Install
winget install zizmor.zizmor
Click to copy
↓ Download Installer
About zizmor
zizmor is a static analysis tool for GitHub Actions. It can find many common security issues in typical GitHub Actions CI/CD setups, including: - Template injection vulnerabilities, leading to attacker-controlled code execution - Accidental credential persistence and leakage - Excessive permission scopes and credential grants to runners - Impostor commits and confusable git references - ...and much more!
Frequently Asked Questions
How do I install zizmor using winget?
Open Windows Terminal or PowerShell and run:
winget install zizmor.zizmor. Winget is built into Windows 10 (version 1809+) and Windows 11 — no separate download required.What is zizmor?
Static analysis for GitHub Actions.
Is zizmor free to download?
zizmor is available under the MIT license. Use the winget command above or click the download button to get the installer directly from the publisher.
How do I update zizmor with winget?
Run
winget upgrade zizmor.zizmor in Windows Terminal or PowerShell to update zizmor to the latest available version.What Windows versions support zizmor?
The installer for zizmor targets the x64 architecture. Check the publisher’s documentation for minimum Windows version requirements. Winget itself requires Windows 10 version 1809 or later.