A collection of proto TOML plugins for CLI tools.
144 plugins and counting.
Drop this into any directory to install all 144 plugins at once:
# Install ALL 144 plugins in one shot (writes .prototools + installs)
PLUGINS=(act actionlint alterx amass argocd argocd-image-updater ast-grep atmos bandwhich bat bazel bearer biome bottom caddy cargo-machete cargo-watch chisel choose cmake cntb cosign crane ctop d2 dagger dalfox dasel difftastic discrawl dive dnsx dockle doctl dprint duckdb dust eza fd feroxbuster ffuf flyctl gau git-cliff git-delta git-sizer gitleaks glow gobuster gog goplaces grain grex gron grpcurl grype gum hadolint harbor hcloud hey htmlq httpx hurl hyperfine interactsh-client jcli jira just k3d kargo katana kiterunner kube-bench kube-linter kubectl-argo-rollouts kustomize lazydocker lazygit local-php-security-checker ligolo-ng-agent ligolo-ng-proxy longhornctl mage miniserve mkcert naabu newrelic ninja nomad nuclei octopus osv-scanner ouch oxlint packer pact_verifier_cli pastel pixi podman-static procs pulumi puredns qsv rancher rattler-build rclone ripgrep ripgrep-all ruff s5cmd sd sentry-cli shellcheck shfmt snyk sops step stripe-cli subfinder subjack syft task telnyx tflint titus tlsx traefik tree-sitter trufflehog ubi uncover usql uv vault vhs vt-cli vultr-cli watchexec webanalyze wizer xh yq zap)
{
echo '[plugins]'
for p in "${PLUGINS[@]}"; do
echo "$p = \"source:https://raw.githubusercontent.com/binary64/proto-toml-plugins/main/$p/plugin.toml\""
done
} > .prototools
for p in "${PLUGINS[@]}"; do proto install "$p"; doneTip: skip the install loop if you only want the plugins registered — proto installs lazily on first
proto run <tool>.
Or use the included install script:
curl -fsSL https://raw.githubusercontent.com/binary64/proto-toml-plugins/main/install.sh -o /tmp/install-proto-plugins.sh
bash /tmp/install-proto-plugins.shOr clone and run:
git clone https://github.com/binary64/proto-toml-plugins.git
cd proto-toml-plugins
bash install.shOr install a single tool:
proto plugin add <name> https://raw.githubusercontent.com/binary64/proto-toml-plugins/main/<name>/plugin.toml
proto install <name>Descriptions are pulled directly from each upstream's GitHub About bio. Pushed is the year of the most recent commit to the default branch; Released is the year of the latest published GitHub release.
| Tool | Description | Source | Pushed | Released |
|---|---|---|---|---|
| act | Run your GitHub Actions locally 🚀 | nektos/act | 2026 | 2026 |
| actionlint | rhysd/actionlint | 2026 | 2026 | |
| alterx | Fast and customizable subdomain wordlist generator using DSL | projectdiscovery/alterx | 2026 | 2025 |
| amass | In-depth attack surface mapping and asset discovery | owasp-amass/amass | 2026 | 2026 |
| argocd | Declarative Continuous Deployment for Kubernetes | argoproj/argo-cd | 2026 | 2026 |
| argocd-image-updater | Automatic container image update for Argo CD | argoproj-labs/argocd-image-updater | 2026 | 2026 |
| ast-grep | ⚡A CLI tool for code structural search, lint and rewriting. Written in Rust | ast-grep/ast-grep | 2026 | 2026 |
| atmos | 👽 Terraform Orchestration Tool for DevOps. Keep environment configuration DRY with hierarchical imports of configurations,… | cloudposse/atmos | 2026 | 2026 |
| bandwhich | Terminal bandwidth utilization tool | imsnif/bandwhich | 2026 | 2024 |
| bat | A cat(1) clone with wings | sharkdp/bat | 2026 | 2025 |
| bazel | a fast, scalable, multi-language and extensible build system | bazelbuild/bazel | 2026 | 2026 |
| bearer | Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks | Bearer/bearer | 2026 | 2026 |
