Initial toot: Mastodon
It is generally considered bad and unsafe practice to download a shell script from the Internet and then run it directly in the shell via pipe unchecked. However, many projects now use this and it is even their official way to install their software. There are more elegant ways to do this and one would be to check a hash sum first and then run the script, but this is mostly bypassed by a pipe. The installation scripts are usually not designed for this and therefore often a dangerous practice.
This list should not be a pillory but a list for the overview of which projects use this and where you should be careful as a user. This means to take a look at the install scripts before you run them unchecked.
|Project||Type of Software||Lang.|
|basher||Shell Package Manager||Shell|
|bpkg||Bash Package Manager||Shell|
|Google Cloud SDK||Cloud Service SDK||?|
|Homebrew||macOS Package Manager||Ruby|
|Nix||Reproducible builds and deployments||Crystal|
|nvm||Node Version Manager||Shell|
|Oh My Fish||Fish Shell Framework||Shell|
|Oh My ZSH||Z-Shell Framework||Shell|
|SpaceVim||A community-driven vim distribution||Vim script|
|tmpmail||temporary email in terminal||Shell|
|termv||iptv player in terminal||Shell|
|vimiv||Batch-rename files Vim like||Shell|
|ytfzf||Find and watch YouTube videos||Shell|
You know about more of this Projects? Pls. commit projects you know fit in this list. You find all on the issue list, feel free to commmit your knowledge.
This project is under the MIT license, see for more th LICENSE file.
Curated by the community and KubikPixel