Vet is a safety net for the risky curl | bash pattern
9 months ago
- #command-line
- #bash
- #security
- vet is a command-line tool designed to safely handle the risky 'curl | bash' pattern by inspecting, reviewing, and requiring approval before executing remote scripts.
- It provides a secure workflow: Fetch, Diff & Review, Lint (with shellcheck), and Confirm before execution.
- Installation is recommended via Homebrew, but manual installation is also supported to align with vet's security-first principle.
- Basic usage involves vetting a script URL, with options to pass arguments to the script or force execution in non-interactive environments.
- vet requires modern bash features for security and robustness, making bash an explicit dependency in minimal environments.
- Contributions are encouraged, with guidelines for forking, feature branching, testing, and submitting pull requests.
- The project is licensed under MIT, with a contributors file to acknowledge community contributions.