Integrate zizmor with Vulnetix. Scan GitHub Actions workflows for security vulnerabilities like injection attacks, excessive permissions, and unsafe patterns.
GitHub Actions workflowsCLI toolSARIF
Install & scan
$ uv run --with zizmor zizmor --version $ uv run --with zizmor zizmor --format sarif .github/workflows/ > zizmor.sarif
Run zizmor in CI
Scan on every push and upload the results to Vulnetix:
- name: Run zizmor
run: |
pip install zizmor
zizmor --format sarif .github/workflows/ > zizmor.sarif
- name: Upload to Vulnetix
run: vulnetix upload --file zizmor.sarif
Centralise zizmor results in Vulnetix
Upload zizmor SARIF output to the Vulnetix platform to deduplicate findings, prioritise them with EPSS, CISA KEV and Coalition ESS exploit intelligence, and track remediation across every scanner in a single queue.