Skip to main content

Static analysis for GitHub Actions

Project description

🌈 zizmor

zizmor CI Crates.io Packaging status GitHub Sponsors Discord

zizmor is a static analysis tool for GitHub Actions.

It can find many common security issues in typical GitHub Actions CI/CD setups, including:

  • Template injection vulnerabilities, leading to attacker-controlled code execution
  • Accidental credential persistence and leakage
  • Excessive permission scopes and credential grants to runners
  • Impostor commits and confusable git references
  • ...and much more!

zizmor demo

See zizmor's documentation for installation steps, as well as a quickstart and detailed usage recipes.

License

zizmor is licensed under the MIT License.

Contributing

See our contributing guide!

The name?

Now you can have beautiful clean workflows!

Sponsors

zizmor's development is supported by these amazing sponsors!

Logo-level sponsors

Grafana Labs

Trail of Bits

Shipfox

Kusari

Tracebit

Name-level sponsors
Alexander Riccio Carol Willing

Want to see your name or logo above? Consider becoming a sponsor through one of the following:

Star History

Star History Chart

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

zizmor-1.26.0.tar.gz (535.2 kB view details)

Uploaded Source

Built Distributions

If you're not sure about the file name format, learn more about wheel file names.

zizmor-1.26.0-py3-none-win_amd64.whl (8.6 MB view details)

Uploaded Python 3Windows x86-64

zizmor-1.26.0-py3-none-win32.whl (7.5 MB view details)

Uploaded Python 3Windows x86

zizmor-1.26.0-py3-none-musllinux_1_2_x86_64.whl (9.4 MB view details)

Uploaded Python 3musllinux: musl 1.2+ x86-64

zizmor-1.26.0-py3-none-musllinux_1_2_armv7l.whl (8.4 MB view details)

Uploaded Python 3musllinux: musl 1.2+ ARMv7l

zizmor-1.26.0-py3-none-musllinux_1_2_aarch64.whl (8.9 MB view details)

Uploaded Python 3musllinux: musl 1.2+ ARM64

zizmor-1.26.0-py3-none-manylinux_2_28_x86_64.whl (9.3 MB view details)

Uploaded Python 3manylinux: glibc 2.28+ x86-64

zizmor-1.26.0-py3-none-manylinux_2_28_armv7l.whl (8.4 MB view details)

Uploaded Python 3manylinux: glibc 2.28+ ARMv7l

zizmor-1.26.0-py3-none-manylinux_2_24_aarch64.whl (8.8 MB view details)

Uploaded Python 3manylinux: glibc 2.24+ ARM64

zizmor-1.26.0-py3-none-macosx_11_0_arm64.whl (8.6 MB view details)

Uploaded Python 3macOS 11.0+ ARM64

zizmor-1.26.0-py3-none-macosx_10_12_x86_64.whl (9.1 MB view details)

Uploaded Python 3macOS 10.12+ x86-64

File details

Details for the file zizmor-1.26.0.tar.gz.

File metadata

  • Download URL: zizmor-1.26.0.tar.gz
  • Upload date:
  • Size: 535.2 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: uv/0.11.23 {"installer":{"name":"uv","version":"0.11.23","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.26.0.tar.gz
Algorithm Hash digest
SHA256 62f5f0def7bb560d78a32865b1bb22f86e349d4e7a44ba8b7ebb3090d1a3f39c
MD5 672a11e8c35a891970f3fccc00d07ef7
BLAKE2b-256 8ee7bee5ae0822380882fc95dc9f7017797ed197735e883493964c4b3dc3f03b

See more details on using hashes here.

File details

Details for the file zizmor-1.26.0-py3-none-win_amd64.whl.

File metadata

  • Download URL: zizmor-1.26.0-py3-none-win_amd64.whl
  • Upload date:
  • Size: 8.6 MB
  • Tags: Python 3, Windows x86-64
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: uv/0.11.23 {"installer":{"name":"uv","version":"0.11.23","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.26.0-py3-none-win_amd64.whl
Algorithm Hash digest
SHA256 c7e90726a07ed74b4ab08f053b6b1ed24d6670807efb5436a4fbbaa02f0ce2b0
MD5 567b4f786c141bac1908b8077ddb9850
BLAKE2b-256 5f8dad63683fdf92cc24aaefefb6bb5b69bdb163b3b23337882eac9c3f63663f

See more details on using hashes here.

