PyPI - zizmor - Versions diffs - 1.16.0__tar.gz → 1.16.1__tar.gz - Mend

zizmor 1.16.0tar.gz → 1.16.1tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of zizmor might be problematic. Click here for more details.

Files changed (497) hide show

{zizmor-1.16.0 → zizmor-1.16.1}/Cargo.lock RENAMED Viewed

@@ -3739,7 +3739,7 @@ checksum = "fdd20c5420375476fbd4394763288da7eb0cc0b8c11deed431a91562af7335d3"
 [[package]]
 name = "yamlpatch"
-version = "0.3.1"
+version = "0.4.0"
 dependencies = [
  "indexmap",
  "insta",
@@ -3879,7 +3879,7 @@ dependencies = [
 [[package]]
 name = "zizmor"
-version = "1.16.0"
+version = "1.16.1"
 dependencies = [
  "annotate-snippets",
  "anstream",

{zizmor-1.16.0 → zizmor-1.16.1}/Cargo.toml RENAMED Viewed

@@ -65,7 +65,7 @@ tree-sitter-bash = "0.25.0"
 tree-sitter-iter = { path = "crates/tree-sitter-iter", version = "0.0.2" }
 tree-sitter-powershell = "0.25.9"
 yamlpath = { path = "crates/yamlpath", version = "0.27.0" }
-yamlpatch = { path = "crates/yamlpatch", version = "0.3.1" }
+yamlpatch = { path = "crates/yamlpatch", version = "0.4.0" }
 tree-sitter-yaml = "0.7.2"
 tikv-jemallocator = "0.6"

{zizmor-1.16.0 → zizmor-1.16.1}/PKG-INFO RENAMED Viewed

@@ -1,10 +1,15 @@
 Metadata-Version: 2.4
 Name: zizmor
-Version: 1.16.0
+Version: 1.16.1
 License-File: LICENSE
+Summary: Static analysis for GitHub Actions
 Home-Page: https://docs.zizmor.sh
+Author: William Woodruff <william@yossarian.net>
+Author-email: William Woodruff <william@yossarian.net>
+License: MIT
 Requires-Python: >=3.9
 Description-Content-Type: text/markdown; charset=UTF-8; variant=GFM
+Project-URL: Source Code, https://github.com/zizmorcore/zizmor
 # 🌈 zizmor

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpatch/Cargo.toml RENAMED Viewed

@@ -1,6 +1,6 @@
 [package]
 name = "yamlpatch"
-version = "0.3.1"
+version = "0.4.0"
 description = "Comment and format-preserving YAML patch operations"
 repository = "https://github.com/zizmorcore/zizmor/tree/main/crates/yamlpatch"
 keywords = ["yaml", "patch"]

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/Cargo.toml RENAMED Viewed

@@ -1,7 +1,7 @@
 [package]
 name = "zizmor"
 description = "Static analysis for GitHub Actions"
-version = "1.16.0"
+version = "1.16.1"
 repository = "https://github.com/zizmorcore/zizmor"
 documentation = "https://docs.zizmor.sh"
 keywords = ["cli", "github-actions", "static-analysis", "security"]

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/github.rs RENAMED Viewed

@@ -148,6 +148,9 @@ pub(crate) enum ClientError {
     /// between listing and fetching it.
     #[error("couldn't fetch file {file} from {slug}: is the branch/tag being modified?")]
     FileTOCTOU { file: String, slug: String },
+    /// An accessed repository is missing or private.
+    #[error("can't access {owner}/{repo}: missing or you have no access")]
+    RepoMissingOrPrivate { owner: String, repo: String },
     /// Any of the errors above, wrapped from concurrent contexts.
     #[error(transparent)]
     Inner(#[from] Arc<ClientError>),
@@ -372,8 +375,20 @@ impl Client {
                     .body(req)
                     .basic_auth("x-access-token", Some(&self.token.0))
                     .send()
-                    .await?
-                    .error_for_status()?;
+                    .await?;
+                let resp = match resp.status() {
+                    StatusCode::OK => Ok(resp),
+                    // NOTE: Versions of zizmor prior to 1.16.0 would silently
+                    // skip private or missing repositories, as branch/tag lookups
+                    // were done as a binary present/absent check. This caused
+                    // false negatives.
+                    StatusCode::NOT_FOUND => Err(ClientError::RepoMissingOrPrivate {
+                        owner: owner.to_string(),
+                        repo: repo.to_string(),
+                    }),
+                    _ => Err(resp.error_for_status().unwrap_err().into()),
+                }?;
                 let mut remote_refs = vec![];
                 let content = resp.bytes().await?;

