Closed ncoghlan closed 23 hours ago
Static security analysis tool for GitHub action configs: https://github.com/woodruffw/zizmor
(discovered via one of the other Python core developers running it on the CPython repo and reporting the results)
While #51 mostly implemented this CI feature, it can only be fully resolved once the repository has been published:
Static security analysis tool for GitHub action configs: https://github.com/woodruffw/zizmor
(discovered via one of the other Python core developers running it on the CPython repo and reporting the results)