StepSecurity Logo
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

camunda/infra-global-github-actions/fossa/wait-for-scan

camunda/infra-global-github-actions/fossa/wait-for-scan

Small Github Actions maintained by Infra team and used by other teams inside Camunda

6/10
siemens/components/.github/actions/slack

siemens/components/.github/actions/slack

Component infrastructure and Material Design components for Angular

3/10
grafana/grafana-github-actions-go/update-changelog

grafana/grafana-github-actions-go/update-changelog

Grafana GitHub Actions in Golang

3/10
grafana/plugin-actions/playwright-gh-pages/upload-report-artifacts

grafana/plugin-actions/playwright-gh-pages/upload-report-artifacts

6/10
tvdias/github-tagger

tvdias/github-tagger

Github action to tag commit with a given version

3/10
jbergstroem/hadolint-gh-action

jbergstroem/hadolint-gh-action

A hadolint linter for github actions that provides code annotations (and more)

5/10
Maintained action available
yokawasa/action-setup-kube-tools

yokawasa/action-setup-kube-tools

Github Action that setup Kubernetes tools (kubectl, kustomize, helm, kubeconform, conftest, yq, rancher, tilt, skaffold) very fast and cache them on the runner. Please [✩Star] if you're using it!

5/10
Maintained action available
shanegenschaw/pull-request-comment-trigger

shanegenschaw/pull-request-comment-trigger

A github action for detecting a "trigger" in a pull request description or comment

1/10
grafana/clickhouse-datasource/actions/commands

grafana/clickhouse-datasource/actions/commands

Grafana Plugin for ClickHouse

8/10
step-security/vitest-coverage-report-action/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/vitest-coverage-report-action/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

A GitHub Action to report vitest test coverage results. Secure drop-in replacement for davelosert/vitest-coverage-report-action.

10/10
Kapiche/scan-action

Kapiche/scan-action

3/10
step-security/github-actions-ensure-sha-pinned-actions/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/github-actions-ensure-sha-pinned-actions/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

A Github Action to ensure that actions are pinned to full length commit SHAs. Secure drop-in replacement for zgosalvez/github-actions-ensure-sha-pinned-actions.

10/10
neondatabase/gh-workflow-stats-action

neondatabase/gh-workflow-stats-action

GitHub Action to export Workflow statistic into Postgres

6/10
step-security/actions/melange-build

step-security/actions/melange-build

A collection of reusable Github Actions workflows.

7/10
NVIDIA/cccl-gha/.github/actions/workflow-run-job-linux

NVIDIA/cccl-gha/.github/actions/workflow-run-job-linux

Github Action infrastructure for CCCL

5/10
derjuulsn/todo-issue

derjuulsn/todo-issue

🤖 GitHub Action which creates Issues from comments in your code

2/10
notaryproject/notation-action/sign

notaryproject/notation-action/sign

GitHub Actions for signing and verifying artifacts with Notation

6/10
xt0rted/dotnet-format-problem-matcher

xt0rted/dotnet-format-problem-matcher

A GitHub Action that registers a problem matcher for dotnet-format's report output

3/10
auguwu/clippy-action

auguwu/clippy-action

🐻‍❄️📦 GitHub action to run Clippy, an up-to-date and modern version of actions-rs/clippy

5/10
Maintained action available
vedantmgoyal2009/winget-releaser

vedantmgoyal2009/winget-releaser

Publish new releases of your application to the Windows Package Manager easily.

4/10