Open Issues Need Help
View All on GitHub New audit: old(er) runs-on 6 days ago
enhancement good first issue new-audit
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis
New audit: repojacking 12 days ago
enhancement help wanted good first issue new-audit
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis
enhancement help wanted good first issue new-audit
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis
[META] Adding subfeatures to audits about 2 months ago
enhancement help wanted good first issue
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis
enhancement help wanted
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis
Feature: wrong value in ternary pattern 3 months ago
enhancement help wanted new-audit
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis
enhancement help wanted good first issue cli
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis
CLI: support `-` for reading from stdin 4 months ago
enhancement help wanted good first issue cli
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis
[BUG]: False positive template-injection 5 months ago
bug good first issue false-positive
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis
Feature: SARIF output loses native severity/confidence — Low and Medium both map to warning 5 months ago
enhancement good first issue
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis
[Docs]: Link to GitHub docs on token permissions in excessive-permissions audit no longer has the list of permissions 5 months ago
documentation help wanted good first issue
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis
Feature: Add to winget? 6 months ago
help wanted packaging downstream
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis
Audit idea: TOCTOU PR/branch checks 6 months ago
enhancement help wanted new-audit
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis
enhancement good first issue
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis
Perf/CI: Speed up Windows CI runs with "dev drive" 8 months ago
help wanted good first issue performance ci/cd
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis
enhancement help wanted
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis
enhancement help wanted good first issue cli
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis
Feature: Support custom cache-aware actions 10 months ago
enhancement help wanted
zizmorcore/zizmor
5.8K
Static analysis for GitHub Actions
Rust
#github-actions#security#security-tools#static-analysis