Homebrew
Feature request: warning for potential security risk #4823
Unanswered
aleksandr-vin
asked this question in
Tap maintenance and brew development
Replies: 1 comment 1 reply
-
|
Would that show for every install every time? Because any package could be flagged by AV. I think generally the expectation is that you know what you install. |
Beta Was this translation helpful? Give feedback.
1 reply
-
|
This was the first time for 7 years of active installs for me. In general it can be theoretically that AV would mark every package but in practice I believe it's the sec tools and pentest ones. That's why the voluntary part of it could help: author of the formulae is willingly marking it based on the risks. |
Beta Was this translation helpful? Give feedback.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Output of
brew configOutput of
brew doctorDescription of issue
The issue I've stumbled into is this: mistakenly (call it light-mindedness) issued a
brew install metasploitcommand on a corporate computer, ended up having my account and computer in quarantine plus all the headache to myself, my manager and security team. Thinking now how that could be prevented for others, I suggest adding a voluntary NSFW tag to formulae, and stopping (or making such stop option available for those who choose it to be safe at work) the download of the payload with a warning. I would definitely be appreciating if I was stopped with a message saying smth. like "WARNING: the package can be considered as a virus/malware by AV and can lead to quarantine, continue at your own risk!"what do you think?
Beta Was this translation helpful? Give feedback.
All reactions