StepSecurity Logo
StepSecurity
LoginStart free
actions/setup-java

actions/setup-java

Set up your GitHub Actions workflow with a specific version of Java

GitHubGitHub Repository

1889 stars

Node.js

Node Action

Score updated 9 hours ago

GitHub Actions security score

actions/setup-java

Score

6/10

License

MIT License

Maintained

6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5

Vulnerabilities

14 existing vulnerabilities detected

Branch protection

branch protection not enabled on development/release branches

Manual code review

-

Secure publishing

-

Signed commits

-

Automated security tools

-

Popular

Used by 105472 open-source projects

Security Policy

security policy file detected

Networking Behavior of actions/setup-java

This GitHub Action often makes outbound network calls to these destinations, as gathered from public workflows using the Harden-Runner GitHub Action. Harden-Runner offers network egress filtering and runtime security for both GitHub-hosted and self-hosted runners.

Popular DestinationUnknown Destination
Network DestinationOwner
api.azul.comUnknown
cdn.azul.comUnknown
api.adoptopenjdk.netUnknown
github.comGitHubGitHub
objects.githubusercontent.comGitHubGitHub
corretto.github.ioUnknown
corretto.awsUnknown
api.adoptium.netUnknown
static.azul.comUnknown
download.oracle.comUnknown
api.bell-sw.comUnknown
release-assets.githubusercontent.comGitHubGitHub
global.endpoint.security.microsoft.comMicrosoftMicrosoft
winatp-gw-cus.microsoft.comMicrosoftMicrosoft
testspace-client.s3.amazonaws.comUnknown
ihub-pub.testspace.comUnknown
services.gradle.orgGradleGradle
plugins.gradle.orgGradleGradle
repo.maven.apache.orgUnknown
api.github.comGitHubGitHub
plugins-artifacts.gradle.orgGradleGradle
maven.pkg.github.comGitHubGitHub
scans-in.gradle.comUnknown
jitpack.ioUnknown
registry.npmjs.orgnpm Registrynpm Registry
storage.googleapis.comGoogleGoogle
index.crates.ioUnknown
static.crates.ioUnknown
build.shibboleth.netUnknown
dl.google.comGoogleGoogle
packages.microsoft.comMicrosoftMicrosoft
azure.archive.ubuntu.comUbuntuUbuntu
esm.ubuntu.comUbuntuUbuntu
pypi.orgPython RegistryPython Registry
files.pythonhosted.orgPython RegistryPython Registry
download.qt.ioUnknown
qt.mirror.constant.comUnknown
gstreamer.freedesktop.orgUnknown
maven.google.comUnknown
time.android.comUnknown
www.google.comUnknown
connectivitycheck.gstatic.comUnknown
www.gstatic.comUnknown
firebaseinstallations.googleapis.comGoogleGoogle
www.googleapis.comGoogleGoogle
digitalassetlinks.googleapis.comGoogleGoogle
voilatile-pa.googleapis.comGoogleGoogle
android.googleapis.comGoogleGoogle
remoteprovisioning.googleapis.comGoogleGoogle
gmscompliance-pa.googleapis.comGoogleGoogle
android.apis.google.comUnknown
mtalk.google.comUnknown
time.google.comUnknown
fonts.gstatic.comUnknown
clientservices.googleapis.comGoogleGoogle
pagead2.googlesyndication.comUnknown
edgedl.me.gvt1.comUnknown
notifications-pa.googleapis.comGoogleGoogle
instantmessaging-pa.googleapis.comGoogleGoogle
rcs-acs-tmo-us.jibe.google.comUnknown
infinitedata-pa.googleapis.comGoogleGoogle
update.googleapis.comGoogleGoogle
mobileconfiguration-pa.googleapis.comGoogleGoogle
settings-win.data.microsoft.comMicrosoftMicrosoft
dns.msftncsi.comUnknown
swscan.apple.comUnknown
xp.apple.comUnknown
gdmf.apple.comUnknown
updates.cdn-apple.comUnknown
configuration.apple.comUnknown
ocsp.digicert.comUnknown
mesu.apple.comUnknown
pancake.apple.comUnknown
bag.itunes.apple.comUnknown
configuration.ls.apple.comUnknown
swallow.apple.comUnknown
ocsp2.apple.comUnknown
ocsp.edge.digicert.comUnknown
configuration-lb.ls-apple.com.akadns.netUnknown
configuration-row-lb.apple.com.akadns.netUnknown
xp.itunes-apple.com.akadns.netUnknown
swdist.apple.com.akadns.netUnknown
client.wns.windows.comUnknown
incoming.telemetry.mozilla.orgUnknown
telemetry-incoming.r53-2.services.mozilla.comUnknown
apple-relay.cloudflare.comUnknown
gateway.icloud.comUnknown
ocsp.sectigo.comUnknown
login.live.comUnknown
fe2cr.update.microsoft.comMicrosoftMicrosoft
oneocsp.microsoft.comMicrosoftMicrosoft
experiments.apple.comUnknown
apps.mzstatic.comUnknown
mask-api.icloud.comUnknown
metrics.icloud.comUnknown
www.microsoft.comMicrosoftMicrosoft
api.apple-cloudkit.comUnknown
blob.bn9prdstrz04a.store.core.windows.netUnknown
0.pool.ntp.orgUnknown
prod.app-api.stepsecurity.ioUnknown
device-config.pcms.apple.comUnknown
calendars.icloud.comUnknown
fbs.smoot.apple.comUnknown
download.windowsupdate.comUnknown
au.download.windowsupdate.comUnknown