zizmor
Configuration file for zizmor, a static analysis tool for GitHub Actions
| Type | object |
|---|---|
| File match |
**/zizmor.yml
**/zizmor.yaml
**/.github/zizmor.yml
**/.github/zizmor.yaml
|
| Schema URL | https://catalog.lintel.tools/schemas/github/zizmor/latest.json |
| Source | https://raw.githubusercontent.com/woodruffw/zizmor/main/support/zizmor.schema.json |
Validate with Lintel
npx @lintel/lintel checkConfiguration file for zizmor, a static analysis tool for GitHub Actions.
Properties
34 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Configuration for the dependabot-cooldown audit.
3 nested properties
Configuration for the dependabot-cooldown audit.
1 nested properties
The minimum acceptable default-days value for Dependabot's cooldown setting.
Settings beneath this value will produce findings.
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Configuration for the unpinned-uses audit.
3 nested properties
This configuration is reified into an UnpinnedUsesPolicies.
1 nested properties
A mapping of uses: patterns to policies.
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Definitions
Base configuration for all audit rules.
Configuration for the dependabot-cooldown audit.
The minimum acceptable default-days value for Dependabot's cooldown setting.
Settings beneath this value will produce findings.
Configuration for the dependabot-cooldown audit.
Configuration for the dependabot-cooldown audit.
1 nested properties
The minimum acceptable default-days value for Dependabot's cooldown setting.
Settings beneath this value will produce findings.
An allow or deny list of uses: patterns for the forbidden-uses audit.
Configuration for the forbidden-uses audit.
These patterns are ordered by specificity; more specific patterns should be listed first.
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Configuration for the dependabot-cooldown audit.
3 nested properties
Configuration for the dependabot-cooldown audit.
1 nested properties
The minimum acceptable default-days value for Dependabot's cooldown setting.
Settings beneath this value will produce findings.
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Configuration for the unpinned-uses audit.
3 nested properties
This configuration is reified into an UnpinnedUsesPolicies.
1 nested properties
A mapping of uses: patterns to policies.
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Base configuration for all audit rules.
2 nested properties
Configuration for the secrets-outside-env audit.
List of secret names excluded from the audit
[]Configuration for the secrets-outside-env audit.
This configuration is reified into an UnpinnedUsesPolicies.
A mapping of uses: patterns to policies.
Configuration for the unpinned-uses audit.
This configuration is reified into an UnpinnedUsesPolicies.
1 nested properties
A mapping of uses: patterns to policies.
A singular policy for a uses: reference.
Ignore rules are specified as filename.yml:line:col, where
line and col are optional 1-based indices. If line is
omitted, col must also be omitted.