zizmorcore
diff --git a/‎Cargo.lock‎
Lines changed: 32 additions & 4 deletions b/‎Cargo.lock‎
Lines changed: 32 additions & 4 deletions
diff --git a/‎Cargo.toml‎
Lines changed: 1 addition & 0 deletions b/‎Cargo.toml‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎crates/zizmor/Cargo.toml‎
Lines changed: 1 addition & 0 deletions b/‎crates/zizmor/Cargo.toml‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎crates/zizmor/data/popular-actions.txt‎
Lines changed: 53 additions & 0 deletions b/‎crates/zizmor/data/popular-actions.txt‎
Lines changed: 53 additions & 0 deletions
diff --git a/‎crates/zizmor/src/audit/mod.rs‎
Lines changed: 1 addition & 0 deletions b/‎crates/zizmor/src/audit/mod.rs‎
Lines changed: 1 addition & 0 deletions
@@ -82,6 +82,7 @@ tree-sitter-bash = "0.25.1"
 tree-sitter-powershell = "=0.26.3"
 tree-sitter-yaml = "0.7.2"
 tikv-jemallocator = "0.6"
+typomania = { version = "0.1.2", default-features = false }
 
 [workspace.lints.clippy]
 dbg_macro = "warn"
 
@@ -76,6 +76,7 @@ tracing-subscriber = { workspace = true, features = ["env-filter"] }
 tree-sitter.workspace = true
 tree-sitter-bash.workspace = true
 tree-sitter-powershell.workspace = true
+typomania.workspace = true
 yamlpath.workspace = true
 yamlpatch.workspace = true
 
 
@@ -0,0 +1,53 @@
+8398a7/action-slack
+actions/cache
+actions/checkout
+actions/configure-pages
+actions/create-github-app-token
+actions/dependency-review-action
+actions/deploy-pages
+actions/download-artifact
+actions/github-script
+actions/labeler
+actions/setup-dotnet
+actions/setup-go
+actions/setup-java
+actions/setup-node
+actions/setup-python
+actions/stale
+actions/upload-artifact
+actions/upload-pages-artifact
+astral-sh/setup-uv
+aws-actions/configure-aws-credentials
+azure/login
+codecov/codecov-action
+dependabot/fetch-metadata
+docker/build-push-action
+docker/login-action
+docker/metadata-action
+docker/setup-buildx-action
+docker/setup-qemu-action
+dorny/paths-filter
+dtolnay/rust-toolchain
+github/codeql-action
+google-github-actions/auth
+google-github-actions/setup-gcloud
+goreleaser/goreleaser-action
+gradle/actions
+hashicorp/setup-terraform
+JamesIves/github-pages-deploy-action
+mikefarah/yq
+ncipollo/release-action
+peaceiris/actions-gh-pages
+peter-evans/create-pull-request
+pnpm/action-setup
+pre-commit/action
+pypa/gh-action-pypi-publish
+release-drafter/release-drafter
+ruby/setup-ruby
+shivammathur/setup-php
+slackapi/slack-github-action
+softprops/action-gh-release
+step-security/harden-runner
+styfle/cancel-workflow-action
+Swatinem/rust-cache
+tj-actions/changed-files
@@ -48,6 +48,7 @@ pub(crate) mod self_hosted_runner;
 pub(crate) mod stale_action_refs;
 pub(crate) mod superfluous_actions;
 pub(crate) mod template_injection;
+pub(crate) mod typosquat_uses;
 pub(crate) mod undocumented_permissions;
 pub(crate) mod unpinned_images;
 pub(crate) mod unpinned_tools;