Homebrew 6.0.0 introduces several major improvements since the 5.1.0 release, including a new tap trust security model, faster internal JSON API, and Linux sandboxing. The update also brings better defaults based on user survey results, enhanced brew bundle functionality, and initial support for macOS 27 (Golden Gate). These changes reflect ongoing efforts to improve both security and user experience.

The tap trust mechanism addresses a significant security concern by requiring explicit trust for third-party taps before executing their code. Since taps can contain arbitrary Ruby code, this prevents potential malicious or compromised repositories from running unchecked. The system flags untrusted taps, stops auto-tapping, and provides new commands like brew tap trust and brew trust with --json=v1 support for managing trusted sources.

Performance improvements include a ~30% faster brew leaves command and parallelized bottle tab fetching during upgrades. The internal JSON API, now the default, consolidates metadata into a single download for faster updates and reduced network traffic. Linux users benefit from Bubblewrap sandboxing for build, test, and postinstall phases, aligning with existing macOS sandboxing practices.

brew bundle gains parallel formula installation by default, npm and krew extensions, and Windows winget support. The release also deprecates several environment variables that are now default behaviors. With Intel macOS support moving to Tier 3 in September 2026 and full removal planned for 2027, Homebrew is positioning itself for Apple's transition to ARM-only systems.