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/main.rs RENAMED Viewed

@@ -849,55 +849,57 @@ fn main() -> ExitCode {
                     Some(report)
                 }
-                Error::Collection(err @ CollectionError::InvalidInput(..)) => {
-                    let group = Group::with_title(Level::ERROR.primary_title(err.to_string()))
-                        .element(Level::HELP.message(format!(
-                            "valid inputs are files, directories, or GitHub {slug} slugs",
-                            slug = "user/repo[@ref]".green()
-                        )))
-                        .element(Level::HELP.message(format!(
-                            "examples: {ex1}, {ex2}, {ex3}, or {ex4}",
-                            ex1 = "path/to/workflow.yml".green(),
-                            ex2 = ".github/".green(),
-                            ex3 = "example/example".green(),
-                            ex4 = "example/example@v1.2.3".green()
-                        )));
-                    let renderer = Renderer::styled();
-                    let report = renderer.render(&[group]);
-                    Some(report)
-                }
-                Error::Collection(err @ CollectionError::NoGitHubClient(_)) => {
-                    let mut group = Group::with_title(Level::ERROR.primary_title(err.to_string()));
+                Error::Collection(err) => match err.inner() {
+                    CollectionError::DuplicateInput(..) => {
+                        let group = Group::with_title(Level::ERROR.primary_title(err.to_string()))
+                            .element(Level::HELP.message(format!(
+                                "valid inputs are files, directories, or GitHub {slug} slugs",
+                                slug = "user/repo[@ref]".green()
+                            )))
+                            .element(Level::HELP.message(format!(
+                                "examples: {ex1}, {ex2}, {ex3}, or {ex4}",
+                                ex1 = "path/to/workflow.yml".green(),
+                                ex2 = ".github/".green(),
+                                ex3 = "example/example".green(),
+                                ex4 = "example/example@v1.2.3".green()
+                            )));
+                        let renderer = Renderer::styled();
+                        let report = renderer.render(&[group]);
+                        Some(report)
+                    }
+                    CollectionError::NoGitHubClient(..) => {
+                        let mut group =
+                            Group::with_title(Level::ERROR.primary_title(err.to_string()));
-                    if app.offline {
-                        group = group
-                            .elements([Level::HELP
+                        if app.offline {
+                            group = group.elements([Level::HELP
                                 .message("remove --offline to audit remote repositories")]);
-                    } else if app.gh_token.is_none() {
-                        group = group
-                            .elements([Level::HELP
+                        } else if app.gh_token.is_none() {
+                            group = group.elements([Level::HELP
                                 .message("set a GitHub token with --gh-token or GH_TOKEN")]);
-                    }
-                    let renderer = Renderer::styled();
-                    let report = renderer.render(&[group]);
+                        }
-                    Some(report)
-                }
-                Error::Collection(err @ CollectionError::Yamlpath(_)) => {
-                    let group = Group::with_title(Level::ERROR.primary_title(err.to_string())).elements([
-                        Level::HELP.message("this typically indicates a bug in zizmor; please report it"),
-                        Level::HELP.message(
-                            "https://github.com/zizmorcore/zizmor/issues/new?template=bug-report.yml",
-                        ),
-                    ]);
-                    let renderer = Renderer::styled();
-                    let report = renderer.render(&[group]);
+                        let renderer = Renderer::styled();
+                        let report = renderer.render(&[group]);
-                    Some(report)
-                }
+                        Some(report)
+                    }
+                    CollectionError::Yamlpath(..) => {
+                        let group = Group::with_title(Level::ERROR.primary_title(err.to_string())).elements([
+                            Level::HELP.message("this typically indicates a bug in zizmor; please report it"),
+                            Level::HELP.message(
+                                "https://github.com/zizmorcore/zizmor/issues/new?template=bug-report.yml",
+                            ),
+                        ]);
+                        let renderer = Renderer::styled();
+                        let report = renderer.render(&[group]);
+                        Some(report)
+                    }
+                    _ => None,
+                },
                 _ => None,
             };

