2/homebrew/core
Deprecatedno
Disabledno
Keg Onlyno
URL Keys
  • head
  • stable

source trail

Generated from repository data

This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.

Used sources

  • Geiger risk classifier
  • Nucleus package database
  • av.db category and tag curation
  • cross-ecosystem install command graph
  • curated configuration and credential file locations
  • curated package history
  • package relationship graph
  • package version freshness
  • package-page enrichment