| biome | A toolchain for web projects, aimed to provide functionalities to maintain them. Biome offers formatter and linter, usable via… | biomejs/biome | 2026 | 2026 |
| bottom | Yet another cross-platform graphical process/system monitor (runs as btm) |
ClementTsang/bottom | 2026 | 2026 |
| caddy | Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS | caddyserver/caddy | 2026 | 2026 |
| cargo-machete | Remove unused Rust dependencies with this one weird trick! | bnjbvr/cargo-machete | 2026 | 2026 |
| cargo-watch | watchexec/cargo-watch | 2025 | 2024 | |
| chisel | A fast TCP/UDP tunnel over HTTP | jpillora/chisel | 2026 | 2026 |
| choose | A human-friendly and fast alternative to cut (and sometimes awk) | theryangeary/choose | 2025 | 2025 |
| cmake | Mirror of CMake upstream repository | Kitware/CMake | 2026 | 2026 |
| cntb | Contabo Command Line Interface | contabo/cntb | 2026 | 2026 |
| cosign | Code signing and transparency for containers and binaries | sigstore/cosign | 2026 | 2026 |
| crane | Go library and CLIs for working with container registries | google/go-containerregistry | 2026 | 2026 |
| ctop | Top-like interface for container metrics | bcicen/ctop | 2024 | 2022 |
| d2 | D2 is a modern diagram scripting language that turns text to diagrams | terrastruct/d2 | 2025 | 2025 |
| dagger | Automation engine to build, test and ship any codebase. Runs locally, in CI, or directly in the cloud | dagger/dagger | 2026 | 2026 |
| dalfox | 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation | hahwul/dalfox | 2026 | 2025 |
| dasel | Select, put and delete data from JSON, TOML, YAML, XML, INI, HCL and CSV files with a single tool. Also available as a go mod | TomWright/dasel | 2026 | 2026 |
| difftastic | a structural diff that understands syntax 🟥🟩 (runs as difft) |
Wilfred/difftastic | 2026 | 2026 |
| discrawl | cli for discord with sqlite backend | steipete/discrawl | 2026 | 2026 |
| dive | A tool for exploring each layer in a docker image | wagoodman/dive | 2025 | 2025 |
| dnsx | dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied… | projectdiscovery/dnsx | 2026 | 2025 |
| dockle | Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start | goodwithtech/dockle | 2026 | 2025 |
| doctl | The official command line interface for the DigitalOcean API | digitalocean/doctl | 2026 | 2026 |
| dprint | Pluggable and configurable code formatting platform written in Rust that unifies all your formatters in one tool | dprint/dprint | 2026 | 2026 |
| duckdb | DuckDB is an analytical in-process SQL database management system | duckdb/duckdb | 2026 | 2026 |
| dust | A more intuitive version of du in rust | bootandy/dust | 2026 | 2026 |
| eza | A modern alternative to ls | eza-community/eza | 2026 | 2025 |
| fd | A simple, fast and user-friendly alternative to 'find' | sharkdp/fd | 2026 | 2026 |
| feroxbuster | A fast, simple, recursive content discovery tool written in Rust | epi052/feroxbuster | 2026 | 2025 |
| ffuf | Fast web fuzzer written in Go | ffuf/ffuf | 2025 | 2023 |
| flyctl | Command line tools for fly.io services | superfly/flyctl | 2026 | 2026 |
| gau | Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl | lc/gau | 2026 | 2024 |
| git-cliff | A highly customizable Changelog Generator that follows Conventional Commit specifications ⛰️ | orhun/git-cliff | 2026 | 2026 |
| git-delta | A syntax-highlighting pager for git, diff, grep, rg --json, and blame output (runs as delta) |
dandavison/delta | 2026 | 2026 |
| git-sizer | Compute various size metrics for a Git repository, flagging those that might cause problems | github/git-sizer | 2026 | 2021 |
| gitleaks | Find secrets with Gitleaks 🔑 | gitleaks/gitleaks | 2026 | 2026 |
