zizmor-1.2.2-1.1 RPM for riscv64

From OpenSuSE Ports Tumbleweed for riscv64

zizmor is a static analysis tool for GitHub Actions. It can find many common
security issues in typical GitHub Actions CI/CD setups.

Provides

• zizmor
• bundled(rust-crate:Inflector)
• bundled(rust-crate:addr2line)
• bundled(rust-crate:adler2)
• bundled(rust-crate:aho-corasick)
• bundled(rust-crate:annotate-snippets)
• bundled(rust-crate:anstream)
• bundled(rust-crate:anstyle)
• bundled(rust-crate:anstyle-parse)
• bundled(rust-crate:anstyle-query)
• bundled(rust-crate:anyhow)
• bundled(rust-crate:arrayvec)
• bundled(rust-crate:async-trait)
• bundled(rust-crate:autocfg)
• bundled(rust-crate:backtrace)
• bundled(rust-crate:base64)
• bundled(rust-crate:base64)
• bundled(rust-crate:bincode)
• bundled(rust-crate:bitflags)
• bundled(rust-crate:block-buffer)
• bundled(rust-crate:byteorder)
• bundled(rust-crate:bytes)
• bundled(rust-crate:cacache)
• bundled(rust-crate:camino)
• bundled(rust-crate:cc)
• bundled(rust-crate:cfg-if)
• bundled(rust-crate:cfg_aliases)
• bundled(rust-crate:clap)
• bundled(rust-crate:clap-verbosity-flag)
• bundled(rust-crate:clap_builder)
• bundled(rust-crate:clap_derive)
• bundled(rust-crate:clap_lex)
• bundled(rust-crate:colorchoice)
• bundled(rust-crate:console)
• bundled(rust-crate:crc32fast)
• bundled(rust-crate:crypto-common)
• bundled(rust-crate:deranged)
• bundled(rust-crate:digest)
• bundled(rust-crate:displaydoc)
• bundled(rust-crate:either)
• bundled(rust-crate:equivalent)
• bundled(rust-crate:errno)
• bundled(rust-crate:etcetera)
• bundled(rust-crate:fastrand)
• bundled(rust-crate:filetime)
• bundled(rust-crate:flate2)
• bundled(rust-crate:fnv)
• bundled(rust-crate:form_urlencoded)
• bundled(rust-crate:futures)
• bundled(rust-crate:futures-channel)
• bundled(rust-crate:futures-core)
• bundled(rust-crate:futures-executor)
• bundled(rust-crate:futures-io)
• bundled(rust-crate:futures-macro)
• bundled(rust-crate:futures-sink)
• bundled(rust-crate:futures-task)
• bundled(rust-crate:futures-util)
• bundled(rust-crate:generic-array)
• bundled(rust-crate:getrandom)
• bundled(rust-crate:gimli)
• bundled(rust-crate:github-actions-models)
• bundled(rust-crate:hashbrown)
• bundled(rust-crate:heck)
• bundled(rust-crate:hex)
• bundled(rust-crate:home)
• bundled(rust-crate:http)
• bundled(rust-crate:http-body)
• bundled(rust-crate:http-body-util)
• bundled(rust-crate:http-cache)
• bundled(rust-crate:http-cache-reqwest)
• bundled(rust-crate:http-cache-semantics)
• bundled(rust-crate:http-serde)
• bundled(rust-crate:httparse)
• bundled(rust-crate:httpdate)
• bundled(rust-crate:human-panic)
• bundled(rust-crate:hyper)
• bundled(rust-crate:hyper-rustls)
• bundled(rust-crate:hyper-util)
• bundled(rust-crate:icu_collections)
• bundled(rust-crate:icu_locid)
• bundled(rust-crate:icu_locid_transform)
• bundled(rust-crate:icu_locid_transform_data)
• bundled(rust-crate:icu_normalizer)
• bundled(rust-crate:icu_normalizer_data)
• bundled(rust-crate:icu_properties)
• bundled(rust-crate:icu_properties_data)
• bundled(rust-crate:icu_provider)
• bundled(rust-crate:icu_provider_macros)
• bundled(rust-crate:idna)
• bundled(rust-crate:idna_adapter)
• bundled(rust-crate:indexmap)
• bundled(rust-crate:indicatif)
• bundled(rust-crate:ipnet)
• bundled(rust-crate:is_terminal_polyfill)
• bundled(rust-crate:itertools)
• bundled(rust-crate:itoa)
• bundled(rust-crate:lazy_static)
• bundled(rust-crate:libc)
• bundled(rust-crate:linux-raw-sys)
• bundled(rust-crate:litemap)
• bundled(rust-crate:log)
• bundled(rust-crate:matchers)
• bundled(rust-crate:memchr)
• bundled(rust-crate:memmap2)
• bundled(rust-crate:miette)
• bundled(rust-crate:miette-derive)
• bundled(rust-crate:mime)
• bundled(rust-crate:miniz_oxide)
• bundled(rust-crate:mio)
• bundled(rust-crate:nu-ansi-term)
• bundled(rust-crate:num-conv)
• bundled(rust-crate:number_prefix)
• bundled(rust-crate:object)
• bundled(rust-crate:once_cell)
• bundled(rust-crate:os_info)
• bundled(rust-crate:overload)
• bundled(rust-crate:owo-colors)
• bundled(rust-crate:percent-encoding)
• bundled(rust-crate:pest)
• bundled(rust-crate:pest_derive)
• bundled(rust-crate:pest_generator)
• bundled(rust-crate:pest_meta)
• bundled(rust-crate:pin-project-lite)
• bundled(rust-crate:pin-utils)
• bundled(rust-crate:portable-atomic)
• bundled(rust-crate:powerfmt)
• bundled(rust-crate:ppv-lite86)
• bundled(rust-crate:prettyplease)
• bundled(rust-crate:proc-macro2)
• bundled(rust-crate:quinn)
• bundled(rust-crate:quinn-proto)
• bundled(rust-crate:quinn-udp)
• bundled(rust-crate:quote)
• bundled(rust-crate:rand)
• bundled(rust-crate:rand_chacha)
• bundled(rust-crate:rand_core)
• bundled(rust-crate:reflink-copy)
• bundled(rust-crate:regex)
• bundled(rust-crate:regex-automata)
• bundled(rust-crate:regex-automata)
• bundled(rust-crate:regex-syntax)
• bundled(rust-crate:regex-syntax)
• bundled(rust-crate:reqwest)
• bundled(rust-crate:reqwest-middleware)
• bundled(rust-crate:ring)
• bundled(rust-crate:rustc-demangle)
• bundled(rust-crate:rustc-hash)
• bundled(rust-crate:rustix)
• bundled(rust-crate:rustls)
• bundled(rust-crate:rustls-pemfile)
• bundled(rust-crate:rustls-pki-types)
• bundled(rust-crate:rustls-webpki)
• bundled(rust-crate:rustversion)
• bundled(rust-crate:ryu)
• bundled(rust-crate:same-file)
• bundled(rust-crate:schemafy_core)
• bundled(rust-crate:schemafy_lib)
• bundled(rust-crate:serde)
• bundled(rust-crate:serde-sarif)
• bundled(rust-crate:serde_derive)
• bundled(rust-crate:serde_json)
• bundled(rust-crate:serde_spanned)
• bundled(rust-crate:serde_urlencoded)
• bundled(rust-crate:serde_yaml)
• bundled(rust-crate:sha-1)
• bundled(rust-crate:sha1)
• bundled(rust-crate:sha2)
• bundled(rust-crate:sharded-slab)
• bundled(rust-crate:shlex)
• bundled(rust-crate:slab)
• bundled(rust-crate:smallvec)
• bundled(rust-crate:socket2)
• bundled(rust-crate:ssri)
• bundled(rust-crate:stable_deref_trait)
• bundled(rust-crate:streaming-iterator)
• bundled(rust-crate:strsim)
• bundled(rust-crate:strum)
• bundled(rust-crate:strum_macros)
• bundled(rust-crate:subtle)
• bundled(rust-crate:syn)
• bundled(rust-crate:syn)
• bundled(rust-crate:sync_wrapper)
• bundled(rust-crate:synstructure)
• bundled(rust-crate:tar)
• bundled(rust-crate:tempfile)
• bundled(rust-crate:terminal-link)
• bundled(rust-crate:thiserror)
• bundled(rust-crate:thiserror)
• bundled(rust-crate:thiserror-impl)
• bundled(rust-crate:thiserror-impl)
• bundled(rust-crate:thread_local)
• bundled(rust-crate:time)
• bundled(rust-crate:time-core)
• bundled(rust-crate:time-macros)
• bundled(rust-crate:tinystr)
• bundled(rust-crate:tinyvec)
• bundled(rust-crate:tinyvec_macros)
• bundled(rust-crate:tokio)
• bundled(rust-crate:tokio-macros)
• bundled(rust-crate:tokio-rustls)
• bundled(rust-crate:tokio-stream)
• bundled(rust-crate:toml)
• bundled(rust-crate:toml_datetime)
• bundled(rust-crate:toml_edit)
• bundled(rust-crate:tower)
• bundled(rust-crate:tower-layer)
• bundled(rust-crate:tower-service)
• bundled(rust-crate:tracing)
• bundled(rust-crate:tracing-attributes)
• bundled(rust-crate:tracing-core)
• bundled(rust-crate:tracing-indicatif)
• bundled(rust-crate:tracing-log)
• bundled(rust-crate:tracing-subscriber)
• bundled(rust-crate:tree-sitter)
• bundled(rust-crate:tree-sitter-bash)
• bundled(rust-crate:tree-sitter-language)
• bundled(rust-crate:tree-sitter-powershell)
• bundled(rust-crate:tree-sitter-yaml)
• bundled(rust-crate:try-lock)
• bundled(rust-crate:typed-builder)
• bundled(rust-crate:typed-builder-macro)
• bundled(rust-crate:typenum)
• bundled(rust-crate:ucd-trie)
• bundled(rust-crate:unicode-ident)
• bundled(rust-crate:unicode-width)
• bundled(rust-crate:unicode-width)
• bundled(rust-crate:unsafe-libyaml)
• bundled(rust-crate:untrusted)
• bundled(rust-crate:uriparse)
• bundled(rust-crate:url)
• bundled(rust-crate:utf16_iter)
• bundled(rust-crate:utf8_iter)
• bundled(rust-crate:utf8parse)
• bundled(rust-crate:uuid)
• bundled(rust-crate:version_check)
• bundled(rust-crate:vt100)
• bundled(rust-crate:vte)
• bundled(rust-crate:vte_generate_state_changes)
• bundled(rust-crate:walkdir)
• bundled(rust-crate:want)
• bundled(rust-crate:webpki-roots)
• bundled(rust-crate:write16)
• bundled(rust-crate:writeable)
• bundled(rust-crate:xattr)
• bundled(rust-crate:xxhash-rust)
• bundled(rust-crate:yamlpath)
• bundled(rust-crate:yoke)
• bundled(rust-crate:yoke-derive)
• bundled(rust-crate:zerocopy)
• bundled(rust-crate:zerocopy-derive)
• bundled(rust-crate:zerofrom)
• bundled(rust-crate:zerofrom-derive)
• bundled(rust-crate:zeroize)
• bundled(rust-crate:zerovec)
• bundled(rust-crate:zerovec-derive)
• bundled(rust-crate:zizmor)
• zizmor(riscv-64)

