macOS
Homebrew
已验证 · 100%
brew install checkov
local Homebrew formula metadata
安装
使用 Automic Vault 安装
Automic Vault
sudo av install brew:checkovLinux
Nix
已验证 · 92%
nix profile install nixpkgs#checkov
nixpkgs package indexes · pkgs/by-name/ch/checkov/package.nix · 来源: api.github.com
软件包管理器来源
平台说明
- 没有特定于此软件包的平台说明。
概览
软件包摘要
Automic Vault 根据本地软件包数据发布 checkov 的安装路径、可执行文件事实和安全元数据。
主页
命令和别名
- checkov
- checkov.cmd
来源摘要
Prevent cloud misconfigurations during build-time for IaC tools
radioisotope
Plain Text Checkov API Key
Checkov can read its Bridgecrew/Prisma API key from ~/.bridgecrew/credentials when no API key is supplied by flag or environment. Our isotope stores that credential in the macOS keychain and injects it as BC_API_KEY while `checkov` runs.
风险分类器
orange 风险 · medium 置信度 · infrastructure
原因
- infrastructure mutation or orchestration signal
信号
- text:cloud
安装行为
- No Homebrew post-install hook is recorded in formula metadata.
- Homebrew bottle metadata is available for 6 platform targets.
- 安装时包含 7 个运行时依赖。
- 构建元数据列出 3 个构建依赖。
本地 README 摘录
Checkov Radioisotope
Checkov reads a Bridgecrew/Prisma API key from ~/.bridgecrew/credentials when BC_API_KEY or --bc-api-key is not supplied. The radioisotope moves that plaintext credential into the macOS keychain and injects it as BC_API_KEY while checkov runs.
Caveats
- Only
~/.bridgecrew/credentialsis migrated. - Runtime changes to the Bridgecrew credential file are not persisted back to
the keychain.
- An explicit
--bc-api-keyargument supplied by the user takes precedence in
Checkov's normal argument parsing.
- Direct execution of the original binary will not receive credentials.
来源: data/radioisotopes/checkov/README.md
覆盖来源
Caveats
- Only ~/.bridgecrew/credentials is migrated.
- Runtime credential-file changes are not persisted back to keychain.
- Explicit --bc-api-key arguments take precedence in Checkov's normal parsing.
- Direct execution of the original binary will not receive credentials.
可执行文件
已安装的可执行文件
| 命令 | 类型 | 暴露范围 | 备注 |
|---|---|---|---|
checkov | cli | global executable | |
checkov.cmd | cli | global executable |
新鲜度
版本和新鲜度
这些信号区分页生成时间、软件包管理器活动和上游发布比较。只有存在证据 URL 和可比较版本时,才会提示版本落后。
页面生成时间2026-05-26
管理器版本3.2.520
管理器更新时间2026-05-20
本地数据ok
上游not checked
检测到的最新版本未检测到
- info Release/tag comparison is only available for GitHub repositories. https://www.checkov.io/ none 置信度
安装元数据
软件包元数据
| 软件包键 | brew:checkov |
|---|---|
| 版本 | 3.2.520 |
| 软件包管理器 | Homebrew |
| 软件包管理器页面 | https://formulae.brew.sh/formula/checkov |
| 主页 | https://www.checkov.io/ |
| 上游文档 | https://www.checkov.io/ |
| 许可证 | Apache-2.0 |
| 源码归档 | https://files.pythonhosted.org/packages/53/37/5cb7133fc3910d7a01d3a5d27b266936a55be08b1497edac63581621802b/checkov-3.2.520.tar.gz |
| 更新 | 2026-05-20T12:16:02Z |
| Pulse | updated |
| 依赖 | certifi, cffi, libyaml, numpy, pydantic, python@3.14, rpds-py |
| 构建依赖 | cmake, maturin, rust |
| macOS 提供的库 | libffi |
| Bottle | 可用 (arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | 未定义 |
| 服务 | 未声明 |
来源线索
由仓库数据生成
此页面由 scripts/generate-pkg-pages.py 写入。如果 www/pkg/ 相对于本地软件包数据已过期,部署会拒绝发布。
使用的来源
- Geiger risk classifier
- Nucleus package database
- cross-ecosystem install command graph
- local isotope README
- package relationship graph
- package version freshness
- package-page enrichment
- radioisotope security manifest