How to install Homebrew securely

The instructions at are extremely dangerous! Here is how to install homebrew properly.

NOTE: we assume your homebrew path is: ~/Workspace/Hub/brew


  1. Clone the repository:

    git clone ~/Workspace/Hub/brew
    cd ~/Workspace/Hub/brew
  2. Review the code carefully!

  3. Check the commit sha matches the one from the last commit on the repository website:

    git rev-parse HEAD
  4. Now you have a secure copy of the repository and you can automate the process.


IMPORTANT: on Linux, homebrew adds itself in the front of your PATH, so any package installed by homebrew will have higher priority than your system packages. This includes critical ones like pkg-config, which means you will start seeing errors when compiling, unless you duplicate all your compile time or runtime libraries by installling them with the brew command.

To avoid this, we will only enable homebrew manually in the shell we need it.

  1. Add the following setup to your ~/.bash_profile to allow enabling homebrew on demand:

    # Homebrew
    function Enable {
      case "$1" in
          eval "$(~/Workspace/Hub/brew/bin/brew shellenv)"
  2. Set up your current shell by executing this in your homebrew directory:

    eval `bin/brew shellenv`
  3. Any future shells can have homebrew by executing this command:

    Enable brew
  4. Ensure analytics are disabled at the command level:

    brew analytics off
  5. Update everything:

    brew update --force
    brew upgrade


Remember, you need to enable it first before running any commands:

Enable brew

Now you can install any package with a clear conscience.

brew install hello