Homebrew 6.0 Ships with Tap Trust, Linux Sandbox, and AI-Assisted Rebuild
Homebrew 6.0 introduces a new tap-trust mechanism and a Linux sandbox based on Bubblewrap, alongside a vulnerability scanning subcommand and performance improvements, while phasing out Intel macOS support.
The Homebrew team has released version 6.0 of the widely used open-source package manager for macOS and Linux, packing a suite of security enhancements that target supply-chain risks and platform parity. Chief among them is a new "tap trust" mechanism that requires explicit user approval before third-party taps — collections of formulae, casks, and commands stored in Git repositories — can install or execute code. Official Homebrew taps remain trusted by default, but the change brings an added layer of consent against arbitrary Ruby code that could otherwise run without the user's awareness.
Tap trust is the latest element in Homebrew's layered supply-chain security model. Package names are curated by maintainers rather than upstream authors, allowing typosquatting attempts to be rejected before they reach users. Every download is pinned to a SHA-256 checksum, and binaries are built from source rather than fetched as opaque pre-compiled blobs. The project’s documentation notes that these protections shielded Homebrew from the Trivy compromise earlier this year, where official Trivy binaries were replaced with malicious versions in a supply-chain attack.
On Linux, Homebrew 6.0 enables sandboxing by default during compilation, implemented via the Bubblewrap project. This mirrors sandbox protections that have been present on macOS for roughly a decade. Project leader Mike McQuaid told The Register, "Homebrew was less vulnerable 10-15 years ago than npm is today. The trust model is radically different." The new brew exec command also offers a workflow similar to npm's npx, letting users run a Homebrew-provided executable without a full install.
A new subcommand, brew vulns, checks installed packages against the OSV vulnerability database for open-source software. Meanwhile, brew install and brew upgrade now display a dependency summary and require a confirmation prompt before proceeding — a feature called "ask mode" that was the top request in a developer survey earlier this year. Startup performance is also improved thanks to parallelised bottle fetching and other optimizations.
Perhaps the most controversial change in Homebrew 6.0 is the accelerated phase-out of Intel macOS support. No new bottles will be built for macOS Intel starting this September, and by September 2027 Intel architecture will be "unsupported entirely and all related code deleted." Apple itself is phasing out Intel support in future macOS versions and in Rosetta. One developer criticized the timeline as "aggressive," noting that many old Macs used as servers are Intel-based. McQuaid responded that Homebrew will still operate under a "Tier 3" support level for a year after the cut, and suggested the community could fork the project as "Intelbrew" if desired. He also noted that GitHub is dropping macOS Intel runners for CI toward the end of 2027.
Homebrew 6.0 also marks a notable milestone in AI-assisted development. The project published a responsible AI usage policy requiring that AI contributions be disclosed and human-reviewed. McQuaid told The Register that AI "has been a huge personal accelerator" when used responsibly, with all changes reviewed both before pull requests are submitted and again before they are merged. The release cements Homebrew's position as a critical piece of developer infrastructure, now with modern supply-chain defenses that respond directly to recent industry incidents.