Static analysis for GitHub Actions

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for woodruffw from gravatar.com woodruffw
Meta

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT
  • Author: William Woodruff <william@yossarian.net>
  • Tags cli, github-actions, static-analysis, security
  • Requires: Python >=3.9

Project description

🌈 zizmor

CI Crates.io Packaging status GitHub Sponsors

zizmor is a static analysis tool for GitHub Actions.

It can find many common security issues in typical GitHub Actions CI/CD setups, including:

  • Template injection vulnerabilities, leading to attacker-controlled code execution
  • Accidental credential persistence and leakage
  • Excessive permission scopes and credential grants to runners
  • Impostor commits and confusable git references
  • ...and much more!

zizmor demo

See zizmor's documentation for installation steps, as well as a quickstart and detailed usage recipes.

License

zizmor is licensed under the MIT License.

Contributing

See our contributing guide!

The name?

Now you can have beautiful clean workflows!

Sponsors 💖

zizmor's development is supported by these amazing sponsors!


Astral

Star History

Star History Chart

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for woodruffw from gravatar.com woodruffw
Meta

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT
  • Author: William Woodruff <william@yossarian.net>
  • Tags cli, github-actions, static-analysis, security
  • Requires: Python >=3.9

Release history Release notifications | RSS feed

This version

1.5.2

1.5.1

1.5.0

1.4.1

1.4.0

1.3.1

1.3.0

1.2.2

1.2.1

1.2.0

1.1.1

1.1.0

1.0.1

1.0.0

0.10.0

0.9.2

0.9.1

0.9.0

0.8.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

zizmor-1.5.2.tar.gz (296.9 kB view details)

Uploaded Source

Built Distributions

zizmor-1.5.2-py3-none-win_amd64.whl (4.4 MB view details)

Uploaded Python 3 Windows x86-64

zizmor-1.5.2-py3-none-win32.whl (3.9 MB view details)

Uploaded Python 3 Windows x86

zizmor-1.5.2-py3-none-musllinux_1_2_x86_64.whl (4.9 MB view details)

Uploaded Python 3 musllinux: musl 1.2+ x86-64

zizmor-1.5.2-py3-none-musllinux_1_2_armv7l.whl (4.5 MB view details)

Uploaded Python 3 musllinux: musl 1.2+ ARMv7l

zizmor-1.5.2-py3-none-musllinux_1_2_aarch64.whl (4.6 MB view details)

Uploaded Python 3 musllinux: musl 1.2+ ARM64

zizmor-1.5.2-py3-none-manylinux_2_28_x86_64.whl (4.8 MB view details)

Uploaded Python 3 manylinux: glibc 2.28+ x86-64

zizmor-1.5.2-py3-none-manylinux_2_28_armv7l.whl (4.5 MB view details)

Uploaded Python 3 manylinux: glibc 2.28+ ARMv7l

zizmor-1.5.2-py3-none-manylinux_2_24_aarch64.whl (4.6 MB view details)

Uploaded Python 3 manylinux: glibc 2.24+ ARM64

zizmor-1.5.2-py3-none-macosx_11_0_arm64.whl (4.4 MB view details)

Uploaded Python 3 macOS 11.0+ ARM64

zizmor-1.5.2-py3-none-macosx_10_12_x86_64.whl (4.7 MB view details)

Uploaded Python 3 macOS 10.12+ x86-64

File details

Details for the file zizmor-1.5.2.tar.gz.

File metadata

  • Download URL: zizmor-1.5.2.tar.gz
  • Upload date:
  • Size: 296.9 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: maturin/1.8.3

File hashes

Hashes for zizmor-1.5.2.tar.gz
Algorithm Hash digest
SHA256 848f04c0d84b085dfb79c66951404372ebf9b3dd0c73076f1baac83db29e74e4
MD5 535559eb96702c0bfa1df1f501a6376a
BLAKE2b-256 c548a692769e2bbb62635d55849175849bb9fec2240d0a16e16bd28d8cfe314f

See more details on using hashes here.

File details

Details for the file zizmor-1.5.2-py3-none-win_amd64.whl.

File metadata

  • Download URL: zizmor-1.5.2-py3-none-win_amd64.whl
  • Upload date:
  • Size: 4.4 MB
  • Tags: Python 3, Windows x86-64
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: maturin/1.8.3

File hashes

Hashes for zizmor-1.5.2-py3-none-win_amd64.whl
Algorithm Hash digest
SHA256 86395dd985ed6bf9acffea8a900b30d8d4dd4c9e20421f16f2db7ad92299e24e
MD5 7a61fbfe39633844c0c8fa478842377a
BLAKE2b-256 9460837501b8fc475086f5f26c72fa77513cedb5f761744bca809fdc2ee68e6a

See more details on using hashes here.

File details

Details for the file zizmor-1.5.2-py3-none-win32.whl.

File metadata

  • Download URL: zizmor-1.5.2-py3-none-win32.whl
  • Upload date:
  • Size: 3.9 MB
  • Tags: Python 3, Windows x86
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: maturin/1.8.3

File hashes

Hashes for zizmor-1.5.2-py3-none-win32.whl
Algorithm Hash digest
SHA256 dcef697a88983e7ce6948df1603e2325e2cf5c523828af94615e6c432fa8d98a
MD5 bf31e5e258fe56ab4536991cfa677608
BLAKE2b-256 df0e9fd2a2e3bbc904878c74a4270aef61be8564f88d68a3dc6ebdc3e0ea2b81

See more details on using hashes here.

File details

Details for the file zizmor-1.5.2-py3-none-musllinux_1_2_x86_64.whl.

File metadata

File hashes

Hashes for zizmor-1.5.2-py3-none-musllinux_1_2_x86_64.whl
Algorithm Hash digest
SHA256 8c65b4dbc9690d3f0f5d9756ae0b5ca8d3dfb4f806d82a5195836a3b613ae996
MD5 0cd6339cfc2350be9b0013a437cedc8e
BLAKE2b-256 09468ba5dc116afd6105774ba527d66e7ecf635b2fdf56daddd18ef2933201e6

See more details on using hashes here.

File details

Details for the file zizmor-1.5.2-py3-none-musllinux_1_2_armv7l.whl.

File metadata

File hashes

Hashes for zizmor-1.5.2-py3-none-musllinux_1_2_armv7l.whl
Algorithm Hash digest
SHA256 506b355c693d40df01bdf26fd1dfcb41801af7b8c51767d4159efdc2655965c4
MD5 3a7276db32432f5fa8173ab638f881ab
BLAKE2b-256 3561777a1ac136d8f256d94f2f269baeb11a6874a9241953fd6694fd4eb5751c

See more details on using hashes here.

File details

Details for the file zizmor-1.5.2-py3-none-musllinux_1_2_aarch64.whl.

File metadata

File hashes

Hashes for zizmor-1.5.2-py3-none-musllinux_1_2_aarch64.whl
Algorithm Hash digest
SHA256 5e18b06af4208624ef707e7859b07539870ca26b74a89537e1a6bfba2e44fc9a
MD5 4fbb87fd4d3c7b87143c330e3e7e3461
BLAKE2b-256 4d806061f5d37cadd185c3e921bc20b8fcf34b262cad009911c50010b7e8d3d5

See more details on using hashes here.

File details

Details for the file zizmor-1.5.2-py3-none-manylinux_2_28_x86_64.whl.

File metadata

File hashes

Hashes for zizmor-1.5.2-py3-none-manylinux_2_28_x86_64.whl
Algorithm Hash digest
SHA256 0c5f656106c430748858ae459c41c9eed09a1e01e5f42015d80c8fe34740d173
MD5 2b527bebca370b011cb9bf7e768808d1
BLAKE2b-256 dc277fbb2e2ad2d33de12b15014b762d39b1529b94bcbfebf55b735e67e00bd4

See more details on using hashes here.

File details

Details for the file zizmor-1.5.2-py3-none-manylinux_2_28_armv7l.whl.

File metadata

File hashes

Hashes for zizmor-1.5.2-py3-none-manylinux_2_28_armv7l.whl
Algorithm Hash digest
SHA256 df1326fe9f9ddcbe9d862a97571c848276882d0ceeee39e18fcfc9ec5c66cd7b
MD5 5d8159768670222590c5d0ca52b9ecf7
BLAKE2b-256 b2044cdec1dff48ef4bb733344568d9d6a8a82cc655581787866cf38d999001a

See more details on using hashes here.

File details

Details for the file zizmor-1.5.2-py3-none-manylinux_2_24_aarch64.whl.

File metadata

File hashes

Hashes for zizmor-1.5.2-py3-none-manylinux_2_24_aarch64.whl
Algorithm Hash digest
SHA256 9d40780b19da7901423de80ccce083a8c0d2114e0cf6432aa20d8e60d15e97f6
MD5 8c87591d82057e257e38f40cf74e397d
BLAKE2b-256 cecf91527ae1e53e3be260545630e740bd34f5dfa566b23360dea5b07d15e4e5

See more details on using hashes here.

File details

Details for the file zizmor-1.5.2-py3-none-macosx_11_0_arm64.whl.

File metadata

File hashes

Hashes for zizmor-1.5.2-py3-none-macosx_11_0_arm64.whl
Algorithm Hash digest
SHA256 a40feabc2c043aca60f9edbd35a676d97d684af5b06ed61a7752869c79b3be30
MD5 46ce5b99d4968883b62c4d55e2748033
BLAKE2b-256 1f0a0a401630e9f98b8660c20a75cfb4995245c738da90d9bc1c3cd709da8a8a

See more details on using hashes here.

File details

Details for the file zizmor-1.5.2-py3-none-macosx_10_12_x86_64.whl.

File metadata

File hashes

Hashes for zizmor-1.5.2-py3-none-macosx_10_12_x86_64.whl
Algorithm Hash digest
SHA256 03b27c46d87e96a0acdf78190fbb674c174f67ded396c74dadd64d7c4ecba680
MD5 0d13e43ad47724c413aba4408f145bf9
BLAKE2b-256 5931f717638faf223776b239040574f67bfdeb2ef3279673c08a099a525c9f4f

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page