# 🌈 zizmor
[](https://github.com/woodruffw/zizmor/actions/workflows/ci.yml)
[](https://crates.io/crates/zizmor)
[](https://repology.org/project/zizmor/versions)
[](https://github.com/sponsors/woodruffw)
`zizmor` is a static analysis tool for GitHub Actions. It can find
many common security issues in typical GitHub Actions CI/CD setups.
> [!IMPORTANT]
> `zizmor` is currently in beta. You will encounter bugs; [please file them]!
See [`zizmor`'s documentation](https://woodruffw.github.io/zizmor/)
for [installation steps], as well as a [quickstart] and
[detailed usage recipes].
[please file them]: https://github.com/woodruffw/zizmor/issues/new?assignees=&labels=bug%2Ctriage&projects=&template=bug-report.yml&title=%5BBUG%5D%3A+
[installation steps]: https://woodruffw.github.io/zizmor/installation/
[quickstart]: https://woodruffw.github.io/zizmor/quickstart/
[detailed usage recipes]: https://woodruffw.github.io/zizmor/usage/
## License
`zizmor` is licensed under the [MIT License](./LICENSE).
## Contributing
See [our contributing guide!](./CONTRIBUTING.md)
## The name?
*[Now you can have beautiful clean workflows!]*
[Now you can have beautiful clean workflows!]: https://www.youtube.com/watch?v=ol7rxFCvpy8
## Star History
<a href="https://star-history.com/#woodruffw/zizmor&Date">
<picture>
<source media="(prefers-color-scheme: dark)" srcset="https://api.star-history.com/svg?repos=woodruffw/zizmor&type=Date&theme=dark" />
<source media="(prefers-color-scheme: light)" srcset="https://api.star-history.com/svg?repos=woodruffw/zizmor&type=Date" />
<img alt="Star History Chart" src="https://api.star-history.com/svg?repos=woodruffw/zizmor&type=Date" />
</picture>
</a>
Raw data
{
"_id": null,
"home_page": "https://github.com/woodruffw/zizmor",
"name": "zizmor",
"maintainer": null,
"docs_url": null,
"requires_python": null,
"maintainer_email": null,
"keywords": "cli, github-actions, static-analysis, security",
"author": "William Woodruff <william@yossarian.net>",
"author_email": "William Woodruff <william@yossarian.net>",
"download_url": "https://files.pythonhosted.org/packages/82/42/bc23e8d3a23eb9f9e7286204841dc2162ba261438e8e52a9647cf2e4aee3/zizmor-0.9.2.tar.gz",
"platform": null,
"description": "# \ud83c\udf08 zizmor\n\n[](https://github.com/woodruffw/zizmor/actions/workflows/ci.yml)\n[](https://crates.io/crates/zizmor)\n[](https://repology.org/project/zizmor/versions)\n[](https://github.com/sponsors/woodruffw)\n\n`zizmor` is a static analysis tool for GitHub Actions. It can find\nmany common security issues in typical GitHub Actions CI/CD setups.\n\n> [!IMPORTANT]\n> `zizmor` is currently in beta. You will encounter bugs; [please file them]!\n\n\n\nSee [`zizmor`'s documentation](https://woodruffw.github.io/zizmor/)\nfor [installation steps], as well as a [quickstart] and\n[detailed usage recipes].