ghalint
« Back to VersTracker
Description:
GitHub Actions linter
Type: Formula  |  Tracked Since: Dec 28, 2025
Links: Homepage  |  formulae.brew.sh
Category: Security
Tags: github-actions linter security ci-cd devops
Install: brew install ghalint
About:
Ghalint is a security-focused linter for GitHub Actions workflows that validates configurations against best practices. It detects common security issues like excessive permissions, vulnerable actions usage, and improper workflow configurations. The tool helps teams enforce security policies and reduce risks in their CI/CD pipelines.
Key Features:
  • Security policy validation for workflows
  • Detection of excessive permissions and vulnerable actions
  • Customizable linting rules
  • CI/CD integration support
  • Detailed violation reporting
Use Cases:
  • Auditing existing GitHub Actions workflows for security vulnerabilities
  • Enforcing security best practices in CI/CD pipelines
  • Preventing deployment of insecure workflow configurations
Alternatives:
  • actionlint – actionlint focuses on syntax and general workflow validation, while ghalint specializes in security-specific checks and policy enforcement
  • zizmor – zizmor provides security analysis but ghalint offers more granular policy-based rule configuration
Version History
Detected Version Rev Change Commit
Oct 9, 2025 5:06pm 0 VERSION_BUMP 1e2fe687
« Back to VersTracker  |  Browse Packages  |  About