ZSM
ZSM (Zillowe Script Manager) is a modern, security-first replacement for bash-based installation scripts.
ZSM introduces a Capability-based Security model for installation scripts.
Why ZSM?
Running curl | bash is dangerous. It gives a remote script full access to your machine. ZSM fixes this by requiring scripts to declare their intentions before they run.
Key Concepts
- Supervisor Model: ZSM supervises both its own built-in functions and the external tools a script tries to run.
- Declarative Permissions: Users approve a script's permissions (Network, Filesystem, External Tools) once, and ZSM caches those permissions.
- Modern Syntax: A familiar bash-like syntax but with high-level, safe built-ins.
- Unique Caching: Permissions are cached based on the SHA-512 hash of the script's URL, preventing conflicts between tools.
- Dry-Run Mode: Simulate any script with
--dry-runfor maximum transparency. - Small & Effective: Optimized with Zig 0.16.0 for a tiny, zero-dependency binary.
Quick Start
You can install ZSM via Zoi:
zoi install @zillowe/zsmInstallation Pattern
Securing your one-liners is simple. See the Installation via curl guide.
curl -fsSL https://example.com/install.zsm | zsmCommand Reference
For a full list of commands and flags, see the CLI Reference.
2026 © All Rights Reserved.
- All the content is available under CC BY-SA 4.0, expect where otherwise stated.
- Source code is available on GitLab, licensed under Apache 2.0.
Last updated on