zizmor: zizmor (Static analysis for GitHub Actions )
zizmor:
zizmor: zizmor is a static analysis tool for GitHub Actions. It can find many
zizmor: common security issues in typical GitHub Actions CI/CD setups,
zizmor: including:
zizmor: - Template injection vulnerabilities, leading to attacker-controlled
zizmor:   code execution
zizmor: - Accidental credential persistence and leakage
zizmor: - Excessive permission scopes and credential grants to runners
zizmor: - Impostor commits and confusable git references
zizmor: