Skills
.Work. You
Rest

zizmor

Official

Audit and fix GitHub Actions security issues.

Software Engineering#automation#workflow#security#audit#fix#github-actions#lint
AuthorNetcracker
Version1.0.0
Installs0

System Documentation

What problem does it solve?

Zizmor audits GitHub Actions workflow files and action.yml definitions for security vulnerabilities, then fixes violations to harden CI pipelines.

Core Features & Use Cases

  • Audits workflow and action.yml files for common zizmor rules and vulnerabilities.
  • Automatically fixes violations and provides guidance for safer configurations.
  • Use Case: When maintaining secure CI pipelines, run zizmor to identify and remediate insecure triggers, permissions, and secret handling.

Quick Start

Run zizmor on your repository to scan and automatically fix security violations in workflow and action.yml files.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: zizmor
Download link: https://github.com/Netcracker/qubership-workflow-hub/archive/main.zip#zizmor

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.