Static analysis for GitHub Actions

These details have been verified by PyPI

Project links

Source Code

GitHub Statistics

Maintainers

woodruffw

These details have not been verified by PyPI

Project links

Homepage

Project description

🌈 zizmor

zizmor is a static analysis tool for GitHub Actions.

It can find many common security issues in typical GitHub Actions CI/CD setups, including:

Template injection vulnerabilities, leading to attacker-controlled code execution
Accidental credential persistence and leakage
Excessive permission scopes and credential grants to runners
Impostor commits and confusable git references
...and much more!

zizmor demo

See zizmor's documentation for installation steps, as well as a quickstart and detailed usage recipes.

License

zizmor is licensed under the MIT License.

Contributing

See our contributing guide!

The name?

Now you can have beautiful clean workflows!

Sponsors 💖

zizmor's development is supported by these amazing sponsors!

Logo-level sponsors
Astral	Grafana Labs	Trail of Bits

Name-level sponsors
Tenki Cloud

Is your name missing above? Consider becoming one of our sponsors through one of the following:

Star History

Project details

These details have been verified by PyPI

Project links

Source Code

GitHub Statistics

Maintainers

woodruffw

These details have not been verified by PyPI

Project links

Homepage

Release history Release notifications | RSS feed

1.11.1rc1 pre-release

Jul 2, 2025

This version

1.11.0

Jun 30, 2025

1.10.0

Jun 26, 2025

1.9.0

May 30, 2025

1.8.0

May 20, 2025

1.8.0rc2 pre-release

May 20, 2025

1.8.0rc1 pre-release

May 20, 2025

1.7.0

May 9, 2025

1.6.0

Apr 20, 2025

1.5.2

Mar 23, 2025

1.5.1

Mar 12, 2025

1.5.0

Mar 11, 2025

1.4.1

Feb 25, 2025

1.4.0

Feb 25, 2025

1.3.1

Feb 9, 2025

1.3.0

Jan 29, 2025

1.2.2

Jan 19, 2025

1.2.1

Jan 18, 2025

1.2.0

Jan 18, 2025

1.1.1

Jan 13, 2025

1.1.0

Jan 13, 2025

1.0.1

Jan 7, 2025

1.0.0

Jan 2, 2025

0.10.0

Dec 19, 2024

0.9.2

Dec 15, 2024

0.9.1

Dec 12, 2024

0.9.0

Dec 12, 2024

0.8.0

Dec 6, 2024

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

zizmor-1.11.0.tar.gz (319.0 kB view details)

Uploaded Jun 30, 2025 Source

Built Distributions

zizmor-1.11.0-py3-none-win_amd64.whl (6.4 MB view details)

Uploaded Jun 30, 2025 Python 3Windows x86-64

zizmor-1.11.0-py3-none-win32.whl (5.7 MB view details)

Uploaded Jun 30, 2025 Python 3Windows x86

zizmor-1.11.0-py3-none-musllinux_1_2_x86_64.whl (6.9 MB view details)

Uploaded Jun 30, 2025 Python 3musllinux: musl 1.2+ x86-64

zizmor-1.11.0-py3-none-musllinux_1_2_armv7l.whl (6.5 MB view details)

Uploaded Jun 30, 2025 Python 3musllinux: musl 1.2+ ARMv7l

zizmor-1.11.0-py3-none-musllinux_1_2_aarch64.whl (6.4 MB view details)

Uploaded Jun 30, 2025 Python 3musllinux: musl 1.2+ ARM64

zizmor-1.11.0-py3-none-manylinux_2_28_x86_64.whl (6.8 MB view details)

Uploaded Jun 30, 2025 Python 3manylinux: glibc 2.28+ x86-64

zizmor-1.11.0-py3-none-manylinux_2_28_armv7l.whl (6.4 MB view details)

Uploaded Jun 30, 2025 Python 3manylinux: glibc 2.28+ ARMv7l

zizmor-1.11.0-py3-none-manylinux_2_24_aarch64.whl (6.4 MB view details)

Uploaded Jun 30, 2025 Python 3manylinux: glibc 2.24+ ARM64

zizmor-1.11.0-py3-none-macosx_11_0_arm64.whl (6.2 MB view details)

Uploaded Jun 30, 2025 Python 3macOS 11.0+ ARM64

zizmor-1.11.0-py3-none-macosx_10_12_x86_64.whl (6.6 MB view details)

Uploaded Jun 30, 2025 Python 3macOS 10.12+ x86-64

File details

Details for the file zizmor-1.11.0.tar.gz.

File metadata

Download URL: zizmor-1.11.0.tar.gz
Upload date: Jun 30, 2025
Size: 319.0 kB
Tags: Source
Uploaded using Trusted Publishing? Yes
Uploaded via: maturin/1.9.0

File hashes

Hashes for zizmor-1.11.0.tar.gz
Algorithm	Hash digest
SHA256	`861cf4ec28df79903c18523c8084d2afe6b244baac133dcec06f696d0bcd7ba6`
MD5	`a096dde66114af1720ec7a6902588e9e`
BLAKE2b-256	`37ad7ac1cf709672ad111fca4c05431f1e324454495704565d740dac2d4c19d9`

See more details on using hashes here.

File details

Details for the file zizmor-1.11.0-py3-none-win_amd64.whl.

File metadata

Download URL: zizmor-1.11.0-py3-none-win_amd64.whl
Upload date: Jun 30, 2025
Size: 6.4 MB
Tags: Python 3, Windows x86-64
Uploaded using Trusted Publishing? Yes
Uploaded via: maturin/1.9.0

File hashes

Hashes for zizmor-1.11.0-py3-none-win_amd64.whl
Algorithm	Hash digest
SHA256	`c5a9021ebf353e76f2d93f25762cb4a51665db48f39a446ffff5db3af8fe6293`
MD5	`2a3491712109f7fecb5a4994a15c52d2`
BLAKE2b-256	`26a875d6a40a938f0132cc74dfbd29b5dce5bf2ff8fd8272db732c3520b0d5aa`

See more details on using hashes here.

File details

Details for the file zizmor-1.11.0-py3-none-win32.whl.

File metadata

Download URL: zizmor-1.11.0-py3-none-win32.whl
Upload date: Jun 30, 2025
Size: 5.7 MB
Tags: Python 3, Windows x86
Uploaded using Trusted Publishing? Yes
Uploaded via: maturin/1.9.0

File hashes

Hashes for zizmor-1.11.0-py3-none-win32.whl
Algorithm	Hash digest
SHA256	`f9d276aa71e24cae13c2d666fae90f1abd9af438c2e8fc351b3d083b3d437676`
MD5	`9919cc1109c796f87015026f4a5ef6a1`
BLAKE2b-256	`88887e0a7de108d3d7fdedf11dbdb80dd603945c3df3ad4afdb151c1dac70b63`

See more details on using hashes here.

File details

Details for the file zizmor-1.11.0-py3-none-musllinux_1_2_x86_64.whl.

File metadata

Download URL: zizmor-1.11.0-py3-none-musllinux_1_2_x86_64.whl
Upload date: Jun 30, 2025
Size: 6.9 MB
Tags: Python 3, musllinux: musl 1.2+ x86-64
Uploaded using Trusted Publishing? Yes
Uploaded via: maturin/1.9.0

File hashes

Hashes for zizmor-1.11.0-py3-none-musllinux_1_2_x86_64.whl
Algorithm	Hash digest
SHA256	`d8270027912b227216a9a38c837e6a070ea3a7a9ea062f6cbc88249a851c1a10`
MD5	`4bb5cb4e4660a547c21dde507334dc0a`
BLAKE2b-256	`d1a98125be81024fd055102582908e7bb595fb6ffd2dd4a681916e002d2396ba`

See more details on using hashes here.

File details

Details for the file zizmor-1.11.0-py3-none-musllinux_1_2_armv7l.whl.

File metadata

Download URL: zizmor-1.11.0-py3-none-musllinux_1_2_armv7l.whl
Upload date: Jun 30, 2025
Size: 6.5 MB
Tags: Python 3, musllinux: musl 1.2+ ARMv7l
Uploaded using Trusted Publishing? Yes
Uploaded via: maturin/1.9.0

File hashes

Hashes for zizmor-1.11.0-py3-none-musllinux_1_2_armv7l.whl
Algorithm	Hash digest
SHA256	`49e30e1a15e979841c87b7cb334fcf8e15460e303df650fe769e1f509dfe8e76`
MD5	`73f63ca4a0dcfcaf42b451b206741e86`
BLAKE2b-256	`a56d6eac288f6c7a5eb6658f8441bcef3039b2313c17b1aebff7d83f7d7b46ba`

See more details on using hashes here.

File details

Details for the file zizmor-1.11.0-py3-none-musllinux_1_2_aarch64.whl.

File metadata

Download URL: zizmor-1.11.0-py3-none-musllinux_1_2_aarch64.whl
Upload date: Jun 30, 2025
Size: 6.4 MB
Tags: Python 3, musllinux: musl 1.2+ ARM64
Uploaded using Trusted Publishing? Yes
Uploaded via: maturin/1.9.0

File hashes

Hashes for zizmor-1.11.0-py3-none-musllinux_1_2_aarch64.whl
Algorithm	Hash digest
SHA256	`1e8b5d75ca53a7f48dff3d6b991aaee3a7f5f7875d7d3134bbc04a91c8a464ea`
MD5	`c7723016b3a251a5f936323cec163920`
BLAKE2b-256	`bcdc1d4c94b0f47bd915ca3132cc6028ccdd02bde9d2130233c2a4450952cc69`

See more details on using hashes here.

File details

Details for the file zizmor-1.11.0-py3-none-manylinux_2_28_x86_64.whl.

