Allow installation of packages from third party Taps
Joe Nash
With default Workbrew settings, developers can only install packages from the official taps. Taps are how Homebrew organizes and distributes packages. Official taps (Homebrew/core and Homebrew/cask) follow strict guidelines, reducing the risk of malicious or unmaintained software.
When a user tries to install a package from a third-party tab, they will encounter a message with information on how to contact you:
$ brew install [package]
...
Error: The installation of [package] was forbidden by your Workbrew administrator
in `HOMEBREW_FORBIDDEN_FORMULAE`.
Reach out to john.doe@example.com for assistance..
Once escalated, you can then work with the developer to figure out next steps.
If needed, you can add additional taps which developers can install software from.
CAUTION: Only allow third-party taps from trusted sources. Third-party taps don't meet the same strict guidelines as Homebrew/core and Homebrew/cask and may increase your risk of running malicious or unmaintained software.
- Navigate to the Policies page in the console
- Scroll to Policies
- Click on New Brew Policy
- Select Allowed Taps
- Select taps to add
- Click the Device Group dropdown to target a device groups or all devices
- Click Create Brew policy