mirror of
https://github.com/zizmorcore/zizmor.git
synced 2025-12-23 08:47:33 +00:00
d4c5a62cfb
Some checks failed
CI / Lint (push) Has been cancelled
zizmor wheel builds for PyPI 🐍 / Build source distribution (push) Has been cancelled
Benchmark baseline / Continuous Benchmarking with Bencher (push) Has been cancelled
CI / Test (push) Has been cancelled
CI / Test site build (push) Has been cancelled
zizmor wheel builds for PyPI 🐍 / Build Linux wheels (manylinux) (push) Has been cancelled
zizmor wheel builds for PyPI 🐍 / Build Linux wheels (musllinux) (push) Has been cancelled
zizmor wheel builds for PyPI 🐍 / Build Windows wheels (push) Has been cancelled
zizmor wheel builds for PyPI 🐍 / Build macOS wheels (push) Has been cancelled
Deploy zizmor documentation site 🌐 / Deploy zizmor documentation to GitHub Pages 🌐 (push) Has been cancelled
GitHub Actions Security Analysis with zizmor 🌈 / Run zizmor 🌈 (push) Has been cancelled
zizmor wheel builds for PyPI 🐍 / Release (push) Has been cancelled
CI / All tests pass (push) Has been cancelled
58 lines
2.7 KiB
Text
58 lines
2.7 KiB
Text
Static analysis for GitHub Actions
|
|
|
|
Usage: zizmor [OPTIONS] <INPUTS>...
|
|
|
|
Arguments:
|
|
<INPUTS>... The inputs to audit
|
|
|
|
Options:
|
|
--lsp
|
|
Run in language server mode (EXPERIMENTAL)
|
|
-p, --pedantic
|
|
Emit 'pedantic' findings
|
|
--persona <PERSONA>
|
|
The persona to use while auditing [default: regular] [possible values: auditor, pedantic, regular]
|
|
-o, --offline
|
|
Perform only offline operations [env: ZIZMOR_OFFLINE=]
|
|
--gh-token <GH_TOKEN>
|
|
The GitHub API token to use [env: GH_TOKEN=]
|
|
--gh-hostname <GH_HOSTNAME>
|
|
The GitHub Server Hostname. Defaults to github.com [env: GH_HOST=] [default: github.com]
|
|
--no-online-audits
|
|
Perform only offline audits [env: ZIZMOR_NO_ONLINE_AUDITS=]
|
|
-v, --verbose...
|
|
Increase logging verbosity
|
|
-q, --quiet...
|
|
Decrease logging verbosity
|
|
--no-progress
|
|
Don't show progress bars, even if the terminal supports them
|
|
--format <FORMAT>
|
|
The output format to emit. By default, cargo-style diagnostics will be emitted [default: plain] [possible values: plain, json, json-v1, sarif, github]
|
|
--color <MODE>
|
|
Control the use of color in output [possible values: auto, always, never]
|
|
-c, --config <CONFIG>
|
|
The configuration file to load. This loads a single configuration file across all input groups, which may not be what you intend [env: ZIZMOR_CONFIG=]
|
|
--no-config
|
|
Disable all configuration loading
|
|
--no-exit-codes
|
|
Disable all error codes besides success and tool failure
|
|
--min-severity <MIN_SEVERITY>
|
|
Filter all results below this severity [possible values: informational, low, medium, high]
|
|
--min-confidence <MIN_CONFIDENCE>
|
|
Filter all results below this confidence [possible values: low, medium, high]
|
|
--cache-dir <CACHE_DIR>
|
|
The directory to use for HTTP caching. By default, a host-appropriate user-caching directory will be used
|
|
--collect <COLLECT>...
|
|
Control which kinds of inputs are collected for auditing [default: default] [possible values: all, default, workflows, actions, dependabot]
|
|
--strict-collection
|
|
Fail instead of warning on syntax and schema errors in collected inputs
|
|
--completions <SHELL>
|
|
Generate tab completion scripts for the specified shell [possible values: bash, elvish, fish, nushell, powershell, zsh]
|
|
--fix[=<MODE>]
|
|
Fix findings automatically, when available (EXPERIMENTAL) [possible values: safe, unsafe-only, all]
|
|
--thanks
|
|
Emit thank-you messages for zizmor's sponsors
|
|
-h, --help
|
|
Print help (see more with '--help')
|
|
-V, --version
|
|
Print version
|