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/registry/input.rs RENAMED Viewed

@@ -93,6 +93,19 @@ pub(crate) enum CollectionError {
     NoInputs,
 }
+impl CollectionError {
+    /// Returns the "innermost" variant of this [`CollectionError`].
+    ///
+    /// In practice this is always `&self` *unless* this is an
+    /// `Inner` variant, in which case it recurses into the inner error.
+    pub(crate) fn inner(&self) -> &Self {
+        match self {
+            CollectionError::Inner(inner, _, _) => inner.inner(),
+            _ => self,
+        }
+    }
+}
 #[derive(Debug, Copy, Clone, Eq, Hash, PartialEq, Serialize, PartialOrd, Ord)]
 pub(crate) enum InputKind {
     /// A workflow file.

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/tests/integration/e2e.rs RENAMED Viewed

@@ -75,7 +75,7 @@ fn menagerie() -> Result<()> {
             .output(OutputMode::Both)
             .args(["--collect=all"])
             .input(input_under_test("e2e-menagerie"))
-            .run()?
+            .run()?,
     );
     Ok(())
@@ -367,3 +367,31 @@ fn issue_1207() -> Result<()> {
     Ok(())
 }
+/// Regression test for #1286.
+///
+/// Ensures that we produce a useful error when a user's input references
+/// a private (or missing) repository.
+#[cfg_attr(not(feature = "gh-token-tests"), ignore)]
+#[test]
+fn issue_1286() -> Result<()> {
+    insta::assert_snapshot!(
+        zizmor()
+            .expects_failure(true)
+            .output(OutputMode::Both)
+            .offline(false)
+            .input(input_under_test("issue-1286.yml"))
+            .run()?,
+        @r"
+    🌈 zizmor v@@VERSION@@
+    fatal: no audit was performed
+    ref-confusion failed on file://@@INPUT@@
+    Caused by:
+        0: couldn't list branches for woodruffw-experiments/this-does-not-exist
+        1: can't access woodruffw-experiments/this-does-not-exist: missing or you have no access
+    ",
+    );
+    Ok(())
+}

zizmor-1.16.1/crates/zizmor/tests/integration/test-data/issue-1286.yml ADDED Viewed

@@ -0,0 +1,19 @@
+# repro for #1286
+name: issue-1286-repro
+on: [push, pull_request]
+concurrency:
+  group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
+  cancel-in-progress: true
+permissions: {}
+jobs:
+  issue-1286-repro:
+    name: issue-1286-repro
+    runs-on: ubuntu-latest
+    steps:
+      - name: private
+        uses: woodruffw-experiments/this-does-not-exist@v1.0.0

{zizmor-1.16.0 → zizmor-1.16.1}/pyproject.toml RENAMED Viewed

@@ -6,7 +6,7 @@ build-backend = "maturin"
 # `uv run --only-group docs` from failing.
 [project]
 name = "zizmor"
-dynamic = ["version", "readme"]
+dynamic = ["version", "description", "readme", "urls", "authors", "license"]
 # Arbitrarily set to the oldest non-EOL Python.
 requires-python = ">=3.9"