File metadata

Download URL: zizmor-1.11.0-py3-none-manylinux_2_28_x86_64.whl
Upload date: Jun 30, 2025
Size: 6.8 MB
Tags: Python 3, manylinux: glibc 2.28+ x86-64
Uploaded using Trusted Publishing? Yes
Uploaded via: maturin/1.9.0

File hashes

Hashes for zizmor-1.11.0-py3-none-manylinux_2_28_x86_64.whl
Algorithm	Hash digest
SHA256	`1b15da53f9b4ded85435282c20c55a653b4b5c79872a63f63fc03d2e7474f041`
MD5	`ffb26a93606ebdd5318e730e5e22a7f0`
BLAKE2b-256	`6f203d93d9eade05acf3bcf00240995e1d2e31991312e3b4424e43a8b76e66b2`

See more details on using hashes here.

File details

Details for the file zizmor-1.11.0-py3-none-manylinux_2_28_armv7l.whl.

File metadata

Download URL: zizmor-1.11.0-py3-none-manylinux_2_28_armv7l.whl
Upload date: Jun 30, 2025
Size: 6.4 MB
Tags: Python 3, manylinux: glibc 2.28+ ARMv7l
Uploaded using Trusted Publishing? Yes
Uploaded via: maturin/1.9.0

File hashes

Hashes for zizmor-1.11.0-py3-none-manylinux_2_28_armv7l.whl
Algorithm	Hash digest
SHA256	`5b3c842fde26a8e05137736a78c836ba37706831a6fbf67111b33e39586d2003`
MD5	`71bda5b9b55249752973111a02eba9cb`
BLAKE2b-256	`63f238904965e3f0dd77a4d25d910fc8b2551353f990865b55663623b6d050b0`

See more details on using hashes here.

File details

Details for the file zizmor-1.11.0-py3-none-manylinux_2_24_aarch64.whl.

File metadata

Download URL: zizmor-1.11.0-py3-none-manylinux_2_24_aarch64.whl
Upload date: Jun 30, 2025
Size: 6.4 MB
Tags: Python 3, manylinux: glibc 2.24+ ARM64
Uploaded using Trusted Publishing? Yes
Uploaded via: maturin/1.9.0

File hashes

Hashes for zizmor-1.11.0-py3-none-manylinux_2_24_aarch64.whl
Algorithm	Hash digest
SHA256	`bde08b33ad6e57c8ff3b0a24fd1e3c06ec16f8dca4a754cab55833789894bc09`
MD5	`504a87ba7c892cf8feb9f07f214a34b5`
BLAKE2b-256	`09a83b677626b6bd20e5c6a281efea7c7ee2475ec4b766bafafd00fcb604b10d`

See more details on using hashes here.

File details

Details for the file zizmor-1.11.0-py3-none-macosx_11_0_arm64.whl.

File metadata

Download URL: zizmor-1.11.0-py3-none-macosx_11_0_arm64.whl
Upload date: Jun 30, 2025
Size: 6.2 MB
Tags: Python 3, macOS 11.0+ ARM64
Uploaded using Trusted Publishing? Yes
Uploaded via: maturin/1.9.0

File hashes

Hashes for zizmor-1.11.0-py3-none-macosx_11_0_arm64.whl
Algorithm	Hash digest
SHA256	`9b6732c92eac7de521c074ae4fdcee11d5887f56cbaf2d2f345ec9746122fe6d`
MD5	`e82ef97177cfa266d0f7420610bb21cf`
BLAKE2b-256	`de46989438f7e95e80609d8747951ba660693cbe28420da263e1f29081e7ca76`

See more details on using hashes here.

File details

Details for the file zizmor-1.11.0-py3-none-macosx_10_12_x86_64.whl.

File metadata

Download URL: zizmor-1.11.0-py3-none-macosx_10_12_x86_64.whl
Upload date: Jun 30, 2025
Size: 6.6 MB
Tags: Python 3, macOS 10.12+ x86-64
Uploaded using Trusted Publishing? Yes
Uploaded via: maturin/1.9.0

File hashes

Hashes for zizmor-1.11.0-py3-none-macosx_10_12_x86_64.whl
Algorithm	Hash digest
SHA256	`3697e0b5f531dafccb1c4e1adb5db0c15c403136afec351a30385321b423f392`
MD5	`01db3147fd92cd4ddaf146991a54150c`
BLAKE2b-256	`19cdf6ccea71d9df20c25ccee4c0d9a989a3ea24b3f2ca5910816be49342328e`

See more details on using hashes here.

zizmor 1.11.0

Navigation

Verified details

Project links

GitHub Statistics

Maintainers

Meta

Unverified details

Project links

Meta

Project description

🌈 zizmor

License

Contributing

The name?

Sponsors 💖

Star History

Project details

Verified details

Project links

GitHub Statistics

Maintainers

Meta

Unverified details

Project links

Meta

Release history Release notifications | RSS feed

Download files

Source Distribution

Built Distributions

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes