mirrors/zizmor
1
0
Fork 0
mirror of https://github.com/zizmorcore/zizmor.git synced 2025-12-23 08:47:33 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
779 commits 6 branches 118 tags 18 MiB
Commit graph

779 commits

This branch
This branch
All branches
Author SHA1 Message Date
William Woodruff
ed489be3fc
feat: extend RepositoryUsesPattern to allow exact ref patterns (#750) 2025-05-05 21:58:45 -04:00
William Woodruff
2664fc59d8
feat: handle reducible index subexpressions (#748) 2025-05-05 10:08:55 -04:00
dependabot[bot]
7714e13917
chore(deps): bump the github-actions group with 3 updates (#747) 
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-05-05 09:52:39 -04:00
William Woodruff
87ec786488
chore: remove old TODO comment (#744) 2025-05-04 03:33:10 +00:00
William Woodruff
fb8e3f63f3
refactor: begin splitting out syntax/sema error handling (#734) 2025-05-03 04:22:35 +00:00
Travis Truman
a8baaa417a
docs: alpha sort audit doc contents by audit name (#741) 2025-05-02 14:38:27 -04:00
Travis Truman
69575bbd60
feat: emit pedantic finding for tagged OCI images (#740) 
Co-authored-by: William Woodruff <william@yossarian.net>
 2025-05-02 17:52:53 +00:00
William Woodruff
e7d8899eec
chore(docs): put examples in example blocks (#739) 
Signed-off-by: William Woodruff <william@yossarian.net>
 2025-05-02 16:40:32 +00:00
Travis Truman
58a6596c33
feat: add unpinned-container-images check (#733) 
Co-authored-by: William Woodruff <william@yossarian.net>
 2025-05-02 12:28:18 -04:00
Jan Holthuis
0effad5b06
New Audit unsound-contains: Checks for problematic contains() usage (#577) 
Co-authored-by: William Woodruff <william@yossarian.net>
 2025-05-02 05:14:09 +00:00
William Woodruff
4a9211a79c
bugfix: fix edge case in remote audit input collection (#731) 2025-05-01 10:52:33 -04:00
Marcono1234
d55fb35ff3
doc: mention insta --force-update-snapshots (#728) 2025-04-30 21:53:58 +00:00
Marcono1234
5c09c20cc9
chore: remove duplicate context (#729) 2025-04-30 21:08:06 +00:00
William Woodruff
4921e0029b
chore(docs): bump trophies (#727) 
Signed-off-by: William Woodruff <william@yossarian.net>
 2025-04-30 17:47:50 +00:00
William Woodruff
0cec95b08c
chore(deps): cargo update (#722) 2025-04-30 04:53:56 +00:00
William Woodruff
f55d31db7e
chore(ci): fix makefile target (#721) 2025-04-30 04:46:26 +00:00
William Woodruff
403df8a84c
chore(ci): add refresh-schemas workflow (#720) 2025-04-30 04:43:33 +00:00
William Woodruff
d5c3bcdeb3
feat: more informative error message (#719) 
Co-authored-by: reandreev <58111850+reandreev@users.noreply.github.com>
 2025-04-30 00:38:44 -04:00
Marcono1234
ebca08dd02
feat: new audit: stale-action-refs (#713) 
Co-authored-by: William Woodruff <william@yossarian.net>
 2025-04-30 03:07:37 +00:00
William Woodruff
d1ff64357b
chore(docs): bump trophies (#717) 
Signed-off-by: William Woodruff <william@yossarian.net>
 2025-04-30 02:59:10 +00:00
Marcono1234
68e76111f7
test: update snapshot expressions (#716) 2025-04-29 16:36:08 +00:00
William Woodruff
cf4918f6a7
chore(docs): bump trophies (#715) 
Signed-off-by: William Woodruff <william@yossarian.net>
 2025-04-29 16:23:47 +00:00
William Woodruff
c0cccc22de
chore(docs): bump trophies (#712) 
Signed-off-by: William Woodruff <william@yossarian.net>
 2025-04-29 15:08:18 +00:00
William Woodruff
27f820c7b9
bugfix: sarif: prefix ID, add rule names (#710) 2025-04-29 10:29:16 -04:00
William Woodruff
9cd012b752
chore(docs): bump trophies (#708) 
Signed-off-by: William Woodruff <william@yossarian.net>
 2025-04-29 02:41:23 +00:00
William Woodruff
ac7db15708
chore: models: remove pub(crate) from some fields (#707) 2025-04-29 02:37:17 +00:00
Marcono1234
7bde403f96
feat: further reduce step handling code duplication (#703) 
Co-authored-by: William Woodruff <william@yossarian.net>
 2025-04-29 02:32:50 +00:00
William Woodruff
f8ed4fee2b
chore(docs): bump trophies (#706) 2025-04-28 22:42:24 +00:00
William Woodruff
fd8bd06b2c
chore(docs): hash-pin setup-uv in usage.md (#705) 2025-04-28 21:25:57 +00:00
dependabot[bot]
77f1082b1e
chore(deps): bump insta from 1.42.2 to 1.43.0 in the cargo group (#702) 
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-04-28 12:41:39 -04:00
Marcono1234
837491f5ce
bugfix: fix e2e test failures on Windows (#696) 
Co-authored-by: William Woodruff <william@yossarian.net>
 2025-04-28 15:13:03 +00:00
Marcono1234
9705382ba1
feat: reduce code duplication for workflow step handling (#697) 2025-04-28 11:10:45 -04:00
dependabot[bot]
22fd0c3435
chore(deps): bump the github-actions group with 4 updates (#701) 
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-04-28 11:08:04 -04:00
William Woodruff
d3b7eb86c1
chore(docs): update trophies (#700) 2025-04-27 23:27:19 +00:00
William Woodruff
b3094b1d2e
chore(docs): update trophies (#699) 2025-04-27 21:43:29 +00:00
Marcono1234
d9d91795cb
tests: check zizmor exit code (#698) 
Co-authored-by: William Woodruff <william@yossarian.net>
 2025-04-27 15:55:34 +00:00
William Woodruff
ee6f160a30
chore: github_api: deduplicate resp handling (#695) 2025-04-25 14:35:52 +00:00
William Woodruff
bc35a413e6
chore(docs): bump trophies (#694) 2025-04-24 18:37:04 +00:00
William Woodruff
20552e68c1
feat: github_api: improve 403 errors slightly (#693) 2025-04-24 14:31:38 -04:00
Marcono1234
1514afd84e
docs: extend remediation for dangerous-triggers (#692) 
Co-authored-by: William Woodruff <william@yossarian.net>
 2025-04-24 17:37:55 +00:00
William Woodruff
e0dfef80fe
feat: new audit: obfuscation (#683) 2025-04-23 21:32:48 +00:00
Marcono1234
2c1c91ce65
docs: recommend GitHubSecurityLab/actions-permissions (#688) 
Co-authored-by: William Woodruff <william@yossarian.net>
 2025-04-23 18:54:23 +00:00
William Woodruff
7b4e76e94b
chore(docs): clarify default rule in explicit config (#687) 2025-04-22 16:04:25 +00:00
dependabot[bot]
1b8b5d2613
chore(deps): bump the cargo group with 2 updates (#686) 2025-04-21 10:30:50 -04:00
dependabot[bot]
7e726e1eab
chore(deps): bump astral-sh/setup-uv in the github-actions group (#685) 
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-04-21 13:58:53 +00:00
William Woodruff
fb0e31e3c2
docs: bump trophies (#682) 2025-04-19 22:24:40 -04:00
William Woodruff
fb8520bdd5
chore: prep for release 1.6.0 (#681) 2025-04-19 22:13:28 -04:00
William Woodruff
9689f0e5fe
chore: bump github-actions-models to 0.28.1 (#679) 2025-04-18 15:35:30 -04:00
William Woodruff
d922717d80
feat: generalize RepositoryUsesPattern (#670) 2025-04-16 23:29:26 -04:00
William Woodruff
db3072104c
bugfix: template-injection: mark another context as safe (#675) 2025-04-16 19:02:27 +00:00