Static analysis for GitHub Actions

These details have been verified by PyPI

Project links

Source Code

GitHub Statistics

Maintainers

woodruffw

Project description

🌈 zizmor

zizmor is a static analysis tool for GitHub Actions.

It can find many common security issues in typical GitHub Actions CI/CD setups, including:

Template injection vulnerabilities, leading to attacker-controlled code execution
Accidental credential persistence and leakage
Excessive permission scopes and credential grants to runners
Impostor commits and confusable git references
...and much more!

zizmor demo

See zizmor's documentation for installation steps, as well as a quickstart and detailed usage recipes.

License

zizmor is licensed under the MIT License.

Contributing

See our contributing guide!

The name?

Now you can have beautiful clean workflows!

Logo-level sponsors
Grafana Labs	Trail of Bits	Shipfox	Kusari

Name-level sponsors
Alexander Riccio

Star History

Project details

These details have been verified by PyPI

Project links

Source Code

GitHub Statistics

Maintainers

woodruffw

Release history Release notifications | RSS feed

This version

1.23.1

Mar 8, 2026

1.23.0

Mar 8, 2026

1.23.0rc7 pre-release

Mar 8, 2026

1.23.0rc6 pre-release

Mar 8, 2026

1.23.0rc5 pre-release

Feb 25, 2026

1.23.0rc1 pre-release

Feb 23, 2026

1.22.0

Jan 17, 2026

1.21.0

Jan 16, 2026

1.20.0

Jan 6, 2026

1.19.0

Dec 18, 2025

1.18.0

Nov 29, 2025

1.18.0rc3 pre-release

Nov 29, 2025

1.18.0rc2 pre-release

Nov 29, 2025

1.17.0

Nov 25, 2025

1.16.3

Nov 5, 2025

1.16.2

Nov 2, 2025

1.16.1

Oct 29, 2025

1.16.0

Oct 24, 2025

1.15.2

Oct 14, 2025

1.15.1

Oct 14, 2025

1.15.0

Oct 13, 2025

1.14.2

Sep 29, 2025

1.14.1

Sep 26, 2025

1.14.0

Sep 26, 2025

1.13.0

Sep 12, 2025

1.12.1

Aug 15, 2025

1.12.0

Aug 13, 2025

1.11.1rc1 pre-release

Jul 2, 2025

1.11.0

Jun 30, 2025

1.10.0

Jun 26, 2025

1.9.0

May 30, 2025

1.8.0

May 20, 2025

1.8.0rc2 pre-release

May 20, 2025

1.8.0rc1 pre-release

May 20, 2025

1.7.0

May 9, 2025

1.6.0

Apr 20, 2025

1.5.2

Mar 23, 2025

1.5.1

Mar 12, 2025

1.5.0

Mar 11, 2025

1.4.1

Feb 25, 2025

1.4.0

Feb 25, 2025

1.3.1

Feb 9, 2025

1.3.0

Jan 29, 2025

1.2.2

Jan 19, 2025

1.2.1

Jan 18, 2025

1.2.0

Jan 18, 2025

1.1.1

Jan 13, 2025

1.1.0

Jan 13, 2025

1.0.1

Jan 7, 2025

1.0.0

Jan 2, 2025

0.10.0

Dec 19, 2024

0.9.2

Dec 15, 2024

0.9.1

Dec 12, 2024

0.9.0

Dec 12, 2024

0.8.0

Dec 6, 2024

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

zizmor-1.23.1.tar.gz (463.9 kB view details)

Uploaded Mar 8, 2026 Source

Built Distributions

If you're not sure about the file name format, learn more about wheel file names.

The dropdown lists show the available interpreters, ABIs, and platforms. Enable javascript to be able to filter the list of wheel files.

zizmor-1.23.1-py3-none-win_amd64.whl (8.5 MB view details)

Uploaded Mar 8, 2026 Python 3Windows x86-64

zizmor-1.23.1-py3-none-win32.whl (7.5 MB view details)

Uploaded Mar 8, 2026 Python 3Windows x86

zizmor-1.23.1-py3-none-musllinux_1_2_x86_64.whl (9.3 MB view details)

Uploaded Mar 8, 2026 Python 3musllinux: musl 1.2+ x86-64

zizmor-1.23.1-py3-none-musllinux_1_2_armv7l.whl (8.3 MB view details)

Uploaded Mar 8, 2026 Python 3musllinux: musl 1.2+ ARMv7l

zizmor-1.23.1-py3-none-musllinux_1_2_aarch64.whl (8.8 MB view details)

Uploaded Mar 8, 2026 Python 3musllinux: musl 1.2+ ARM64

zizmor-1.23.1-py3-none-manylinux_2_28_x86_64.whl (9.2 MB view details)

Uploaded Mar 8, 2026 Python 3manylinux: glibc 2.28+ x86-64

zizmor-1.23.1-py3-none-manylinux_2_28_armv7l.whl (8.4 MB view details)

Uploaded Mar 8, 2026 Python 3manylinux: glibc 2.28+ ARMv7l

zizmor-1.23.1-py3-none-manylinux_2_24_aarch64.whl (8.8 MB view details)

Uploaded Mar 8, 2026 Python 3manylinux: glibc 2.24+ ARM64

zizmor-1.23.1-py3-none-macosx_11_0_arm64.whl (8.7 MB view details)

Uploaded Mar 8, 2026 Python 3macOS 11.0+ ARM64

zizmor-1.23.1-py3-none-macosx_10_12_x86_64.whl (9.1 MB view details)

Uploaded Mar 8, 2026 Python 3macOS 10.12+ x86-64

File details

Details for the file zizmor-1.23.1.tar.gz.

File metadata

Download URL: zizmor-1.23.1.tar.gz
Upload date: Mar 8, 2026
Size: 463.9 kB
Tags: Source
Uploaded using Trusted Publishing? Yes
Uploaded via: uv/0.10.9 {"installer":{"name":"uv","version":"0.10.9","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.23.1.tar.gz
Algorithm	Hash digest
SHA256	`eb9871f1de004d8c6e35ff403bd6a41c495062736e78b9c4a98988970c598639`
MD5	`8e16d088b2391b71f1f5769defccc1b0`
BLAKE2b-256	`9e58d0228b1332f001f905d3cdd288a878d339e740ef8a92c321696a7359bdcd`

See more details on using hashes here.

File details

Details for the file zizmor-1.23.1-py3-none-win_amd64.whl.

File metadata

Download URL: zizmor-1.23.1-py3-none-win_amd64.whl
Upload date: Mar 8, 2026
Size: 8.5 MB
Tags: Python 3, Windows x86-64
Uploaded using Trusted Publishing? Yes
Uploaded via: uv/0.10.9 {"installer":{"name":"uv","version":"0.10.9","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.23.1-py3-none-win_amd64.whl
Algorithm	Hash digest
SHA256	`dc9befe3c08fea7d0fa3a0bc98073fadf31a77f0572b1f7931e1ff300337fe11`
MD5	`a57386e1501011883aaa87d17bdc3e83`
BLAKE2b-256	`042514071ea8ab5ebde85391d27e9de060d8a31a44eea448aba8d8bdd30693b3`

See more details on using hashes here.

File details

Details for the file zizmor-1.23.1-py3-none-win32.whl.

File metadata

Download URL: zizmor-1.23.1-py3-none-win32.whl
Upload date: Mar 8, 2026
Size: 7.5 MB
Tags: Python 3, Windows x86
Uploaded using Trusted Publishing? Yes
Uploaded via: uv/0.10.9 {"installer":{"name":"uv","version":"0.10.9","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.23.1-py3-none-win32.whl
Algorithm	Hash digest
SHA256	`229c6b275941a18b03eef0ba5d24089dfbbe4fc34633a6b22bf924294ef69cde`
MD5	`55743a98fb458f427db2843a1a5051f4`
BLAKE2b-256	`fb2610f597f9b19ecd7bece2a1eb7d1ca1bd09d089d750d70365c76118056ec1`

See more details on using hashes here.

