Lib.rs

Command line utilities
#github-actions #static-analysis #security #cli

app zizmor

Static analysis for GitHub Actions

by William Woodruff and 19 contributors

21 releases (9 breaking)

new 0.10.0 Dec 19, 2024
0.8.0 Dec 6, 2024
0.6.0 Nov 26, 2024

#30 in Command line utilities

Download history 508/week @ 2024-10-25 808/week @ 2024-11-01 674/week @ 2024-11-08 874/week @ 2024-11-15 646/week @ 2024-11-22 745/week @ 2024-11-29 1170/week @ 2024-12-06 925/week @ 2024-12-13

3,616 downloads per month

MIT license

225KB
5K SLoC

🌈 zizmor

CI Crates.io Packaging status GitHub Sponsors

zizmor is a static analysis tool for GitHub Actions. It can find many common security issues in typical GitHub Actions CI/CD setups.

[!IMPORTANT] zizmor is currently in beta. You will encounter bugs; please file them!

zizmor demo

See zizmor's documentation for installation steps, as well as a quickstart and detailed usage recipes.

License

zizmor is licensed under the MIT License.

Contributing

See our contributing guide!

The name?

Now you can have beautiful clean workflows!

Star History

Star History Chart

Dependencies

~39–53MB
~1M SLoC