# Install cfripper

Library and CLI tool to analyse CloudFormation templates for security issues. Version 1.20.1 via Homebrew; verified 2026-05-12.

## Install

```sh
sudo av install brew:cfripper
```

Additional install commands:

### macOS

- Homebrew (100%):

```sh
brew install cfripper
```

  Evidence: local Homebrew formula metadata

### Linux

- Nix (92%):

```sh
nix profile install nixpkgs#cfripper
```

  Evidence: nixpkgs package indexes: pkgs/by-name/cf/cfripper/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1

## Package Facts

- **Package key:** brew:cfripper
- **Package manager:** Homebrew
- **Package manager URL:** <https://formulae.brew.sh/formula/cfripper>
- **Version:** 1.20.1
- **Source summary:** Library and CLI tool to analyse CloudFormation templates for security issues
- **Homepage:** <https://cfripper.readthedocs.io>
- **Repository:** <https://github.com/Skyscanner/cfripper>
- **Upstream docs:** <https://cfripper.readthedocs.io/>
- **License:** Apache-2.0
- **Source archive:** <https://files.pythonhosted.org/packages/19/76/fdea07181d0988203f83dbb54be4db52f42243879372cd099cb45bbe405d/cfripper-1.20.1.tar.gz>
- **Last updated:** 2026-05-12T11:07:31Z
- **Generated:** 2026-06-10T07:18:26+00:00

## Executables

- cfripper (cli)
- cfripper (alias)

## Dependencies

- libyaml
- pydantic
- python@3.14

## Install Behavior

- Post-install hook: not defined
- Bottle: available on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux

## Freshness

- Page generated: 2026-06-10
- Package-manager version: 1.20.1
- Package-manager updated: 2026-05-12
- Local data status: ok
- Upstream repository: https://cfripper.readthedocs.io
- info: Release/tag comparison is only available for GitHub repositories.

## 安全说明

infrastructure mutation or orchestration signal.

- **Geiger risk:** orange / medium
- infrastructure mutation or orchestration signal

## Source Database Details

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** cfripper
- **Version Scheme:** 0
- **Revision:** 1
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** stable

## Other Package-Manager Records

- Nix - cfripper: normalized package name match | nixpkgs package indexes: pkgs/by-name/cf/cfripper/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1


## Related Links

- [Cloud CLI packages](https://www.automicvault.com/zh-hans/pkg/cloud-clis/) - Belongs to a cloud or infrastructure command family.
- [Secret-risk packages](https://www.automicvault.com/zh-hans/pkg/secret-risk-packages/) - Has protected-tool coverage, approval-gate, or non-low Geiger security signals.
- [Terminal utility packages](https://www.automicvault.com/zh-hans/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Developer build packages](https://www.automicvault.com/zh-hans/pkg/developer-build-tools/) - Matched build, compiler, generator, or developer workflow metadata.
- [python@3.14](https://www.automicvault.com/zh-hans/pkg/brew/python-3-14/) - Runtime dependency declared by Homebrew.
- [trailscraper](https://www.automicvault.com/zh-hans/pkg/brew/trailscraper/) - Shares av.db curated category or tags: aws, cli, cloud-security, security.
- [parliament](https://www.automicvault.com/zh-hans/pkg/brew/parliament/) - Shares av.db curated category or tags: aws, cli, cloud-security, security.
- [terraform-iam-policy-validator](https://www.automicvault.com/zh-hans/pkg/brew/terraform-iam-policy-validator/) - Shares av.db curated category or tags: aws, cli, cloud-security, security.
- [cloudsplaining](https://www.automicvault.com/zh-hans/pkg/brew/cloudsplaining/) - Shares av.db curated category or tags: aws, cli, cloud-security, security.
- [cloudfox](https://www.automicvault.com/zh-hans/pkg/brew/cloudfox/) - Shares av.db curated category or tags: aws, cli, cloud-security, security.
- [lacework-cli](https://www.automicvault.com/zh-hans/pkg/brew/lacework-cli/) - Shares av.db curated category or tags: cli, cloud-security, security.
- [s3scanner](https://www.automicvault.com/zh-hans/pkg/brew/s3scanner/) - Shares av.db curated category or tags: cli, cloud-security, security.
- [principalmapper](https://www.automicvault.com/zh-hans/pkg/brew/principalmapper/) - Shares av.db curated category or tags: aws, cli, cloud-security, security.
- [checkov](https://www.automicvault.com/zh-hans/pkg/brew/checkov/) - Both packages touch the same language runtime or ecosystem. Shared terms: analysis, cli, cloud, libyaml, pydantic.

## Sources

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- package version freshness
- av.db category and tag curation
- package relationship graph
- external package-manager database matches
- cross-ecosystem install command graph