File details

Details for the file zizmor-1.23.1-py3-none-musllinux_1_2_x86_64.whl.

File metadata

Download URL: zizmor-1.23.1-py3-none-musllinux_1_2_x86_64.whl
Upload date: Mar 8, 2026
Size: 9.3 MB
Tags: Python 3, musllinux: musl 1.2+ x86-64
Uploaded using Trusted Publishing? Yes
Uploaded via: uv/0.10.9 {"installer":{"name":"uv","version":"0.10.9","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.23.1-py3-none-musllinux_1_2_x86_64.whl
Algorithm	Hash digest
SHA256	`cf0dc93171e9ae7b822041471715ea7a9f5ebefa6865ceb6d1a39729a982d770`
MD5	`c460fd957acc5647cf0684945d650428`
BLAKE2b-256	`28bb1c984e1474fcf5f08e5847838007668d2682e1fcbc109d481967736ab18f`

See more details on using hashes here.

File details

Details for the file zizmor-1.23.1-py3-none-musllinux_1_2_armv7l.whl.

File metadata

Download URL: zizmor-1.23.1-py3-none-musllinux_1_2_armv7l.whl
Upload date: Mar 8, 2026
Size: 8.3 MB
Tags: Python 3, musllinux: musl 1.2+ ARMv7l
Uploaded using Trusted Publishing? Yes
Uploaded via: uv/0.10.9 {"installer":{"name":"uv","version":"0.10.9","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.23.1-py3-none-musllinux_1_2_armv7l.whl
Algorithm	Hash digest
SHA256	`c62059c75100d0bc1a19cd95a6dce9b93ac5ab2e7d7bcdd974c51b2c5eb503e3`
MD5	`6897b0d03445876eabc1b10f37f417e2`
BLAKE2b-256	`a8ef818c68d9b407e3d02fbe7e39ad73750846d19afad50c4c9ad86455214fc2`

See more details on using hashes here.

File details

Details for the file zizmor-1.23.1-py3-none-musllinux_1_2_aarch64.whl.

File metadata

Download URL: zizmor-1.23.1-py3-none-musllinux_1_2_aarch64.whl
Upload date: Mar 8, 2026
Size: 8.8 MB
Tags: Python 3, musllinux: musl 1.2+ ARM64
Uploaded using Trusted Publishing? Yes
Uploaded via: uv/0.10.9 {"installer":{"name":"uv","version":"0.10.9","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.23.1-py3-none-musllinux_1_2_aarch64.whl
Algorithm	Hash digest
SHA256	`795e04dff47ca1d1b0af2d7a5d3a96909a18d5fa80548534951efb24af6ec83e`
MD5	`b42f2618d3ae86274eb9cb8ee01c8232`
BLAKE2b-256	`b60d4475ded1664262af70525700e158c3156653391770159d65cd80245fb68e`

See more details on using hashes here.

File details

Details for the file zizmor-1.23.1-py3-none-manylinux_2_28_x86_64.whl.

File metadata

Download URL: zizmor-1.23.1-py3-none-manylinux_2_28_x86_64.whl
Upload date: Mar 8, 2026
Size: 9.2 MB
Tags: Python 3, manylinux: glibc 2.28+ x86-64
Uploaded using Trusted Publishing? Yes
Uploaded via: uv/0.10.9 {"installer":{"name":"uv","version":"0.10.9","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.23.1-py3-none-manylinux_2_28_x86_64.whl
Algorithm	Hash digest
SHA256	`08233d0d25947e43ac92374f22383c04e43f351f44bc44d60b3c0695157c0f3e`
MD5	`d9e1ef5494bf1cd11156a6bafb161a45`
BLAKE2b-256	`d4a5a3784392aeaca14d65c5e5efa2795d887ba24db4871a942e06a99f90a3c8`

See more details on using hashes here.

File details

Details for the file zizmor-1.23.1-py3-none-manylinux_2_28_armv7l.whl.

