From 429b48e4b8f86ee58cc6c8835d4a008f75a1f510 Mon Sep 17 00:00:00 2001
From: Musaab Hasan <m9.3b@Hotmail.com>
Date: Wed, 6 May 2026 15:18:09 +0400
Subject: [PATCH] Add zizmor static analysis tool

---
 data/tools/zizmor.yml | 13 +++++++++++++
 1 file changed, 13 insertions(+)
 create mode 100644 data/tools/zizmor.yml

diff --git a/data/tools/zizmor.yml b/data/tools/zizmor.yml
new file mode 100644
index 000000000..077029dc2
--- /dev/null
+++ b/data/tools/zizmor.yml
@@ -0,0 +1,13 @@
+name: zizmor
+categories:
+  - linter
+tags:
+  - ci
+  - security
+  - yaml
+license: MIT License
+types:
+  - cli
+source: 'https://github.com/zizmorcore/zizmor'
+homepage: 'https://zizmor.sh'
+description: 'Static analysis for GitHub Actions workflows, detecting insecure CI/CD patterns such as excessive token permissions, template injection risks, credential persistence, and unsafe workflow references.'