| glow | Render markdown on the CLI, with pizzazz! 💅🏻 | charmbracelet/glow | 2026 | 2026 |
| gobuster | Directory/File, DNS and VHost busting tool written in Go | OJ/gobuster | 2026 | 2025 |
| gog | Google Suite CLI: Gmail, GCal, GDrive, GContacts | steipete/gogcli | 2026 | 2026 |
| goplaces | Modern Google Places CLI in Go | steipete/goplaces | 2026 | 2026 |
| grain | The Grain compiler toolchain and CLI. Home of the modern web staple. 🌾 | grain-lang/grain | 2026 | 2026 |
| grex | A command-line tool and Rust library with Python bindings for generating regular expressions from user-provided test cases | pemistahl/grex | 2026 | 2025 |
| gron | Make JSON greppable! | tomnomnom/gron | 2025 | 2022 |
| grpcurl | Like cURL, but for gRPC: Command-line tool for interacting with gRPC servers | fullstorydev/grpcurl | 2026 | 2025 |
| grype | A vulnerability scanner for container images and filesystems | anchore/grype | 2026 | 2026 |
| gum | A tool for glamorous shell scripts 🎀 | charmbracelet/gum | 2026 | 2025 |
| hadolint | Dockerfile linter, validate inline bash, written in Haskell | hadolint/hadolint | 2026 | 2025 |
| harbor | Official Harbor CLI | goharbor/harbor-cli | 2026 | 2026 |
| hcloud | A command-line interface for Hetzner Cloud | hetznercloud/cli | 2026 | 2026 |
| hey | HTTP load generator, ApacheBench (ab) replacement | rakyll/hey | 2026 | 2026 |
| htmlq | Like jq, but for HTML | mgdm/htmlq | 2024 | 2022 |
| httpx | httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library | projectdiscovery/httpx | 2026 | 2026 |
| hurl | Hurl, run and test HTTP requests with plain text | Orange-OpenSource/hurl | 2026 | 2025 |
| hyperfine | A command-line benchmarking tool | sharkdp/hyperfine | 2026 | 2025 |
| interactsh-client | An OOB interaction gathering server and client library | projectdiscovery/interactsh | 2026 | 2026 |
| jcli | Jenkins CLI allows you to manage your Jenkins in an easy way. Jenkins 命令行客户端 | jenkins-zh/jenkins-cli | 2025 | 2025 |
| jira | 🔥 Feature-rich interactive Jira command line | ankitpokhrel/jira-cli | 2026 | 2025 |
| just | 🤖 Just a command runner | casey/just | 2026 | 2026 |
| k3d | Little helper to run CNCF's k3s in Docker | k3d-io/k3d | 2026 | 2025 |
| kargo | Application lifecycle orchestration | akuity/kargo | 2026 | 2026 |
| katana | A next-generation crawling and spidering framework | projectdiscovery/katana | 2026 | 2026 |
| kiterunner | Contextual Content Discovery Tool (runs as kr) |
assetnote/kiterunner | 2024 | 2021 |
| kube-bench | Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark | aquasecurity/kube-bench | 2026 | 2026 |
| kube-linter | KubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts to ensure the applications represented… | stackrox/kube-linter | 2026 | 2026 |
| kubectl-argo-rollouts | Progressive Delivery for Kubernetes | argoproj/argo-rollouts | 2026 | 2026 |
| kustomize | Customization of kubernetes YAML configurations | kubernetes-sigs/kustomize | 2026 | 2026 |
| lazydocker | The lazier way to manage everything docker | jesseduffield/lazydocker | 2026 | 2026 |
| lazygit | simple terminal UI for git commands | jesseduffield/lazygit | 2026 | 2026 |
| local-php-security-checker | PHP security vulnerabilities checker | fabpot/local-php-security-checker | 2024 | 2024 |
| ligolo-ng-agent | An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface | nicocha30/ligolo-ng | 2026 | 2026 |
| ligolo-ng-proxy | An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface | nicocha30/ligolo-ng | 2026 | 2026 |
| longhornctl | Longhorn CLI is a headless way for preflighting, operating and troubleshooting Longhorn cluster | longhorn/cli | 2026 | 2026 |
| mage | a Make/rake-like dev tool using Go | magefile/mage | 2026 | 2026 |
