Generated source
This hub is built from the same local package data as individual package pages: Nucleus package metadata, Homebrew enrichment, Geiger classifier output, radioisotope manifests, and approval-gate seeds where available.
publishing authority
Package publisher tools
Package publishing tools are sensitive because registry tokens can release new artifacts, overwrite distribution metadata, and turn a local AI-agent run into a supply-chain event.
GEO summary
Why this package group matters
Package publisher tools currently includes 84 generated package pages. 6 have radioisotope coverage, 3 have approval-gate metadata, and 11 have non-low Geiger classifier findings. The grouping is generated, not curated prose, so it can stay current as package metadata changes.
Review model
Use the hub to find command families that should receive tighter runtime secret injection, approval gates, or manual review before AI agents execute them.
packages
Indexed package pages
| Package | Manager | Signals | Why it appears here |
|---|---|---|---|
| node | Homebrew | radioisotope, approval gate, yellow risk, v26.0.0 | Plain Text Publishing Token |
| uv | Homebrew | radioisotope, approval gate, green risk, v0.11.16 | Plain Text Package Credentials |
| ruby | Homebrew | radioisotope, yellow risk, v4.0.5 | Plain Text RubyGems Credentials |
| rust | Homebrew | radioisotope, green risk, v1.95.0 | Plain Text Crates.io Token |
| twine | Homebrew | radioisotope, green risk, v6.2.0 | Plain Text Python Package Index Credentials |
| pnpm | Homebrew | radioisotope, orange risk, v11.2.2 | Plain Text npm Auth Token |
| go | Homebrew | approval gate, yellow risk, v1.26.3 | 7 approval-gate rules are present. |
| cargo-make | Homebrew | yellow risk, v0.37.24 | generalized runtime or code generation signal |
| poetry | Homebrew | green risk, v2.4.1 | no executable entrypoint in the package index |
| rustup | Homebrew | green risk, v1.29.0 | no executable entrypoint in the package index |
| cargo-binstall | Homebrew | green risk, v1.19.1 | narrow executable package without higher-risk signals |
| cargo-c | Homebrew | green risk, v0.10.22 | narrow executable package without higher-risk signals |
| cargo-nextest | Homebrew | green risk, v0.9.136 | no executable entrypoint in the package index |
| brew-gem | Homebrew | green risk, v1.3.3 | no executable entrypoint in the package index |
| npm-check-updates | Homebrew | green risk, v22.2.0 | no executable entrypoint in the package index |
| cargo-edit | Homebrew | green risk, v0.13.10 | narrow executable package without higher-risk signals |
| npq | Homebrew | green risk, v3.19.5 | no executable entrypoint in the package index |
| cargo-update | Homebrew | green risk, v20.0.0 | narrow executable package without higher-risk signals |
| cargo-sweep | Homebrew | green risk, v0.8.0 | narrow executable package without higher-risk signals |
| cargo-audit | Homebrew | green risk, v0.22.1 | narrow executable package without higher-risk signals |
| cargo-llvm-cov | Homebrew | green risk, v0.8.7 | no executable entrypoint in the package index |
| cargo-udeps | Homebrew | green risk, v0.1.61 | narrow executable package without higher-risk signals |
| cargo-bundle | Homebrew | green risk, v0.9.0 | narrow executable package without higher-risk signals |
| cargo-instruments | Homebrew | green risk, v0.4.16 | no executable entrypoint in the package index |
| cargo-deny | Homebrew | green risk, v0.19.7 | no executable entrypoint in the package index |
| cargo-zigbuild | Homebrew | green risk, v0.22.3 | narrow executable package without higher-risk signals |
| cargo-shear | Homebrew | green risk, v1.12.4 | no executable entrypoint in the package index |
| cargo-outdated | Homebrew | green risk, v0.19.0 | narrow executable package without higher-risk signals |
| nrm | Homebrew | green risk, v2.1.0 | narrow executable package without higher-risk signals |
| cargo-expand | Homebrew | green risk, v1.0.122 | no executable entrypoint in the package index |
| cargo-auditable | Homebrew | green risk, v0.7.5 | narrow executable package without higher-risk signals |
| semver | Homebrew | green risk, v7.8.1 | no executable entrypoint in the package index |
| cargo-generate | Homebrew | green risk, v0.23.10 | no executable entrypoint in the package index |