Requires

• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.27)(64bit)
• libc.so.6(GLIBC_2.28)(64bit)
• libc.so.6(GLIBC_2.29)(64bit)
• libc.so.6(GLIBC_2.32)(64bit)
• libc.so.6(GLIBC_2.33)(64bit)
• libc.so.6(GLIBC_2.34)(64bit)
• libc.so.6(GLIBC_2.39)(64bit)
• libgcc_s.so.1()(64bit)
• libgcc_s.so.1(GCC_3.0)(64bit)
• libgcc_s.so.1(GCC_3.3)(64bit)
• libgcc_s.so.1(GCC_4.2.0)(64bit)
• libm.so.6()(64bit)
• libm.so.6(GLIBC_2.27)(64bit)
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsZstd) <= 5.4.18-1

License

MIT

Changelog

* Mon Jan 20 2025 opensuse_buildservice@ojkastl.de
  - Update to version 1.2.2:
    * chore: prep for 1.2.2 release (#476)
    * feat: improve error message when repo fetch fails (#475)
    * bugfix: special-case workflow_call in excessive-permissions
      (#473)
* Mon Jan 20 2025 opensuse_buildservice@ojkastl.de
  - Update to version 1.2.1:
    * chore: prep 1.2.1 (#470)
    * bugfix: generalize path prefix handling (#469)
    * chore(deps): bump astral-sh/setup-uv from 5.1.0 to 5.2.1 in the
      github-actions group (#467)
    * docs: try to fix the site (#466)
    * chore: remove site-requirements.txt (#465)
* Mon Jan 20 2025 opensuse_buildservice@ojkastl.de
  - Update to version 1.2.0:
    * chore: prep 1.2.0 (#464)
    * bugfix: bump github-actions-models (#463)
    * bugfix: parse multi-line expressions correctly (#461)
    * feat: bot-conditions (#460)
    * ci: pypi: try enabling aarch64 on an ARM runner (#457)
    * docs: typo (#456)
    * docs: add sponsors to README and site (#454)
    * bugfix: sarif: use absolute physical locations only (#453)
    * chore(docs): bump trophies (#451)
    * chore(docs): bump trophies (#450)
    * refactor: reduce invalid states in job APIs (#449)
    * fix: artipacked: check for stringy bools (#448)
    * docs: bump trophies (#446)
    * bugfix: mark another context as safe during injections (#445)
    * docs: bump trophies (#444)
    * docs: bump trophies (#443)
    * docs: bump trophies (#442)
    * refactor: make excessive-permissions more correct (#441)
    * docs: bump trophies (#440)
    * fix: don't flag local workflows in unpinned-uses (#439)
* Tue Jan 14 2025 opensuse_buildservice@ojkastl.de
  - Update to version 1.1.1:
    * chore: prep 1.1.1 (#438)
    * chore(deps): bump the cargo group with 4 updates (#434)
    * chore(deps): bump the github-actions group with 2 updates
      (#436)
    * fix: bump github-actions-models (#437)
    * docs: bump trophies (#430)
* Mon Jan 13 2025 opensuse_buildservice@ojkastl.de
  - Update to version 1.1.0:
    This release comes with one new audit (secrets-inherit), plus a
    slew of bugfixes and internal refactors that unblock future
    improvements!
    * Added
    - New audit: secrets-inherit detects use of secrets: inherit
      with reusable workflow calls (#408)
    * Improved
    - The template-injection audit now detects injections in calls
      to azure/cli and azure/powershell (#421)
    * Fixed
    - The template-injection audit no longer consider
      github.server_url dangerous (#412)
    - The template-injection audit no longer crashes when
      evaluating the static-ness of an environment for a uses: step
      (#420)
* Wed Jan 08 2025 opensuse_buildservice@ojkastl.de
  - Update to version 1.0.1:
    This is a small quality and bugfix release. Thank you to
    everybody who helped by reporting and shaking out bugs from our
    first stable release!
    * Improved
    - The github-env audit now detects dangerous writes to
      GITHUB_PATH, is more precise, and can produce multiple
      findings per run block (#391)
    * Fixed
    - workflow_call.secrets keys with missing values are now parsed
      correctly (#388)
    - The cache-poisoning audit no longer incorrectly treats
      docker/build-push-action as a publishing workflow is push:
      false is explicitly set (#389)
    - The template-injection audit no longer considers
      github.action_path to be a potentially dangerous expansion
      (#402)
    - The github-env audit no longer skips run: steps with
      non-trivial shell: stanzas (#403)
* Fri Jan 03 2025 Johannes Kastl <opensuse_buildservice@ojkastl.de>
  - new package zizmore: a static analysis tool for GitHub Actions

Files

/usr/bin/zizmor
/usr/share/doc/packages/zizmor
/usr/share/doc/packages/zizmor/README.md
/usr/share/licenses/zizmor
/usr/share/licenses/zizmor/LICENSE

Generated by rpm2html 1.8.1

Fabrice Bellet, Wed Jan 29 02:38:11 2025