1 Repo
Capabilities to disable specific rules, ignore file locations, or remap severity levels for security audits.
Distinct from Custom Severity Levels: Focuses on customizing the behavior of a security auditor, not general tool themes or network timeouts.
Explore 1 awesome GitHub repository matching security & cryptography · Audit Behavior Customization. Refine with filters or upvote what's useful.
Zizmor is a security linter and static analysis tool designed to audit GitHub Actions workflow files. It functions as a CI/CD security scanner that identifies security vulnerabilities, misconfigurations, and software supply chain risks within automation pipelines. The project distinguishes itself by providing an automated workflow remediator that applies security fixes to identified vulnerabilities. It also implements a language server for integration with code editors and supports a variety of analysis personas to scale the sensitivity and volume of reported findings. The tool covers a broa
Adjusts analysis by disabling specific rules, ignoring findings at precise file locations, or remapping severity levels.