Static analysis for GitHub Actions
Verified details
These details have been verified by PyPIProject links
GitHub Statistics
Maintainers
Project description
🌈 zizmor
zizmor is a static analysis tool for GitHub Actions.
It can find many common security issues in typical GitHub Actions CI/CD setups, including:
- Template injection vulnerabilities, leading to attacker-controlled code execution
- Accidental credential persistence and leakage
- Excessive permission scopes and credential grants to runners
- Impostor commits and confusable
gitreferences - ...and much more!
See zizmor's documentation
for installation steps, as well as a quickstart and
detailed usage recipes.
License
zizmor is licensed under the MIT License.
Contributing
The name?
Now you can have beautiful clean workflows!
Sponsors 💖
zizmor's development is supported by these amazing sponsors!
Astral |
Star History
Project details
Verified details
These details have been verified by PyPIProject links
GitHub Statistics
Maintainers
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
zizmor-1.7.0.tar.gz
(351.2 kB
view details)
Built Distributions
File details
Details for the file zizmor-1.7.0.tar.gz.
File metadata
- Download URL: zizmor-1.7.0.tar.gz
- Upload date:
- Size: 351.2 kB
- Tags: Source
- Uploaded using Trusted Publishing? Yes
- Uploaded via: maturin/1.8.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 4f987f4b81ef740863db629391c55d1e7ad75723fc30325dfde63ab36537d6b0 |
|
| MD5 | cf4079618baddfc4dfddace6d2f17106 |
|
| BLAKE2b-256 | 6b9297f0a6a6bf69ace4ada490c993d208533a993b08bb70073a54334b9a2977 |
File details
Details for the file zizmor-1.7.0-py3-none-win_amd64.whl.
File metadata
- Download URL: zizmor-1.7.0-py3-none-win_amd64.whl
- Upload date:
- Size: 5.3 MB
- Tags: Python 3, Windows x86-64
- Uploaded using Trusted Publishing? Yes
- Uploaded via: maturin/1.8.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 6562fd039b4f40d94930bfb13e3a65e431fe76e85f87c6143d10c75e8a9c3187 |
|
| MD5 | db2e05b51b5a33ca3f3cab1aa3e7124b |
|
| BLAKE2b-256 | f42c95259c0a430d908c5d17e0b863a5c2442f8e3b4a63f9085ffdc77cde8d2f |
File details
Details for the file zizmor-1.7.0-py3-none-win32.whl.
File metadata
- Download URL: zizmor-1.7.0-py3-none-win32.whl
- Upload date:
- Size: 4.7 MB
- Tags: Python 3, Windows x86
- Uploaded using Trusted Publishing? Yes
- Uploaded via: maturin/1.8.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | e199bc49c1b2848ef28b083a3233eab7e289740d625b5e50b3e87de58cc06283 |
|
| MD5 | db38f2bbacfcda9db9021bb5b63566cb |
|
| BLAKE2b-256 | 4a48cabdf25a86906a471d02f1251021c4451c182d3b7aae063e79a8e1d78dc5 |
File details
Details for the file zizmor-1.7.0-py3-none-musllinux_1_2_x86_64.whl.
File metadata
- Download URL: zizmor-1.7.0-py3-none-musllinux_1_2_x86_64.whl
- Upload date:
- Size: 5.8 MB
- Tags: Python 3, musllinux: musl 1.2+ x86-64
- Uploaded using Trusted Publishing? Yes
- Uploaded via: maturin/1.8.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 489ae4e9085d5aa80b9ae40e118f6e94a52af020cc17dc3942b51835ee02445b |
|
| MD5 | 749796781adf597609fd424d22d175db |
|
| BLAKE2b-256 | 63c1f70581f79dc6ba4b738b7ccd69d56d92d4132271f2e37e004b060e7a5e98 |
File details
Details for the file zizmor-1.7.0-py3-none-musllinux_1_2_armv7l.whl.
File metadata
- Download URL: zizmor-1.7.0-py3-none-musllinux_1_2_armv7l.whl
- Upload date:
- Size: 5.4 MB
- Tags: Python 3, musllinux: musl 1.2+ ARMv7l
- Uploaded using Trusted Publishing? Yes
- Uploaded via: maturin/1.8.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 8320f78cf19a65b3e81794a731d64a155c24bc8614347ed946b066e3411bb9de |
|
| MD5 | 4c4a11daa25e706bd3f19ed1e4d63131 |
|
| BLAKE2b-256 | 2f0c0639262c387fd967dfc0bb6b8e2e32fcc3efc117b39f85f3d517475261fb |
File details
Details for the file zizmor-1.7.0-py3-none-musllinux_1_2_aarch64.whl.
File metadata
- Download URL: zizmor-1.7.0-py3-none-musllinux_1_2_aarch64.whl
- Upload date:
- Size: 5.4 MB
- Tags: Python 3, musllinux: musl 1.2+ ARM64
- Uploaded using Trusted Publishing? Yes
- Uploaded via: maturin/1.8.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | ca8a768db5dd267f985cf25515b99a4d893905fff05f4a45cecfc11dc84e4583 |
|
| MD5 | cd4e25b299422f9e272254a72e3a4262 |
|
| BLAKE2b-256 | 35ddb940fddcd618c430305eea34f5cf134fec6ebf0e38bc295ab622ac73bfd3 |
File details
Details for the file zizmor-1.7.0-py3-none-manylinux_2_28_x86_64.whl.
File metadata
- Download URL: zizmor-1.7.0-py3-none-manylinux_2_28_x86_64.whl
- Upload date:
- Size: 5.7 MB
- Tags: Python 3, manylinux: glibc 2.28+ x86-64
- Uploaded using Trusted Publishing? Yes
- Uploaded via: maturin/1.8.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | a7dd9fa77086836d4fc270372a4fed6273bb92287585388ba258ccd9f59c044f |
|
| MD5 | 4031a3d2d51368be1c01188f14a2cbd0 |
|
| BLAKE2b-256 | 53e4554d8db4e9edd3c53c3a721635592964fefc989744671437a1e8e1ed506c |
File details
Details for the file zizmor-1.7.0-py3-none-manylinux_2_28_armv7l.whl.
File metadata
- Download URL: zizmor-1.7.0-py3-none-manylinux_2_28_armv7l.whl
- Upload date:
- Size: 5.4 MB
- Tags: Python 3, manylinux: glibc 2.28+ ARMv7l
- Uploaded using Trusted Publishing? Yes
- Uploaded via: maturin/1.8.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 8dd087a01ac713b8980af73f294c696ebcaafde38bade9a3773a3f792169c4d7 |
|
| MD5 | f3275fe64a512b373fb0f6f8bce647ff |
|
| BLAKE2b-256 | 79747d8a7c961cae7d668fe16743e387df1b2d61bd2cbe1aa51e2e7d54af227d |
File details
Details for the file zizmor-1.7.0-py3-none-manylinux_2_24_aarch64.whl.
File metadata
- Download URL: zizmor-1.7.0-py3-none-manylinux_2_24_aarch64.whl
- Upload date:
- Size: 5.5 MB
- Tags: Python 3, manylinux: glibc 2.24+ ARM64
- Uploaded using Trusted Publishing? Yes
- Uploaded via: maturin/1.8.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 639d290d5074456542b6e5e275effe9565f88ffb24ef1088102bb7ca118ae7de |
|
| MD5 | 912cd288aaabb53b91d52428fe5756aa |
|
| BLAKE2b-256 | 48cc509a1221d4f592ebd33d9046a05df2c87e45174b92d1fb885178e1ea70a6 |
File details
Details for the file zizmor-1.7.0-py3-none-macosx_11_0_arm64.whl.
File metadata
- Download URL: zizmor-1.7.0-py3-none-macosx_11_0_arm64.whl
- Upload date:
- Size: 5.3 MB
- Tags: Python 3, macOS 11.0+ ARM64
- Uploaded using Trusted Publishing? Yes
- Uploaded via: maturin/1.8.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 405fd2679e180d6399f06b7eef5063f4b9df611b9a60807bcd0bd9d47df9a9b0 |
|
| MD5 | 29c876b44aef0f10c13df83589c003c7 |
|
| BLAKE2b-256 | 57bbd399592b9702c9df64f5a8622dd2c8ac4e5aa1c3bf3cf5c102745d4dddd7 |
File details
Details for the file zizmor-1.7.0-py3-none-macosx_10_12_x86_64.whl.
File metadata
- Download URL: zizmor-1.7.0-py3-none-macosx_10_12_x86_64.whl
- Upload date:
- Size: 5.6 MB
- Tags: Python 3, macOS 10.12+ x86-64
- Uploaded using Trusted Publishing? Yes
- Uploaded via: maturin/1.8.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 5973356825328fe7958366a0b02195710fb5ca9dc6dc48cfeebdd342929e59e8 |
|
| MD5 | 552090315848bc252ec9379eaa20b334 |
|
| BLAKE2b-256 | f1b7b03e5e1ade3172a8f715d9e235d941d1555926dd23882ee88b224a8ed1a0 |
