ZIRAN Agent Security Scan
Version updated for https://github.com/taoq-ai/ziran to version v0.23.0.
- This action is used across all versions by 1 repositories.
Action Type
This is a Composite action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
ZIRAN is a GitHub Action designed for security testing of AI agents, including those with tools, memory, and multi-step reasoning capabilities. It automates the discovery of vulnerabilities arising from tool combinations, side effects, multi-phase attack campaigns, and agent-to-agent interactions, providing a comprehensive framework for identifying and mitigating risks in complex AI systems. Key capabilities include graph-based tool chain discovery, execution-level side-effect detection, autonomous pentesting, and multi-agent coordination.
Release notes
What’s Changed
- ci: fix release-please not triggering PyPI publish by @leoneperdigao in https://github.com/taoq-ai/ziran/pull/228
- feat(ui): web UI foundation + core API by @leoneperdigao in https://github.com/taoq-ai/ziran/pull/229
- chore(main): release 0.22.0 by @github-actions[bot] in https://github.com/taoq-ai/ziran/pull/230
- ci: fix release-please dispatch with –repo flag by @leoneperdigao in https://github.com/taoq-ai/ziran/pull/231
- ci: fix npm E401 in release build by @leoneperdigao in https://github.com/taoq-ai/ziran/pull/232
- feat(ui): findings management, OWASP compliance & TaoQ design system by @leoneperdigao in https://github.com/taoq-ai/ziran/pull/233
- chore(main): release 0.23.0 by @github-actions[bot] in https://github.com/taoq-ai/ziran/pull/234
- ci: trigger release on tag push instead of workflow_dispatch by @leoneperdigao in https://github.com/taoq-ai/ziran/pull/235
- ci: fix npm E401 by regenerating lockfile with public registry by @leoneperdigao in https://github.com/taoq-ai/ziran/pull/236
Full Changelog: https://github.com/taoq-ai/ziran/compare/v0.21.0...v0.23.0