mirrors/zizmor
1
0
Fork 0
mirror of https://github.com/zizmorcore/zizmor.git synced 2025-12-23 08:47:33 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

fix: handle non-local shell definitions in obfuscation audit (#1418)

Browse source
This commit is contained in:
William Woodruff 2025-12-07 23:15:27 -05:00 committed by GitHub
parent 1e51d1fe9f
commit 26a7d434a2
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
15 changed files with 155 additions and 27 deletions
Download patch file Download diff file Expand all files Collapse all files

6
docs/release-notes.md
View file

@ -31,6 +31,12 @@ of `zizmor`.
* zizmor now produces more useful and less ambiguous spans for many findings,
particularly those from the [anonymous-definition] audit (#1416)
### Bug Fixes 🐛
* Fixed a bug where the [obfuscation] audit would crash if it encountered
a CMD shell that was defined outside of the current step block (i.e.
as a job or workflow default) (#1418)
## 1.18.0
### Enhancements 🌱