Skip to content

meterup/homebrew-safe

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits
Formula
Formula
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

homebrew-safe

Memory safe versions of various packages; in particular, C dependencies that you would typically find, like openssl, have been replaced with versions written in languages that prevent errors like use-after-free.

brew install --HEAD meterup/safe/curl

For more on why this is important, see https://alexgaynor.net/2020/may/27/science-on-memory-unsafety-and-security/ .

Supported Packages

curl

Curl is compiled with the rustls and Hyper backend instead of openssl, which means that TLS connections are made with Rust. Note that this means TLS 1.1 and below are not supported.

git

Git is compiled with libcurl from this repository.

How to check the right versions were compiled in?

Use objdump -p <binary> to inspect the symbols for a given binary - they should point to the Homebrew compiled libs instead of e.g. /usr/lib/curl.dylib which is the default Mac version.

Questions

If you'd like to see a package here, please open a ticket!

About

Memory safe implementations of Homebrew packages

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

14 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages