macOS
Homebrewverified · 100%
brew install zizmorlocal Homebrew formula metadata
MacPortsverified · 94%
sudo port install zizmorMacPorts ports tree · security/zizmor/Portfile · source: api.github.com
安装
使用 Automic Vault 安装
Automic Vault
sudo av install brew:zizmorLinux
Alpine Linux apkverified · 92%
sudo apk add zizmorAlpine Linux edge package indexes · zizmor · source: dl-cdn.alpinelinux.org
Nixverified · 92%
nix profile install nixpkgs#zizmornixpkgs package indexes · pkgs/by-name/zi/zizmor/package.nix · source: api.github.com
Arch Linux pacmanverified · 92%
sudo pacman -S zizmorArch Linux sync databases · zizmor · source: geo.mirror.pkgbuild.com
openSUSE zypperverified · 92%
sudo zypper install zizmoropenSUSE Tumbleweed package metadata · zizmor · source: download.opensuse.org
Windows
Scoopverified · 92%
scoop install main/zizmorScoop official bucket manifest trees · bucket/zizmor.json · source: api.github.com
Windows Package Managerverified · 92%
winget install --id zizmor.zizmor -eWindows Package Manager source index · zizmor.zizmor · source: cdn.winget.microsoft.com
软件包管理器来源
平台说明
- 没有特定于此软件包的平台说明。
概览
软件包摘要
Find security issues in GitHub Actions setups
主页
命令和别名
- zizmor
安全态势
风险级别:green
no executable entrypoint in the package index.
Risk classifier
green risk · low confidence · appliance
Why
- no executable entrypoint in the package index
Signals
- metadata:no-indexed-executables
Install behavior
- No Homebrew post-install hook is recorded in formula metadata.
- Homebrew bottle metadata is available for 6 platform targets.
- Build metadata lists 2 build dependencies.
建议审查
在无人值守的代理使用前,请检查该工具是否读取明文凭据、写入远程状态、发布制品或调用插件。
可执行文件
已安装的可执行文件
| 命令 | 类型 | 暴露范围 | 备注 |
|---|---|---|---|
zizmor | cli | global executable |
新鲜度
版本和新鲜度
这些信号区分页生成时间、软件包管理器活动和上游发布比较。只有存在证据 URL 和可比较版本时,才会提示版本落后。
页面生成时间2026-06-10
管理器版本1.25.2
管理器更新时间2026-05-16
本地数据ok
上游current
检测到的最新版本v1.25.2
https://github.com/zizmorcore/zizmor
- okNo freshness warnings were generated.
安装元数据
软件包元数据
| Package key | brew:zizmor |
|---|---|
| Version | 1.25.2 |
| Package manager | Homebrew |
| Package manager page | https://formulae.brew.sh/formula/zizmor |
| Homepage | https://docs.zizmor.sh/ |
| Repository | https://github.com/zizmorcore/zizmor |
| Upstream docs | https://docs.zizmor.sh/ |
| License | MIT |
| Source archive | https://github.com/zizmorcore/zizmor/archive/refs/tags/v1.25.2.tar.gz |
| Last updated | 2026-05-16T07:44:20Z |
| Pulse | updated |
| Build dependencies | pkgconf, rust |
| Bottle | available (arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | not defined |
| Service | none declared |
registry facts
Source database details
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | zizmor |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
source database matches
Other package-manager records
Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.
Nix95%
zizmor
nix profile install nixpkgs#zizmor- normalized package name match
- Matched by: Zizmor
apk95%
zizmor 1.25.2-r0
A static analysis tool for GitHub Actions
https://github.com/zizmorcore/zizmor
sudo apk add zizmor- License: MIT
- Architecture: x86_64
- Source Package: zizmor
- 1 dependencies
- 1 provides
- normalized package name match
- Matched by: Zizmor
apk95%
zizmor-doc 1.25.2-r0
A static analysis tool for GitHub Actions (documentation)
https://github.com/zizmorcore/zizmor
sudo apk add zizmor-doc- License: MIT
- Architecture: x86_64
- Source Package: zizmor
- normalized package name match
- Matched by: Zizmor
pacman95%
zizmor 1.25.2-1
A static analysis tool for GitHub Actions
https://github.com/zizmorcore/zizmor
sudo pacman -S zizmor- License: MIT
- Architecture: x86_64
- 2 dependencies
- normalized package name match
- Matched by: Zizmor
zypper95%
zizmor 1.25.2-1.1
A static analysis tool for GitHub Actions
https://github.com/zizmorcore/zizmor
sudo zypper install zizmor- License: MIT
- Category: Unspecified
- Architecture: x86_64
- Source Package: zizmor
- 3 dependencies
- 2 provides
- normalized package name match
- Matched by: Zizmor
zypper95%
zizmor-bash-completion 1.25.2-1.1
Bash Completion for zizmor
https://github.com/zizmorcore/zizmor
sudo zypper install zizmor-bash-completion- License: MIT
- Category: System/Shells
- Architecture: noarch
- Source Package: zizmor
- 2 dependencies
- 1 provides
- normalized package name match
- Matched by: Zizmor
zypper95%
zizmor-fish-completion 1.25.2-1.1
Fish Completion for zizmor
https://github.com/zizmorcore/zizmor
sudo zypper install zizmor-fish-completion- License: MIT
- Category: System/Shells
- Architecture: noarch
- Source Package: zizmor
- 2 dependencies
- 1 provides
- normalized package name match
- Matched by: Zizmor
zypper95%
zizmor-zsh-completion 1.25.2-1.1
Zsh Completion for zizmor
https://github.com/zizmorcore/zizmor
sudo zypper install zizmor-zsh-completion- License: MIT
- Category: System/Shells
- Architecture: noarch
- Source Package: zizmor
- 2 dependencies
- 1 provides
- normalized package name match
- Matched by: Zizmor
MacPorts95%
zizmor
sudo port install zizmor- normalized package name match
- Matched by: Zizmor
Scoop95%
main/zizmor
scoop install main/zizmor- normalized package name match
- Matched by: Zizmor
winget95%
zizmor.zizmor
winget install --id zizmor.zizmor -e- normalized package name match
- Matched by: Zizmor
来源线索
由仓库数据生成
此页面由 av-web 从 scripts/generate-pkg-sqlite.py 生成的私有软件包 SQLite 工件提供。
使用的来源
- Geiger risk classifier
- Nucleus package database
- av.db category and tag curation
- cross-ecosystem install command graph
- external package-manager database matches
- package relationship graph
- package version freshness
- package-page enrichment