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-expressions/Cargo.toml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-expressions/README.md RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-expressions/src/call.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-expressions/src/context.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-expressions/src/expr.pest RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-expressions/src/identifier.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-expressions/src/lib.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-expressions/src/literal.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-expressions/src/op.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/Cargo.toml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/LICENSE RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/README.md RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/src/action.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/src/common/expr.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/src/common.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/src/dependabot/mod.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/src/dependabot/v2.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/src/lib.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/src/workflow/event.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/src/workflow/job.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/src/workflow/mod.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-actions/gh-action-pip-audit.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-actions/gh-action-pypi-publish.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-actions/gh-action-sigstore-python.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-actions/no-input-output-descriptions.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-actions/setup-python.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-dependabot/homebrew-core.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-dependabot/v2/cooldown.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-dependabot/v2/cron-missing-cronjob.invalid.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-dependabot/v2/cronjob-on-daily.invalid.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-dependabot/v2/day-on-daily.invalid.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-dependabot/v2/devcontainers.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-dependabot/v2/grafana.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-dependabot/v2/pip-audit.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-dependabot/v2/sigstore-python.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-dependabot/v2/weekly-with-day.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/adafruit-circuitpython-run-tests.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/false-condition.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/gh-action-sigstore-python-selftest.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/git-annex-built-windows.yaml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/guacsec-guac-ci.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/homebrew-core-automerge-triggers.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/homebrew-core-dispatch-rebottle.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/intel-llvm-sycl-linux-run-tests.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/issue-35.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/jazzband-tablib-docs-lint.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/letsencrypt-boulder-boulder-ci.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/mhils-workflows-python-deploy.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/openbao-openbao-test-go.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/pip-api-test.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/pip-audit-ci.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/pip-audit-scorecards.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/pwn-requests.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/pyca-cryptography-ci.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/pypi-attestations-release.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/reusable-workflow-unpinned.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/rnpgp-rnp-centos-and-fedora.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/runs-on-expr.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/runs-on-group-only.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/scalar-trigger-type.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/vil02-puzzle_generator-check_examples.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/zizmor-issue-646.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/sample-workflows/zizmor-issue-650.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/test_action.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/test_dependabot_v2.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/github-actions-models/tests/test_workflow.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/subfeature/.gitignore RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/subfeature/Cargo.toml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/subfeature/LICENSE RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/subfeature/README.md RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/subfeature/src/lib.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/tree-sitter-iter/Cargo.toml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/tree-sitter-iter/README.md RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/tree-sitter-iter/src/lib.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpatch/LICENSE RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpatch/README.md RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpatch/src/lib.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpatch/tests/unit_tests.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpath/Cargo.toml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpath/LICENSE RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpath/README.md RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpath/src/lib.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpath/tests/integration_test.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpath/tests/testcases/anchors-basic.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpath/tests/testcases/anchors-list.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpath/tests/testcases/anchors-nested.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpath/tests/testcases/basic.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpath/tests/testcases/comments.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpath/tests/testcases/directives.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpath/tests/testcases/exact-features.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpath/tests/testcases/flow.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpath/tests/testcases/interceding-comment.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpath/tests/testcases/key-only-features.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/yamlpath/tests/testcases/quoted-key.yml RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/README.md RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/build.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/data/codeql-injection-sinks.json RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/data/context-capabilities.csv RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/anonymous_definition.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/artipacked.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/bot_conditions.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/cache_poisoning.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/concurrency_limits.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/dangerous_triggers.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/dependabot_cooldown.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/dependabot_execution.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/excessive_permissions.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/forbidden_uses.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/github_env.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/hardcoded_container_credentials.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/impostor_commit.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/insecure_commands.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/known_vulnerable_actions.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/mod.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/obfuscation.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/overprovisioned_secrets.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/ref_confusion.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/ref_version_mismatch.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/secrets_inherit.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/self_hosted_runner.rs RENAMED Viewed

File without changes

{zizmor-1.16.0 → zizmor-1.16.1}/crates/zizmor/src/audit/stale_action_refs.rs RENAMED Viewed

File without changes

zizmor 1.16.0__tar.gz → 1.16.1__tar.gz

Potentially problematic release.

zizmor 1.16.0tar.gz → 1.16.1tar.gz