File details

Details for the file zizmor-1.26.0-py3-none-win32.whl.

File metadata

  • Download URL: zizmor-1.26.0-py3-none-win32.whl
  • Upload date:
  • Size: 7.5 MB
  • Tags: Python 3, Windows x86
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: uv/0.11.23 {"installer":{"name":"uv","version":"0.11.23","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.26.0-py3-none-win32.whl
Algorithm Hash digest
SHA256 a13bc82b8e334c691a0af89b0acfcb841ede766bbac8009729241e7121c4f9a3
MD5 c46e8e06210aeff3ceb1d900af6fddfd
BLAKE2b-256 f2ff5b1de82489fe0129932ef52fa63df6d7cc68e53ec2f23f336025d1fd2ddf

See more details on using hashes here.

File details

Details for the file zizmor-1.26.0-py3-none-musllinux_1_2_x86_64.whl.

File metadata

  • Download URL: zizmor-1.26.0-py3-none-musllinux_1_2_x86_64.whl
  • Upload date:
  • Size: 9.4 MB
  • Tags: Python 3, musllinux: musl 1.2+ x86-64
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: uv/0.11.23 {"installer":{"name":"uv","version":"0.11.23","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.26.0-py3-none-musllinux_1_2_x86_64.whl
Algorithm Hash digest
SHA256 64425d8e8bbeebc203a4aae15968b0278ef3b10fe8551b6734ec7013b82491b6
MD5 6c916db2c62eec806b21e068d6887b9d
BLAKE2b-256 dea4512d4fb77462de562c9bfcb013fe2dbb9398ca6a943c42c1c11c05ef0cf0

See more details on using hashes here.

File details

Details for the file zizmor-1.26.0-py3-none-musllinux_1_2_armv7l.whl.

File metadata

  • Download URL: zizmor-1.26.0-py3-none-musllinux_1_2_armv7l.whl
  • Upload date:
  • Size: 8.4 MB
  • Tags: Python 3, musllinux: musl 1.2+ ARMv7l
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: uv/0.11.23 {"installer":{"name":"uv","version":"0.11.23","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.26.0-py3-none-musllinux_1_2_armv7l.whl
Algorithm Hash digest
SHA256 08265ede6e8490e02ed6640cc5cc25d82680bd8916ae0046dd531f426472a3cc
MD5 72dad16c392da7ab05e4a3ce49818674
BLAKE2b-256 1d67601b1acd5c9a096486f3c36c8ae905ac364424bbe64f89217fcb8b975b47

See more details on using hashes here.

File details

Details for the file zizmor-1.26.0-py3-none-musllinux_1_2_aarch64.whl.

File metadata

  • Download URL: zizmor-1.26.0-py3-none-musllinux_1_2_aarch64.whl
  • Upload date:
  • Size: 8.9 MB
  • Tags: Python 3, musllinux: musl 1.2+ ARM64
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: uv/0.11.23 {"installer":{"name":"uv","version":"0.11.23","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.26.0-py3-none-musllinux_1_2_aarch64.whl
Algorithm Hash digest
SHA256 1dc50f6a12203fb0b8477b84e83d401348772ae19edccf9c55a11f90ddbbe6b5
MD5 e3bf564f9947ee2a0f57e4daa15d7a20
BLAKE2b-256 1e293b78ad5f03992d60bfe412ff8cdc31206544f192759e3ab64de0b75db205

See more details on using hashes here.

File details

Details for the file zizmor-1.26.0-py3-none-manylinux_2_28_x86_64.whl.