\n\n[please file them]: https://github.com/woodruffw/zizmor/issues/new?assignees=&labels=bug%2Ctriage&projects=&template=bug-report.yml&title=%5BBUG%5D%3A+\n\n[installation steps]: https://woodruffw.github.io/zizmor/installation/\n\n[quickstart]: https://woodruffw.github.io/zizmor/quickstart/\n\n[detailed usage recipes]: https://woodruffw.github.io/zizmor/usage/\n\n## License\n\n`zizmor` is licensed under the [MIT License](./LICENSE).\n\n## Contributing\n\nSee [our contributing guide!](./CONTRIBUTING.md)\n\n## The name?\n\n*[Now you can have beautiful clean workflows!]*\n\n[Now you can have beautiful clean workflows!]: https://www.youtube.com/watch?v=ol7rxFCvpy8\n\n## Star History\n\n<a href=\"https://star-history.com/#woodruffw/zizmor&Date\">\n <picture>\n <source media=\"(prefers-color-scheme: dark)\" srcset=\"https://api.star-history.com/svg?repos=woodruffw/zizmor&type=Date&theme=dark\" />\n <source media=\"(prefers-color-scheme: light)\" srcset=\"https://api.star-history.com/svg?repos=woodruffw/zizmor&type=Date\" />\n <img alt=\"Star History Chart\" src=\"https://api.star-history.com/svg?repos=woodruffw/zizmor&type=Date\" />\n </picture>\n</a>\n\n",
"bugtrack_url": null,
"license": "MIT",
"summary": "Static analysis for GitHub Actions",
"version": "0.9.2",
"project_urls": {
"Homepage": "https://github.com/woodruffw/zizmor",
"Source Code": "https://github.com/woodruffw/zizmor"
},
"split_keywords": [
"cli",
" github-actions",
" static-analysis",
" security"
],
"urls": [
{
"comment_text": null,
"digests": {
"blake2b_256": "32fe5294ea316c9ae034863718eff88cfd7d55a4d4e81321e3201b50c775b1ef",
"md5": "ac1f18be3956ded40c1318f934ed5952",
"sha256": "0de8648b9fabefe3f0a3f8623e9aa3e2de1bfa07a7841ea55bb6f0b6b7a876c8"
},
"downloads": -1,
"filename": "zizmor-0.9.2-py3-none-macosx_10_12_x86_64.whl",
"has_sig": false,
"md5_digest": "ac1f18be3956ded40c1318f934ed5952",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": null,
"size": 3904628,
"upload_time": "2024-12-15T15:24:20",
"upload_time_iso_8601": "2024-12-15T15:24:20.553128Z",
"url": "https://files.pythonhosted.org/packages/32/fe/5294ea316c9ae034863718eff88cfd7d55a4d4e81321e3201b50c775b1ef/zizmor-0.9.2-py3-none-macosx_10_12_x86_64.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": null,
"digests": {
"blake2b_256": "41d41e9565bab4b934c2f6925b07d5c7ef5176f16b5256360b337fe47dcc73c9",
"md5": "68f8dc18ea0eb24c7cbcd27df9362600",
"sha256": "6b1d3f4ede0db5b7f3e7984febd43eab37e85e0c9f9ce6691d256a1618d40ce9"
},
"downloads": -1,
"filename": "zizmor-0.9.2-py3-none-macosx_11_0_arm64.whl",
"has_sig": false,
"md5_digest": "68f8dc18ea0eb24c7cbcd27df9362600",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": null,
"size": 3658678,
"upload_time": "2024-12-15T15:24:16",
"upload_time_iso_8601": "2024-12-15T15:24:16.971665Z",
"url": "https://files.pythonhosted.org/packages/41/d4/1e9565bab4b934c2f6925b07d5c7ef5176f16b5256360b337fe47dcc73c9/zizmor-0.9.2-py3-none-macosx_11_0_arm64.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": null,
"digests": {
"blake2b_256": "351631239c43f511456f6a4765d447e7089f03f5bff77d4b8d7648babc9bca5a",
"md5": "bd890ccccabae2b5f682f3bf2a26ff94",
"sha256": "1994480ce7452bb68b4d73b6ec2091458da6642c280d20ed18bee96671f31d13"
},
"downloads": -1,
"filename": "zizmor-0.9.2-py3-none-manylinux_2_17_armv7l.manylinux2014_armv7l.whl",
"has_sig": false,
"md5_digest": "bd890ccccabae2b5f682f3bf2a26ff94",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": null,
"size": 3856037,
"upload_time": "2024-12-15T15:24:02",
"upload_time_iso_8601": "2024-12-15T15:24:02.314557Z",
"url": "https://files.pythonhosted.org/packages/35/16/31239c43f511456f6a4765d447e7089f03f5bff77d4b8d7648babc9bca5a/zizmor-0.9.2-py3-none-manylinux_2_17_armv7l.manylinux2014_armv7l.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": null,
"digests": {
"blake2b_256": "aa79d450d89dba2276f33c7bffce7c88c8062927e0ae8ebdd35b289d050d13ab",
"md5": "51bad947d99ea496b990de85afaeb89c",
"sha256": "b21629af65cdb30f2f9599c6136cc32a7ed045d8dfa959dae0c3ebfb61a44338"
},
"downloads": -1,
"filename": "zizmor-0.9.2-py3-none-manylinux_2_17_i686.manylinux2014_i686.whl",
"has_sig": false,
"md5_digest": "51bad947d99ea496b990de85afaeb89c",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": null,
"size": 3978829,
"upload_time": "2024-12-15T15:24:11",
"upload_time_iso_8601": "2024-12-15T15:24:11.483196Z",
"url": "https://files.pythonhosted.org/packages/aa/79/d450d89dba2276f33c7bffce7c88c8062927e0ae8ebdd35b289d050d13ab/zizmor-0.9.2-py3-none-manylinux_2_17_i686.manylinux2014_i686.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": null,
"digests": {
"blake2b_256": "48ba413aee08605e28fbcd73567c43c219bb185510fdafbba1caf459347235fd",
"md5": "5ae0060ee64d9cdc9f1888ac774e3705",
"sha256": "90c18c8a8fc1743eb3e73bf23895f814214500fa1d4797669a31bc99002e9bed"
},
"downloads": -1,
"filename": "zizmor-0.9.2-py3-none-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl",
"has_sig": false,
"md5_digest": "5ae0060ee64d9cdc9f1888ac774e3705",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": null,
"size": 4249270,
"upload_time": "2024-12-15T15:24:05",
"upload_time_iso_8601": "2024-12-15T15:24:05.715362Z",
"url": "https://files.pythonhosted.org/packages/48/ba/413aee08605e28fbcd73567c43c219bb185510fdafbba1caf459347235fd/zizmor-0.9.2-py3-none-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": null,
"digests": {
"blake2b_256": "400ada9ceecd41efcc8e50121f65b792eb7e3a6b47f4fca80eb977d0a3abd4bd",
"md5": "4c210441fe85c8ebce167a4e59bede81",
"sha256": "d14ce053f27ad54cef75f456edd9a71350dd8672e09f933cd077f97df451a089"
},
"downloads": -1,
"filename": "zizmor-0.9.2-py3-none-manylinux_2_17_s390x.manylinux2014_s390x.whl",
"has_sig": false,
"md5_digest": "4c210441fe85c8ebce167a4e59bede81",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": null,
"size": 5206973,
"upload_time": "2024-12-15T15:24:08",
"upload_time_iso_8601": "2024-12-15T15:24:08.152492Z",
"url": "https://files.pythonhosted.org/packages/40/0a/da9ceecd41efcc8e50121f65b792eb7e3a6b47f4fca80eb977d0a3abd4bd/zizmor-0.9.2-py3-none-manylinux_2_17_s390x.manylinux2014_s390x.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": null,
"digests": {
"blake2b_256": "b77c256d460f09d41c3a530832c75ff3aa772b01485f23b28bb32dd312e87da4",
"md5": "7378856f23fad8e1f4d48b823aaebc27",
"sha256": "fc2935c8bfbe0825ac0d9272c6e97195016586dffc9edaa67a92c15cb5657dd6"
},
"downloads": -1,
"filename": "zizmor-0.9.2-py3-none-manylinux_2_17_x86_64.manylinux2014_x86_64.whl",
"has_sig": false,
"md5_digest": "7378856f23fad8e1f4d48b823aaebc27",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": null,
"size": 4088894,
"upload_time": "2024-12-15T15:24:13",
"upload_time_iso_8601": "2024-12-15T15:24:13.547536Z",
"url": "https://files.pythonhosted.org/packages/b7/7c/256d460f09d41c3a530832c75ff3aa772b01485f23b28bb32dd312e87da4/zizmor-0.9.2-py3-none-manylinux_2_17_x86_64.manylinux2014_x86_64.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": null,
"digests": {
"blake2b_256": "0e69d13419f82bd0bd41b5b8bf728bbb4a20120d674bf01a4846037ded87f22f",
"md5": "58b7a1ed715105014b43be68d9de34e7",
"sha256": "7ab2af528099cb0d7a03d8838eafbc24f58a8700378da44f1026fa8368301589"
},
"downloads": -1,
"filename": "zizmor-0.9.2-py3-none-musllinux_1_2_aarch64.whl",
"has_sig": false,
"md5_digest": "58b7a1ed715105014b43be68d9de34e7",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": null,
"size": 3873175,
"upload_time": "2024-12-15T15:24:22",
"upload_time_iso_8601": "2024-12-15T15:24:22.620161Z",
"url": "https://files.pythonhosted.org/packages/0e/69/d13419f82bd0bd41b5b8bf728bbb4a20120d674bf01a4846037ded87f22f/zizmor-0.9.2-py3-none-musllinux_1_2_aarch64.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": null,
"digests": {
"blake2b_256": "9edd685cf0f88877da3f2b39aecefd8d434a59869aba162b3992a4474054bdbb",
"md5": "3556d37ab0cf7ad5fa8b876ae91b9010",
"sha256": "13b39c4f77eed58c81cc4079adedca501964fe289c60cd89e7e7c58e79af672d"
},
"downloads": -1,
"filename": "zizmor-0.9.2-py3-none-musllinux_1_2_armv7l.whl",
"has_sig": false,
"md5_digest": "3556d37ab0cf7ad5fa8b876ae91b9010",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": null,
"size": 3844784,
"upload_time": "2024-12-15T15:24:25",
"upload_time_iso_8601": "2024-12-15T15:24:25.468060Z",
"url": "https://files.pythonhosted.org/packages/9e/dd/685cf0f88877da3f2b39aecefd8d434a59869aba162b3992a4474054bdbb/zizmor-0.9.2-py3-none-musllinux_1_2_armv7l.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": null,
"digests": {
"blake2b_256": "cda19c67f088634a6ee642ec0e062aabd557ed2d028a582294b666176b9612c4",
"md5": "0bd0a0867a191517b898cabd7bd4ecfd",
"sha256": "dac0b4514bd7cd410f764e78b5d6fd9f5cb85f042ddb56ce921473bacdf881b5"
},
"downloads": -1,
"filename": "zizmor-0.9.2-py3-none-musllinux_1_2_i686.whl",
"has_sig": false,
"md5_digest": "0bd0a0867a191517b898cabd7bd4ecfd",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": null,
"size": 3925181,
"upload_time": "2024-12-15T15:24:27",
"upload_time_iso_8601": "2024-12-15T15:24:27.729940Z",
"url": "https://files.pythonhosted.org/packages/cd/a1/9c67f088634a6ee642ec0e062aabd557ed2d028a582294b666176b9612c4/zizmor-0.9.2-py3-none-musllinux_1_2_i686.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": null,
"digests": {
"blake2b_256": "a794c23a39de9463edc2108b536dc4ca5ffb888c9e5f705006e1eca520c8fd19",
"md5": "827e7123c1acf1fb4b3a5bdfc18cddda",
