Trophy case 🏆🔗
zizmor's objective is to detect CI/CD security issues that could compromise
the software we all rely on.
This page documents key examples where zizmor helped make big projects more
secure!
Give yourself a trophy!
Do you contribute to or maintain a big (>100 star) project that had its GitHub
Actions security improved by zizmor?
Add it to our list!
-
DataDog/datadog-agent
-
Diaoul/subliminal
-
Homebrew/brew
-
Instagram/LibCST
-
NLnetLabs/unbound
-
NetApp/harvest
-
PyO3/pyo3
-
adafruit/circuitpython
-
astral-sh/ruff
-
astropy/astropy
-
cakephp/cakephp
-
curl/curl-for-win
-
curl/curl
-
danmar/cppcheck
-
esl/MongooseIM
-
ethereum/hevm
-
girlbossceo/conduwuit
-
guacsec/guac
-
hugovk/em-keyboard
-
hugovk/norwegianblue
-
hugovk/pypistats
-
hynek/argon2-cffi
-
hynek/doc2dash
-
hynek/environ-config
-
hynek/hatch-fancy-pypi-readme
-
hynek/pem
-
hynek/prometheus-async
-
hynek/stamina
-
hynek/structlog
-
marcusvolz/strava_py
-
matplotlib/matplotlib
-
mne-tools/mne-python
-
oxc-project/oxc
-
praetorian-inc/noseyparker
-
prettytable/prettytable
-
psf/cachecontrol
-
pyca/service-identity
-
pylast/pylast
-
pypa/pip-audit
-
pypi/stdlib-list
-
pypi/warehouse
-
pytest-dev/pytest
-
python-attrs/attrs
-
python-attrs/cattrs
-
python-humanize/humanize
-
python-pillow/Pillow
-
python-poetry/cleo
-
python-poetry/poetry
-
python-poetry/poetry-core
-
python-poetry/poetry-plugin-bundle
-
python-poetry/poetry-plugin-export
-
python-telegram-bot/python-telegram-bot
-
python/cpython
-
python/miss-islington
-
rubygems/rubygems.org
-
rust-lang/crates.io
-
rustls/rustls
-
rustls/tokio-rustls
-
sigstore/cosign
-
sigstore/gitsign
-
termcolor/termcolor
-
tornadoweb/tornado
-
ultrajson/ultrajson
-
vlang/v
-
wagtail/wagtail-localize