| miniserve | 🌟 For when you really just want to serve some files over HTTP right now! | svenstaro/miniserve | 2026 | 2026 |
| mkcert | A simple zero-config tool to make locally trusted development certificates with any names you'd like | FiloSottile/mkcert | 2024 | 2022 |
| naabu | A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other… | projectdiscovery/naabu | 2026 | 2026 |
| newrelic | The New Relic Command Line Interface | newrelic/newrelic-cli | 2026 | 2026 |
| ninja | a small build system with a focus on speed | ninja-build/ninja | 2026 | 2025 |
| nomad | Nomad is an easy-to-use, flexible, and performant workload orchestrator that can deploy a mix of microservice, batch,… | hashicorp/nomad | 2026 | 2026 |
| nuclei | Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based… | projectdiscovery/nuclei | 2026 | 2026 |
| octopus | | Public | Next Generation of the Octopus CLI 🐙 | OctopusDeploy/cli | 2026 | 2026 |
| osv-scanner | Vulnerability scanner written in Go which uses the data provided by https://osv.dev | google/osv-scanner | 2026 | 2026 |
| ouch | Painless compression and decompression in the terminal | ouch-org/ouch | 2026 | 2025 |
| oxlint | ⚓ A collection of high-performance JavaScript tools | oxc-project/oxc | 2026 | 2026 |
| packer | Packer is a tool for creating identical machine images for multiple platforms from a single source configuration | hashicorp/packer | 2026 | 2026 |
| pact_verifier_cli | Reference implementations for the pact specifications | pact-foundation/pact-reference | 2026 | 2026 |
| pastel | A command-line tool to generate, analyze, convert and manipulate colors | sharkdp/pastel | 2026 | 2026 |
| pixi | Powerful system-level package manager for Linux, macOS and Windows written in Rust – building on top of the Conda ecosystem | prefix-dev/pixi | 2026 | 2026 |
| podman-static | Static podman binaries and container image | mgoltzsche/podman-static | 2026 | 2026 |
| procs | A modern replacement for ps written in Rust | dalance/procs | 2026 | 2026 |
| pulumi | Pulumi - Infrastructure as Code in any programming language 🚀 | pulumi/pulumi | 2026 | 2026 |
| puredns | Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS… | d3mondev/puredns | 2026 | 2023 |
| qsv | Blazing-fast Data-Wrangling toolkit | jqnatividad/qsv | 2026 | 2026 |
| rancher | Rancher CLI | rancher/cli | 2026 | 2026 |
| rattler-build | rattler-build is a universal Conda package builder for Windows, macOS and Linux (like conda-build but faster) | prefix-dev/rattler-build | 2026 | 2026 |
| rclone | "rsync for cloud storage" - Google Drive, S3, Dropbox, Backblaze B2, One Drive, Swift, Hubic, Wasabi, Google Cloud Storage,… | rclone/rclone | 2026 | 2026 |
| ripgrep | ripgrep recursively searches directories for a regex pattern while respecting your gitignore (runs as rg) |
BurntSushi/ripgrep | 2026 | 2025 |
| ripgrep-all | rga: ripgrep, but also search in PDFs, E-Books, Office documents, zip, tar.gz, etc (runs as rga) |
phiresky/ripgrep-all | 2026 | 2025 |
| ruff | An extremely fast Python linter and code formatter, written in Rust | astral-sh/ruff | 2026 | 2026 |
| s5cmd | Parallel S3 and local filesystem execution tool | peak/s5cmd | 2025 | 2024 |
| sd | Intuitive find & replace CLI (sed alternative) | chmln/sd | 2026 | 2026 |
| sentry-cli | A command line utility to work with Sentry | getsentry/sentry-cli | 2026 | 2026 |
| shellcheck | ShellCheck, a static analysis tool for shell scripts | koalaman/shellcheck | 2026 | 2025 |
| shfmt | A shell parser, formatter, and interpreter with bash and zsh support; includes shfmt | mvdan/sh | 2026 | 2026 |
| snyk | Snyk CLI scans and monitors your projects for security vulnerabilities | snyk/cli | 2026 | 2026 |
