Releases: zizmorcore/zizmor-action
v0.5.2
v0.5.1
What's Changed
- zizmor 1.23.0 is now the default used by this action.
Full Changelog: v0.5.0...v0.5.1
v0.5.0
Contributors
Assets 3
v0.4.1
This version fixes an error in the 0.4.0 release that prevented non-relative use
of the action.
What's Changed
- Fix version file path by @woodruffw in #83
Full Changelog: v0.4.0...v0.4.1
Contributors
Assets 3
v0.4.0
This new version of zizmor-action brings two major changes:
-
The new
fail-on-no-inputsoption can be used to control whether
zizmor-actionfails if no inputs were collected byzizmor. The default
remainstrue, reflecting the pre-existing behavior. -
The action's use of the official
zizmorDocker images is now fully
hash-checked internally, preventing accidental or malicious modification
to the images. This also means that subsequent releases ofzizmor
will induce a release of this action, rather than the action always picking
up the latest version by default.
What's Changed
- docs: extended permissions required for internal repos by @AntoineSebert in #61
- docs: clarify description of "token" to indicate it is only used for online audits by @rmuir in #63
- Hash-check zizmor Docker images by @woodruffw in #68
- Add
fail-on-no-inputsoption by @woodruffw in #67
New Contributors
- @AntoineSebert made their first contribution in #61
- @rmuir made their first contribution in #63
Full Changelog: v0.3.0...v0.4.0
Contributors
Assets 3
v0.3.0
What's Changed
- README: fix troubleshooting link by @woodruffw in #50
- README: add a troubleshooting section about Advanced Security by @woodruffw in #51
- feat: Support a config option by @naokihaba in #56
New Contributors
- @naokihaba made their first contribution in #56
Full Changelog: v0.2.0...v0.3.0
Contributors
Assets 3
v0.2.0
Contributors
Assets 3
v0.1.2
What's Changed
- fix: allow version prefix of
vby @martincostello in #31
New Contributors
- @martincostello made their first contribution in #31
Full Changelog: v0.1.1...v0.1.2
