mirrors/zizmor
1
0
Fork 0
mirror of https://github.com/zizmorcore/zizmor.git synced 2025-12-23 08:47:33 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
598 commits 6 branches 118 tags 18 MiB
Commit graph

598 commits

This branch
This branch
All branches
Author SHA1 Message Date
William Woodruff
71017267de
chore(docs): constrain permissions in workflow example (#781) 2025-05-11 02:24:57 -04:00
William Woodruff
c6428a53ea
chore(docs): bump trophies (#778) 
Signed-off-by: William Woodruff <william@yossarian.net>
 2025-05-10 00:20:05 +00:00
William Woodruff
b26815e26f
bugfix(ci): fix ZIZMOR_IMAGE for Docker builds (#777) 2025-05-10 00:15:19 +00:00
William Woodruff
b2804996c0
chore(docs): the great @zizmorcore renaming (#776) 2025-05-09 20:08:45 -04:00
William Woodruff
e8fb960d1d
chore(docs): bump trophies (#775) 
Signed-off-by: William Woodruff <william@yossarian.net>
 2025-05-09 22:29:22 +00:00
William Woodruff
9790cec272
chore(docs): more social links (#771) 2025-05-09 05:25:04 +00:00
William Woodruff
4431412276
chore(docs): change URL (#770) 2025-05-09 05:03:14 +00:00
William Woodruff
b5fc7c17bb
chore: switch to docs.zizmor.sh (#769) 2025-05-09 04:53:27 +00:00
William Woodruff
beba48976c
chore: prep for v1.7.0 release (#768) 2025-05-08 22:50:51 -04:00
William Woodruff
a542e7d205
chore(docs): update release notes (#767) 2025-05-09 02:41:14 +00:00
William Woodruff
a284f5866f
feat: tab completion (#765) 2025-05-08 16:40:01 -04:00
William Woodruff
d957f6e6e5
chore(docs): bump trophies (#763) 
Signed-off-by: William Woodruff <william@yossarian.net>
 2025-05-07 22:19:09 +00:00
William Woodruff
5a02ad248d
chore(docs): bump trophies (#761) 
Signed-off-by: William Woodruff <william@yossarian.net>
 2025-05-07 17:38:59 +00:00
William Woodruff
50c3d5a5cf
chore(docs): bump trophies (#760) 
Signed-off-by: William Woodruff <william@yossarian.net>
 2025-05-07 15:44:50 +00:00
William Woodruff
d151afcf01
chore(docs): mention @zizmorecore plans (#759) 2025-05-07 04:19:40 +00:00
William Woodruff
ebd5391495
chore(docs): add Discord badge to README and docs (#757) 2025-05-07 00:07:46 -04:00
William Woodruff
e63b72927e
chore: cleanup (#753) 2025-05-06 04:39:05 +00:00
William Woodruff
f420fa124d
refactor: remove old repo matching APIs (#752) 2025-05-05 23:31:30 -04:00
William Woodruff
3ab3cf8a8d
chore(docs): document repository patterns better (#751) 2025-05-05 22:37:32 -04:00
William Woodruff
ed489be3fc
feat: extend RepositoryUsesPattern to allow exact ref patterns (#750) 2025-05-05 21:58:45 -04:00
William Woodruff
2664fc59d8
feat: handle reducible index subexpressions (#748) 2025-05-05 10:08:55 -04:00
dependabot[bot]
7714e13917
chore(deps): bump the github-actions group with 3 updates (#747) 
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-05-05 09:52:39 -04:00
William Woodruff
87ec786488
chore: remove old TODO comment (#744) 2025-05-04 03:33:10 +00:00
William Woodruff
fb8e3f63f3
refactor: begin splitting out syntax/sema error handling (#734) 2025-05-03 04:22:35 +00:00
Travis Truman
a8baaa417a
docs: alpha sort audit doc contents by audit name (#741) 2025-05-02 14:38:27 -04:00
Travis Truman
69575bbd60
feat: emit pedantic finding for tagged OCI images (#740) 
Co-authored-by: William Woodruff <william@yossarian.net>
 2025-05-02 17:52:53 +00:00
William Woodruff
e7d8899eec
chore(docs): put examples in example blocks (#739) 
Signed-off-by: William Woodruff <william@yossarian.net>
 2025-05-02 16:40:32 +00:00
Travis Truman
58a6596c33
feat: add unpinned-container-images check (#733) 
Co-authored-by: William Woodruff <william@yossarian.net>
 2025-05-02 12:28:18 -04:00
Jan Holthuis
0effad5b06
New Audit unsound-contains: Checks for problematic contains() usage (#577) 
Co-authored-by: William Woodruff <william@yossarian.net>
 2025-05-02 05:14:09 +00:00
William Woodruff
4a9211a79c
bugfix: fix edge case in remote audit input collection (#731) 2025-05-01 10:52:33 -04:00
Marcono1234
d55fb35ff3
doc: mention insta --force-update-snapshots (#728) 2025-04-30 21:53:58 +00:00
Marcono1234
5c09c20cc9
chore: remove duplicate context (#729) 2025-04-30 21:08:06 +00:00
William Woodruff
4921e0029b
chore(docs): bump trophies (#727) 
Signed-off-by: William Woodruff <william@yossarian.net>
 2025-04-30 17:47:50 +00:00
William Woodruff
0cec95b08c
chore(deps): cargo update (#722) 2025-04-30 04:53:56 +00:00
William Woodruff
f55d31db7e
chore(ci): fix makefile target (#721) 2025-04-30 04:46:26 +00:00
William Woodruff
403df8a84c
chore(ci): add refresh-schemas workflow (#720) 2025-04-30 04:43:33 +00:00
William Woodruff
d5c3bcdeb3
feat: more informative error message (#719) 
Co-authored-by: reandreev <58111850+reandreev@users.noreply.github.com>
 2025-04-30 00:38:44 -04:00
Marcono1234
ebca08dd02
feat: new audit: stale-action-refs (#713) 
Co-authored-by: William Woodruff <william@yossarian.net>
 2025-04-30 03:07:37 +00:00
William Woodruff
d1ff64357b
chore(docs): bump trophies (#717) 
Signed-off-by: William Woodruff <william@yossarian.net>
 2025-04-30 02:59:10 +00:00
Marcono1234
68e76111f7
test: update snapshot expressions (#716) 2025-04-29 16:36:08 +00:00
William Woodruff
cf4918f6a7
chore(docs): bump trophies (#715) 
Signed-off-by: William Woodruff <william@yossarian.net>
 2025-04-29 16:23:47 +00:00
William Woodruff
c0cccc22de
chore(docs): bump trophies (#712) 
Signed-off-by: William Woodruff <william@yossarian.net>
 2025-04-29 15:08:18 +00:00
William Woodruff
27f820c7b9
bugfix: sarif: prefix ID, add rule names (#710) 2025-04-29 10:29:16 -04:00
William Woodruff
9cd012b752
chore(docs): bump trophies (#708) 
Signed-off-by: William Woodruff <william@yossarian.net>
 2025-04-29 02:41:23 +00:00
William Woodruff
ac7db15708
chore: models: remove pub(crate) from some fields (#707) 2025-04-29 02:37:17 +00:00
Marcono1234
7bde403f96
feat: further reduce step handling code duplication (#703) 
Co-authored-by: William Woodruff <william@yossarian.net>
 2025-04-29 02:32:50 +00:00
William Woodruff
f8ed4fee2b
chore(docs): bump trophies (#706) 2025-04-28 22:42:24 +00:00
William Woodruff
fd8bd06b2c
chore(docs): hash-pin setup-uv in usage.md (#705) 2025-04-28 21:25:57 +00:00
dependabot[bot]
77f1082b1e
chore(deps): bump insta from 1.42.2 to 1.43.0 in the cargo group (#702) 
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-04-28 12:41:39 -04:00
Marcono1234
837491f5ce
bugfix: fix e2e test failures on Windows (#696) 
Co-authored-by: William Woodruff <william@yossarian.net>
 2025-04-28 15:13:03 +00:00