| sops | Simple and flexible tool for managing secrets | getsops/sops | 2026 | 2026 |
| step | 🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc | smallstep/cli | 2026 | 2026 |
| stripe-cli | A command-line tool for Stripe (runs as stripe) |
stripe/stripe-cli | 2026 | 2026 |
| subfinder | Fast passive subdomain enumeration tool | projectdiscovery/subfinder | 2026 | 2026 |
| subjack | DNS Takeover tool written in Go | haccer/subjack | 2026 | 2026 |
| syft | CLI tool and library for generating a Software Bill of Materials from container images and filesystems | anchore/syft | 2026 | 2026 |
| task | A fast, cross-platform build tool inspired by Make, designed for modern workflows | go-task/task | 2026 | 2026 |
| telnyx | CLI SDK for the Telnyx API | team-telnyx/telnyx-cli | 2026 | 2026 |
| tflint | A Pluggable Terraform Linter | terraform-linters/tflint | 2026 | 2026 |
| titus | High-performance secrets scanner. CLI, Go library, Burp Suite extension, and Chrome extension. 487 detection rules with live… | praetorian-inc/titus | 2026 | 2026 |
| tlsx | Fast and configurable TLS grabber focused on TLS based data collection | projectdiscovery/tlsx | 2026 | 2025 |
| traefik | The Cloud Native Application Proxy | traefik/traefik | 2026 | 2026 |
| tree-sitter | An incremental parsing system for programming tools | tree-sitter/tree-sitter | 2026 | 2026 |
| trufflehog | Find, verify, and analyze leaked credentials | trufflesecurity/trufflehog | 2026 | 2026 |
| ubi | The Universal Binary Installer | houseabsolute/ubi | 2026 | 2026 |
| uncover | Quickly discover exposed hosts on the internet using multiple search engines | projectdiscovery/uncover | 2026 | 2025 |
| usql | Universal command-line interface for SQL databases | xo/usql | 2026 | 2026 |
| uv | An extremely fast Python package and project manager, written in Rust | astral-sh/uv | 2026 | 2026 |
| vault | A tool for secrets management, encryption as a service, and privileged access management | hashicorp/vault | 2026 | 2026 |
| vhs | Your CLI home video recorder 📼 | charmbracelet/vhs | 2026 | 2026 |
| vt-cli | VirusTotal Command Line Interface (runs as vt) |
VirusTotal/vt-cli | 2026 | 2026 |
| vultr-cli | Official command line tool for Vultr services | vultr/vultr-cli | 2026 | 2026 |
| watchexec | Executes commands in response to file modifications | watchexec/watchexec | 2026 | 2026 |
| webanalyze | Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning | rverton/webanalyze | 2026 | 2026 |
| wizer | The WebAssembly Pre-Initializer | bytecodealliance/wizer | 2026 | 2026 |
| xh | Friendly and fast tool for sending HTTP requests | ducaale/xh | 2026 | 2025 |
| yq | yq is a portable command-line YAML, JSON, XML, CSV, TOML and properties processor | mikefarah/yq | 2026 | 2026 |
| zap | The ZAP by Checkmarx Core project | zaproxy/zaproxy | 2026 | 2026 |
Add plugins to your .prototools file:
[plugins]
lazygit = "source:https://raw.githubusercontent.com/binary64/proto-toml-plugins/main/lazygit/plugin.toml"
dive = "source:https://raw.githubusercontent.com/binary64/proto-toml-plugins/main/dive/plugin.toml"
bat = "source:https://raw.githubusercontent.com/binary64/proto-toml-plugins/main/bat/plugin.toml"
yq = "source:https://raw.githubusercontent.com/binary64/proto-toml-plugins/main/yq/plugin.toml"
sops = "source:https://raw.githubusercontent.com/binary64/proto-toml-plugins/main/sops/plugin.toml"Then install:
proto install lazygit
proto install divePin a version in .prototools:
[versions]
lazygit = "0.44.1"
yq = "4.52.5"Each plugin is a single plugin.toml following the proto TOML plugin schema. PRs welcome for new tools or fixes.