| cargo-release | Homebrew | green risk, v1.1.2 | narrow executable package without higher-risk signals |
| probe-rs-tools | Homebrew | green risk, v0.31.0 | narrow executable package without higher-risk signals |
| cargo-hack | Homebrew | green risk, v0.6.44 | narrow executable package without higher-risk signals |
| cargo-flamegraph | Homebrew | green risk, v0.6.12 | narrow executable package without higher-risk signals |
| cargo-about | Homebrew | green risk, v0.9.0 | narrow executable package without higher-risk signals |
| cargo-all-features | Homebrew | green risk, v1.12.0 | narrow executable package without higher-risk signals |
| cargo-geiger | Homebrew | green risk, v0.13.0 | narrow executable package without higher-risk signals |
| cargo-sort | Homebrew | green risk, v2.1.4 | narrow executable package without higher-risk signals |
| cargo-llvm-lines | Homebrew | green risk, v0.4.46 | no executable entrypoint in the package index |
| cargo-clone | Homebrew | green risk, v1.2.4 | narrow executable package without higher-risk signals |
| cargo-cache | Homebrew | green risk, v0.8.3 | narrow executable package without higher-risk signals |
| cargo-public-api | Homebrew | green risk, v0.51.0 | library-like package without higher-risk signals |
| cargo-chef | Homebrew | green risk, v0.1.77 | narrow executable package without higher-risk signals |
| cargo-spellcheck | Homebrew | green risk, v0.15.7 | narrow executable package without higher-risk signals |
| cargo-msrv | Homebrew | green risk, v0.19.3 | narrow executable package without higher-risk signals |
| cargo-binutils | Homebrew | green risk, v0.4.0 | narrow executable package without higher-risk signals |
| pgrx | Homebrew | green risk, v0.18.0 | narrow executable package without higher-risk signals |
| cargo-watch | Homebrew | green risk | narrow executable package without higher-risk signals |
| cargo-cyclonedx | Homebrew | green risk, v0.5.9 | narrow executable package without higher-risk signals |
| cargo-fuzz | Homebrew | green risk, v0.13.1 | narrow executable package without higher-risk signals |
| cargo-bloat | Homebrew | green risk, v0.12.1 | narrow executable package without higher-risk signals |
| cargo-careful | Homebrew | green risk, v0.4.10 | narrow executable package without higher-risk signals |
| cargo-depgraph | Homebrew | green risk, v1.6.0 | narrow executable package without higher-risk signals |
| cargo-docset | Homebrew | green risk, v0.3.1 | narrow executable package without higher-risk signals |
| cargo-run-bin | Homebrew | green risk, v1.7.4 | narrow executable package without higher-risk signals |
| cargo-component | Homebrew | green risk, v0.21.1 | narrow executable package without higher-risk signals |
| dum | Homebrew | green risk, v0.1.20 | narrow executable package without higher-risk signals |
| cargo-features-manager | Homebrew | green risk, v0.11.1 | narrow executable package without higher-risk signals |
| cargo-insta | Homebrew | green risk, v1.47.2 | no executable entrypoint in the package index |
| @openai/codex | npm | v0.133.0 | <p align="center"><code>npm i -g @openai/codex</code><br />or <code>brew install --cask codex</code></p> <p align="center"><strong>Codex CL… |
| npm-run-all | npm | v4.1.5 | A CLI tool to run multiple npm-scripts in parallel or sequential. |
| npm-run-all2 | npm | v9.0.1 | A CLI tool to run multiple npm-scripts in parallel or sequential. (Maintenance fork) |
| @openapitools/openapi-generator-cli | npm | v2.34.0 | A npm package wrapper for OpenAPI Generator (https://github.com/OpenAPITools/openapi-generator), generates which API client libraries (SDK… |
| yarn-or-npm | npm | v3.0.1 | Use Yarn or npm to execute a command |
| @salesforce/plugin-trust | npm | v3.8.10 | validate a digital signature for a npm package |
| @openai/codex-responses-api-proxy | npm | v0.133.0 | <p align="center"><code>npm i -g @openai/codex-responses-api-proxy</code> to install <code>codex-responses-api-proxy</code></p> |
| momentic | npm | v2.116.0 |  [![npm]](https://www.npmjs.com/package/momentic) |
| @sourcegraph/amp | npm | v0.0.1779481807-ge7719a | Renamed to @ampcode/cli - see https://ampcode.com/news/npm-package-changes |
| better-npm-run | npm | v0.1.1 | Better NPM scripts runner |