StepSecurity Logo
StepSecurity
LoginStart free
actions/cache/restore

actions/cache/restore

Cache dependencies and build outputs in GitHub Actions

GitHubGitHub Repository

5326 stars

Node.js

Node Action

Score updated 36 minutes ago

GitHub Actions security score

actions/cache/restore

Score

7/10

License

MIT License

Maintained

30 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10

Vulnerabilities

12 existing vulnerabilities detected

Branch protection

branch protection not enabled on development/release branches

Manual code review

-

Secure publishing

-

Signed commits

-

Automated security tools

-

Popular

Used by 11200 open-source projects

Security Policy

security policy file detected

Networking Behavior of actions/cache/restore

This GitHub Action often makes outbound network calls to these destinations, as gathered from public workflows using the Harden-Runner GitHub Action. Harden-Runner offers network egress filtering and runtime security for both GitHub-hosted and self-hosted runners.

Popular DestinationUnknown Destination
Network DestinationOwner
storage.googleapis.comGoogleGoogle
pypi.orgPython RegistryPython Registry
files.pythonhosted.orgPython RegistryPython Registry
api.github.comGitHubGitHub
github.comGitHubGitHub
cli.codecov.ioCodecovCodecov
ingest.codecov.ioCodecovCodecov
o26192.ingest.us.sentry.ioUnknown
global.endpoint.security.microsoft.comMicrosoftMicrosoft
release-assets.githubusercontent.comGitHubGitHub
forno.celo.orgUnknown
us-docker.pkg.devUnknown
checkpoint-api.hashicorp.comUnknown
ip-ranges.amazonaws.comUnknown
registry-1.docker.ioDockerHubDockerHub
auth.docker.ioDockerHubDockerHub
docker-images-prod.6aa30f8b08e16409b46e0173d6de2f56.r2.cloudflarestorage.comDockerHubDockerHub
production.cloudflare.docker.comDockerHubDockerHub
repo.maven.apache.orgUnknown
registry.terraform.ioUnknown
releases.hashicorp.comHashiCorpHashiCorp
stun.l.google.comUnknown
stun2.l.google.comUnknown
stun3.l.google.comUnknown
stun4.l.google.comUnknown
stun1.l.google.comUnknown
example.comUnknown
binaries.soliditylang.orgUnknown
logs.us-east-1.amazonaws.comUnknown
monitoring.us-east-1.amazonaws.comUnknown
runs-on-stage-s3bucketcache-ldp3jgxjfnb0.s3.us-east-1.amazonaws.comUnknown
settings-win.data.microsoft.comMicrosoftMicrosoft
telemetry-incoming.r53-2.services.mozilla.comUnknown
ocsp.digicert.comUnknown
incoming.telemetry.mozilla.orgUnknown
fs.microsoft.comMicrosoftMicrosoft
pancake.apple.comUnknown
configuration.apple.comUnknown
swallow.apple.comUnknown
configuration.ls.apple.comUnknown
ocsp2.g.aaplimg.comUnknown
mask-api.icloud.comUnknown
login.live.comUnknown
cds.apple.comUnknown
help.apple.comUnknown
dns.msftncsi.comUnknown
device-config.pcms.apple.comUnknown
configuration.apple.com.akadns.netUnknown
ocsp2.apple.comUnknown
fbs.smoot.apple.comUnknown
fe2cr.update.microsoft.comMicrosoftMicrosoft
download.windowsupdate.comUnknown
api.apple-cloudkit.comUnknown
gateway.icloud.comUnknown
ipcdn.apple.comUnknown
geo.prod.do.dsp.mp.microsoft.comMicrosoftMicrosoft
kv501.prod.do.dsp.mp.microsoft.comMicrosoftMicrosoft
cp501.prod.do.dsp.mp.microsoft.comMicrosoftMicrosoft
au.download.windowsupdate.comUnknown
swscan.apple.comUnknown
xp.itunes-apple.com.akadns.netUnknown
tas02.sls.update.microsoft.comMicrosoftMicrosoft
www.microsoft.comMicrosoftMicrosoft
kv801.prod.do.dsp.mp.microsoft.comMicrosoftMicrosoft
cp801.prod.do.dsp.mp.microsoft.comMicrosoftMicrosoft
configuration-lb.ls-apple.com.akadns.netUnknown
amp-api.media.apple.comUnknown
metrics.icloud.comUnknown
0.pool.ntp.orgUnknown
bag.itunes.apple.comUnknown
xp.apple.comUnknown
swdist.apple.comUnknown
calendars.icloud.comUnknown
mesu-cdn.origin-apple.com.akadns.netUnknown
mesu.apple.comUnknown
valid.apple.comUnknown
apple-relay.cloudflare.comUnknown
ocsp.comodoca.comUnknown
xp-cdn-lb.itunes-apple.com.akadns.netUnknown
updates.cdn-apple.comUnknown
help.origin-apple.com.akadns.netUnknown
kv601.prod.do.dsp.mp.microsoft.comMicrosoftMicrosoft
cp601.prod.do.dsp.mp.microsoft.comMicrosoftMicrosoft
telemetry.visualstudio.microsoft.comMicrosoftMicrosoft
mobile.events.data.microsoft.comMicrosoftMicrosoft
dc.services.visualstudio.comUnknown
ssm.us-east-1.amazonaws.comUnknown
conda.anaconda.orgUnknown
ecs.office.comUnknown
humb.apple.comUnknown
configuration-row-lb.apple.com.akadns.netUnknown
api.apple-cloudkit.fe2.apple-dns.netUnknown
mesu-cdn.apple.com.akadns.netUnknown
e5977.dsce9.akamaiedge.netUnknown
apple-relay.fastly-edge.comUnknown
apps.mzstatic.comUnknown
experiments.apple.comUnknown
gdmf.apple.comUnknown
news-edge.apple.comUnknown
c.apple.newsUnknown
ocsp.edge.digicert.comUnknown
swdist.apple.com.akadns.netUnknown
ocsp2.apple.com.edgekey.netUnknown
ipcdn-lb.apple.com.akadns.netUnknown
s.mzstatic.comUnknown
stocks-edge.apple.comUnknown
fpinit.itunes.apple.comUnknown
sf-api-token-service.itunes.apple.comUnknown
bag-cdn.itunes-apple.com.akadns.netUnknown
assets-mercury.mzstatic.comUnknown
dl.delivery.mp.microsoft.comMicrosoftMicrosoft
1d.tlu.dl.delivery.mp.microsoft.comMicrosoftMicrosoft
client.wns.windows.comUnknown