Where does brew get all its binaries from? [duplicate]

homebrew

I love how homebrew makes my life easier! Though, I just realized that I don't really know who is "signing off" the stuff I get installed through it. So, I ask:

  • Is there a central repo (like Linux distro PPAs)?
  • Or is it all decentralized (ie. code gets downloaded simultaneously from Github, Source Forge, etc)?
  • What mechanisms are in place to prevent trojan horses from being installed through brew?

Solution 1:

If you look at the details of a homebrew package (e.g. on http://braumeister.org), you'll find the address of the source code in the ruby script. So it is not stored in a centralized manner but directly on GitHub etc.

Anyone can submit a package to be installed and the maintainers either accept / modify / reject hosting the software in the main directory.

However, it’s easy to set up your own directory and tap that and then install anything you want using the homebrew scripts and tools. It’s pretty open to change if you want to add to it.

Related

Where does homebrew download software from?
How do you replace commands in the terminal?
How can I connect a cassette player to my Macbook (Mid 2015) to record cassette tapes on my mac?
FileVault decryption accidentially started - what will happen?
How to remove MRT (Malware Removal Tool)?
Delete user account - High Sierra - 10.13.2
Two-factor authentication when your device is not present
Apple ID not supported - Use a Managed Apple ID Error
Optimize Mac Storage: Keep local copy AND iCloud backup of directory
Does remapping modifier keys affect special boots?
Sharing serial number to a potential buyer?
Changed user password by providing new password as hash not syncing to filevault 2