"sha256": "c9b2d68748d77c75fc8bafedd47799d756f009bead4985455e965dd5f1139d21"
},
"downloads": -1,
"filename": "zizmor-0.9.2-py3-none-musllinux_1_2_x86_64.whl",
"has_sig": false,
"md5_digest": "827e7123c1acf1fb4b3a5bdfc18cddda",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": null,
"size": 4156553,
"upload_time": "2024-12-15T15:24:31",
"upload_time_iso_8601": "2024-12-15T15:24:31.126073Z",
"url": "https://files.pythonhosted.org/packages/a7/94/c23a39de9463edc2108b536dc4ca5ffb888c9e5f705006e1eca520c8fd19/zizmor-0.9.2-py3-none-musllinux_1_2_x86_64.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": null,
"digests": {
"blake2b_256": "f757e3836694cfcd106ef0ebb7575582bf87f0f01d17e0726a9620323a611152",
"md5": "b57c1c7eb4e2c8b222607d12b963abe6",
"sha256": "bc5b5eb2b9f1260ba98d79da9277f31ef799a2f8cccf7766d785a91e44d68a57"
},
"downloads": -1,
"filename": "zizmor-0.9.2-py3-none-win32.whl",
"has_sig": false,
"md5_digest": "b57c1c7eb4e2c8b222607d12b963abe6",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": null,
"size": 3286777,
"upload_time": "2024-12-15T15:24:40",
"upload_time_iso_8601": "2024-12-15T15:24:40.441718Z",
"url": "https://files.pythonhosted.org/packages/f7/57/e3836694cfcd106ef0ebb7575582bf87f0f01d17e0726a9620323a611152/zizmor-0.9.2-py3-none-win32.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": null,
"digests": {
"blake2b_256": "e279dd6e69af7fc375dada1f865440753734c2618eb04e7a21ef291049554353",
"md5": "9356c91d46e7d7913c76b7442751535f",
"sha256": "794e9bd3ac51947ece9126c9a43e8bb36cf0fa37cc83805b5540e4cabaebf1ff"
},
"downloads": -1,
"filename": "zizmor-0.9.2-py3-none-win_amd64.whl",
"has_sig": false,
"md5_digest": "9356c91d46e7d7913c76b7442751535f",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": null,
"size": 3737662,
"upload_time": "2024-12-15T15:24:38",
"upload_time_iso_8601": "2024-12-15T15:24:38.280891Z",
"url": "https://files.pythonhosted.org/packages/e2/79/dd6e69af7fc375dada1f865440753734c2618eb04e7a21ef291049554353/zizmor-0.9.2-py3-none-win_amd64.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": null,
"digests": {
"blake2b_256": "8242bc23e8d3a23eb9f9e7286204841dc2162ba261438e8e52a9647cf2e4aee3",
"md5": "f2e6dea0c158f207f4ce1511eb3d767f",
"sha256": "a659bcc24ac075b6a166851f0aa9aa7ca587d0ff7e54f5c4358875740b4f9a94"
},
"downloads": -1,
"filename": "zizmor-0.9.2.tar.gz",
"has_sig": false,
"md5_digest": "f2e6dea0c158f207f4ce1511eb3d767f",
"packagetype": "sdist",
"python_version": "source",
"requires_python": null,
"size": 181695,
"upload_time": "2024-12-15T15:24:35",
"upload_time_iso_8601": "2024-12-15T15:24:35.631008Z",
"url": "https://files.pythonhosted.org/packages/82/42/bc23e8d3a23eb9f9e7286204841dc2162ba261438e8e52a9647cf2e4aee3/zizmor-0.9.2.tar.gz",
"yanked": false,
"yanked_reason": null
}
],
"upload_time": "2024-12-15 15:24:35",
"github": true,
"gitlab": false,
"bitbucket": false,
"codeberg": false,
"github_user": "woodruffw",
"github_project": "zizmor",
"travis_ci": false,
"coveralls": false,
"github_actions": true,
"lcname": "zizmor"
}
JSON