File metadata

Download URL: zizmor-1.23.1-py3-none-manylinux_2_28_armv7l.whl
Upload date: Mar 8, 2026
Size: 8.4 MB
Tags: Python 3, manylinux: glibc 2.28+ ARMv7l
Uploaded using Trusted Publishing? Yes
Uploaded via: uv/0.10.9 {"installer":{"name":"uv","version":"0.10.9","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.23.1-py3-none-manylinux_2_28_armv7l.whl
Algorithm	Hash digest
SHA256	`08ae0d8f4d665f6cf9b475913c64d2193d52ffc6f02ce66d4dcfd1b92daf4f82`
MD5	`0e60e9f2768b9d197b4c8af0ea6cd580`
BLAKE2b-256	`3fe75ca6f7d56741b190c6d7d3721eb98c66e23fb68d64e6886c92993e049f36`

See more details on using hashes here.

File details

Details for the file zizmor-1.23.1-py3-none-manylinux_2_24_aarch64.whl.

File metadata

Download URL: zizmor-1.23.1-py3-none-manylinux_2_24_aarch64.whl
Upload date: Mar 8, 2026
Size: 8.8 MB
Tags: Python 3, manylinux: glibc 2.24+ ARM64
Uploaded using Trusted Publishing? Yes
Uploaded via: uv/0.10.9 {"installer":{"name":"uv","version":"0.10.9","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.23.1-py3-none-manylinux_2_24_aarch64.whl
Algorithm	Hash digest
SHA256	`19af913bb4bcd6dfeea41477fcf203d69e053f4b14a2b35690485c44ffa6c4a7`
MD5	`3ebd07e8f5de68ee9f1fdfea953438c9`
BLAKE2b-256	`e537322ec0e8b8d39a7de30290b754bd564c0b1c432d72f7b7aa011eca87cc7b`

See more details on using hashes here.

File details

Details for the file zizmor-1.23.1-py3-none-macosx_11_0_arm64.whl.

File metadata

Download URL: zizmor-1.23.1-py3-none-macosx_11_0_arm64.whl
Upload date: Mar 8, 2026
Size: 8.7 MB
Tags: Python 3, macOS 11.0+ ARM64
Uploaded using Trusted Publishing? Yes
Uploaded via: uv/0.10.9 {"installer":{"name":"uv","version":"0.10.9","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.23.1-py3-none-macosx_11_0_arm64.whl
Algorithm	Hash digest
SHA256	`82a7925bbdbc69713cbeb19ec90012cba3b92e3ace65ae60088e9604c5724182`
MD5	`b3c395c69cf5a77e920c47fcf9d19e1a`
BLAKE2b-256	`e343037b68a2d173a44286f27c5c47e219d8beba758a323e1642770956831732`

See more details on using hashes here.

File details

Details for the file zizmor-1.23.1-py3-none-macosx_10_12_x86_64.whl.

File metadata

Download URL: zizmor-1.23.1-py3-none-macosx_10_12_x86_64.whl
Upload date: Mar 8, 2026
Size: 9.1 MB
Tags: Python 3, macOS 10.12+ x86-64
Uploaded using Trusted Publishing? Yes
Uploaded via: uv/0.10.9 {"installer":{"name":"uv","version":"0.10.9","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.23.1-py3-none-macosx_10_12_x86_64.whl
Algorithm	Hash digest
SHA256	`85f222eb610379aeeea76e4dc616621fdae9f21db77d1b006820452cafa739eb`
MD5	`4d61feba0385ae2705f5fa1727e178cf`
BLAKE2b-256	`495732893d3370aa39f140934ee346a77aff1bc38d1de5248b9385dfcea612b7`

See more details on using hashes here.

zizmor 1.23.1

Navigation

Verified details

Project links

GitHub Statistics

Maintainers

Meta

Unverified details

Project links

Meta

Project description

🌈 zizmor

License

Contributing

The name?

Sponsors

Star History

Project details

Verified details

Project links

GitHub Statistics

Maintainers

Meta

Unverified details

Project links

Meta

Release history Release notifications | RSS feed

Download files

Source Distribution

Built Distributions

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes

File details

File metadata

File hashes