# 使用 Homebrew, Nix 安装 licensed

查看 licensed 的安装路径、可执行文件、元数据以及面向 AI 代理工作流的安全说明。

## 安装

```sh
sudo av install brew:licensed
```

其他安装命令:

### macOS

- Homebrew (100%):

```sh
brew install licensed
```

  证据: local Homebrew formula metadata

### Linux

- Nix (92%):

```sh
nix profile install nixpkgs#licensed
```

  证据: nixpkgs package indexes: pkgs/by-name/li/licensed/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1

## 软件包事实

- **软件包键:** brew:licensed
- **软件包管理器:** Homebrew
- **软件包管理器页面:** <https://formulae.brew.sh/formula/licensed>
- **版本:** 5.1.0
- **来源摘要:** Cache and verify the licenses of dependencies
- **主页:** <https://github.com/licensee/licensed>
- **仓库:** <https://github.com/licensee/licensed>
- **上游文档:** <https://github.com/licensee/licensed#readme>
- **许可证:** MIT
- **源码归档:** <https://github.com/licensee/licensed.git>
- **最后更新:** 2026-06-13T23:35:01+02:00
- **已生成:** 2026-07-08T18:08:21+00:00

## 可执行文件

- licensed (cli)
- licensed (别名)

## 依赖

- libgit2
- ruby

## 构建依赖

- cmake
- pkgconf

## macOS 提供的库

- libxml2
- libxslt

## 安装行为

- post-install 钩子: 未定义
- Bottle: 可用 于 arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux

## 版本和新鲜度

- 页面生成时间: 2026-07-08
- 管理器版本: 5.1.0
- 管理器更新时间: 2026-06-13
- 本地数据: OK
- 上游仓库: https://github.com/licensee/licensed
- 信息: No cached GitHub release or tag data was available.
## 项目历史与用法

Licensed is a Ruby command-line tool for caching dependency license texts and checking them against repository policy. It sits in the GitHub Licensee ecosystem: Licensee detects license text, while Licensed records and verifies the dependency-level results that package managers expose.

### 项目历史

The public GitHub repository was created on 2018-02-02 under GitHub's license tooling namespace and later moved under the licensee organization. The README describes the project as a Ruby gem and warns that it is not a complete open-source compliance solution.

The changelog shows the project evolving through compatibility-driven releases: v3 added migration guidance for self-contained builds, v4 removed self-contained executable releases and older Go support, and v5 required Ruby 3.0 or newer.

### 采用历史

Licensed became useful to repositories that wanted license checks in development and continuous integration without manually inspecting every transitive dependency. Its source enumerators cover multiple language ecosystems, and its Homebrew formula made the Ruby CLI easy to install on macOS.

### 使用方式

A project adds a .licensed.yml file, runs Licensed to cache dependency records, and then runs status or verification commands to catch newly introduced, stale, or disallowed dependency licenses.

### 为什么软件包爱好者会关心

Licensed is package-nerd notable because it treats license review as package metadata that can be cached, diffed, and enforced in CI. It also shows the practical boundary between SPDX-style license identification and the messy package-manager work of finding dependency sources.

### 时间线

- 2018-02-02: GitHub repository created.
- 2022-03-17: v3.6.0 changelog entry adds getting-started documentation and npm-workspaces support.
- 2023: v4.0.0 changelog entry removes self-contained executable releases and adds CocoaPods and Gradle multi-project support.
- 2024: v5.0.0 changelog entry requires Ruby 3.0 or newer.
- 2025: v5.0.3 changelog entry adds pnpm v9 support.

### Related projects

- Related projects include Licensee for license detection, SPDX license data, and other dependency-license scanners such as LicenseFinder.

### 来源

- <https://api.github.com/repos/licensee/licensed>
- <https://formulae.brew.sh/formula/licensed>
- <https://github.com/licensee/licensed>
- <https://raw.githubusercontent.com/licensee/licensed/fa9914ac4db957a3197c9a0858aec18ba2f47bba/CHANGELOG.md>
- <https://raw.githubusercontent.com/licensee/licensed/main/CHANGELOG.md>
- <https://raw.githubusercontent.com/licensee/licensed/main/README.md>


## 安全说明

narrow executable package without higher-risk signals.

- **Geiger 风险:** 绿色 / 低
- narrow executable package without higher-risk signals


## Configuration and credential file locations

These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.


## Configuration files

- Unix: ./.licensed.yml
## 源数据库详情

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** licensed
- **Version Scheme:** 0
- **Revision:** 0
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** stable

## 其他软件包管理器记录

- Nix - licensed: normalized package name match | nixpkgs package indexes: pkgs/by-name/li/licensed/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1


## 相关链接

- [Source-control packages](https://www.automicvault.com/zh-hans/pkg/source-control-tools/) - Belongs to a source-control command family.
- [Package publisher tools](https://www.automicvault.com/zh-hans/pkg/package-publishers/) - Belongs to a package publishing or registry command family.
- [Terminal utility packages](https://www.automicvault.com/zh-hans/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Text processing packages](https://www.automicvault.com/zh-hans/pkg/text-processing-tools/) - Matched text, document, or structured-data processing metadata.
- [libgit2](https://www.automicvault.com/zh-hans/pkg/brew/libgit2/) - Runtime dependency declared by Homebrew.
- [ruby](https://www.automicvault.com/zh-hans/pkg/brew/ruby/) - Runtime dependency declared by Homebrew.
- [cmake](https://www.automicvault.com/zh-hans/pkg/brew/cmake/) - Build dependency declared by Homebrew.
- [pkgconf](https://www.automicvault.com/zh-hans/pkg/brew/pkgconf/) - Build dependency declared by Homebrew.
- [licensefinder](https://www.automicvault.com/zh-hans/pkg/brew/licensefinder/) - Shares av.db curated category or tags: cli, dependencies, developer-tools, license-compliance, licenses.
- [licenseplist](https://www.automicvault.com/zh-hans/pkg/brew/licenseplist/) - Shares av.db curated category or tags: cli, developer-tools, license-compliance, licenses.
- [license-eye](https://www.automicvault.com/zh-hans/pkg/brew/license-eye/) - Shares av.db curated category or tags: cli, developer-tools, license-compliance.
- [licensor](https://www.automicvault.com/zh-hans/pkg/brew/licensor/) - Shares av.db curated category or tags: cli, developer-tools, license-compliance.
- [anycable-go](https://www.automicvault.com/zh-hans/pkg/brew/anycable-go/) - Shares av.db curated category or tags: cli, developer-tools, ruby.
- [brew-gem](https://www.automicvault.com/zh-hans/pkg/brew/brew-gem/) - Shares av.db curated category or tags: cli, developer-tools, ruby.
- [cargo-chef](https://www.automicvault.com/zh-hans/pkg/brew/cargo-chef/) - Shares av.db curated category or tags: cli, dependencies, developer-tools.
- [cargo-edit](https://www.automicvault.com/zh-hans/pkg/brew/cargo-edit/) - Shares av.db curated category or tags: cli, dependencies, developer-tools.
- [cargo-outdated](https://www.automicvault.com/zh-hans/pkg/brew/cargo-outdated/) - Local package facts share a topical domain. Shared terms: cli, dependencies, developer, developer-tools, libgit2.

## Combined YAML source

View the package source record on GitHub. [combined/licensed.yml](https://github.com/automic-vault/db/blob/main/combined/licensed.yml)


## 来源

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- curated configuration and credential file locations
- curated package history
- package version freshness
- av.db category and tag curation
- package relationship graph
- external package-manager database matches
- cross-ecosystem install command graph