File metadata

  • Download URL: zizmor-1.26.0-py3-none-manylinux_2_28_x86_64.whl
  • Upload date:
  • Size: 9.3 MB
  • Tags: Python 3, manylinux: glibc 2.28+ x86-64
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: uv/0.11.23 {"installer":{"name":"uv","version":"0.11.23","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.26.0-py3-none-manylinux_2_28_x86_64.whl
Algorithm Hash digest
SHA256 69c641999d4bb223501aec823bd62ae13f58b381866d4efe3c1e5c79d4220b95
MD5 ae73f6ac3969d295f9d74785ecf6b8e2
BLAKE2b-256 2887e00e67bd4186ed81e4150f8c57a73d498a51e532bae022bf726431035265

See more details on using hashes here.

File details

Details for the file zizmor-1.26.0-py3-none-manylinux_2_28_armv7l.whl.

File metadata

  • Download URL: zizmor-1.26.0-py3-none-manylinux_2_28_armv7l.whl
  • Upload date:
  • Size: 8.4 MB
  • Tags: Python 3, manylinux: glibc 2.28+ ARMv7l
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: uv/0.11.23 {"installer":{"name":"uv","version":"0.11.23","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.26.0-py3-none-manylinux_2_28_armv7l.whl
Algorithm Hash digest
SHA256 f9ee8fb5647589fa9976eb4714e9ff40c1ee852d2351f2042efd5a85b623dfcb
MD5 d9e4d3b969ca3201984236f999f8bcf1
BLAKE2b-256 ea0cad1d75d75244e26cbd77fdd88ef4a41dad33e4ccc4d04b2571eba5fceaec

See more details on using hashes here.

File details

Details for the file zizmor-1.26.0-py3-none-manylinux_2_24_aarch64.whl.

File metadata

  • Download URL: zizmor-1.26.0-py3-none-manylinux_2_24_aarch64.whl
  • Upload date:
  • Size: 8.8 MB
  • Tags: Python 3, manylinux: glibc 2.24+ ARM64
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: uv/0.11.23 {"installer":{"name":"uv","version":"0.11.23","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.26.0-py3-none-manylinux_2_24_aarch64.whl
Algorithm Hash digest
SHA256 7dc7c170834359cf9465207cffb13f3b5df24bb686b0e2cb4434cebc85feda68
MD5 e2a40c121c01ea1d2b6601d40d144fcb
BLAKE2b-256 f25417a8f8347c9356415ef0954d47b20bc3e89c459898259fe1f730659b7d13

See more details on using hashes here.

File details

Details for the file zizmor-1.26.0-py3-none-macosx_11_0_arm64.whl.

File metadata

  • Download URL: zizmor-1.26.0-py3-none-macosx_11_0_arm64.whl
  • Upload date:
  • Size: 8.6 MB
  • Tags: Python 3, macOS 11.0+ ARM64
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: uv/0.11.23 {"installer":{"name":"uv","version":"0.11.23","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.26.0-py3-none-macosx_11_0_arm64.whl
Algorithm Hash digest
SHA256 f918111bccc4f4e57836fe1be40850237e398ff4255973a551c56d586a601382
MD5 d454fd6442712e6ec279250c61025661
BLAKE2b-256 e7fc8eeec0c1231c324675ed6c7c4659c0a70ef1b1aa077f9bd75ccf9f6e6f7f

See more details on using hashes here.

File details

Details for the file zizmor-1.26.0-py3-none-macosx_10_12_x86_64.whl.

File metadata

  • Download URL: zizmor-1.26.0-py3-none-macosx_10_12_x86_64.whl
  • Upload date:
  • Size: 9.1 MB
  • Tags: Python 3, macOS 10.12+ x86-64
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: uv/0.11.23 {"installer":{"name":"uv","version":"0.11.23","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for zizmor-1.26.0-py3-none-macosx_10_12_x86_64.whl
Algorithm Hash digest
SHA256 f5dda742dd45f14bd3aca5a6e1882d549f310edc85c9a1d9a5a9f102a9c931c7
MD5 5b8bd4247dd6650e7ba69c07f91d1ef4
BLAKE2b-256 0f48183a491ec514a3e8adbb87df5fd95cf654f95ab70b4c04ec98d957b8ee26

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page