Skip to content

zick

zick

zick

zick

Developer-first supply-chain and secret scanning CLI

Synopsis

zick checks dependency freshness, scans for secrets, and runs vulnerability scanners locally or through Docker fallback.

Examples

  # freshness age gate for the current directory
  zick fresh .

  # full audit: freshness + secrets + vulnerability scan
  zick audit .

  # install a managed pre-commit hook
  zick hook install .

Options

  -h, --help   help for zick

SEE ALSO

zick audit - Run fresh, secrets, and scan checks
zick fresh - Check dependencies for supply chain risk (freshness age gate)
zick hook - Install or remove Git hooks
zick sbom - Generate SBOM (syft)
zick scan - Run vulnerability scan (osv-scanner / trivy)
zick secrets - Scan for leaked secrets (betterleaks / gitleaks)