StepSecurity Logo
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

chainguard-dev/actions/gofmt

chainguard-dev/actions/gofmt

A collection of reusable Github Actions workflows.

8/10
approved-3rd-party-actions/spectral-action

approved-3rd-party-actions/spectral-action

GitHub Action wrapper for Spectral - a JSON/YAML/OpenAPI/AsyncAPI/etc linter with custom rule support.

2/10
actions/go-dependency-submission

actions/go-dependency-submission

Calculates dependencies for a Go build-target and submits the list to the Dependency Submission API

6/10
pascalgn/size-label-action

pascalgn/size-label-action

GitHub action to assign labels based on pull request change sizes

3/10
nv-gha-runners/setup-proxy-cache

nv-gha-runners/setup-proxy-cache

GitHub Action for enabling conda/pip package caching in CI workflows via a self-hosted proxy

2/10
adoptium/run-aqa

adoptium/run-aqa

Repository for the Github Action that enables the running of the Adoptium Quality Assurance (AQA) tests

6/10
step-security/setup-kubectl/__BUILDER_CHECKOUT_DIR__/.github/actions/compute-sha256

step-security/setup-kubectl/__BUILDER_CHECKOUT_DIR__/.github/actions/compute-sha256

GitHub Action for installing Kubectl. Secure drop-in replacement for Azure/setup-kubectl.

10/10
godaddy-wordpress/setup-wp-cli

godaddy-wordpress/setup-wp-cli

Composite Action for setting up WP-CLI in a workflow.

5/10
rojopolis/spellcheck-github-actions

rojopolis/spellcheck-github-actions

Spell check action

6/10
peter-murray/terraform-variables-action

peter-murray/terraform-variables-action

2/10
scruplelesswizard/split-tests

scruplelesswizard/split-tests

Github Action for splitting a test suite for parallelization with equal time

5/10
changesets/action

changesets/action

3/10
cisagov/action-job-preamble

cisagov/action-job-preamble

A GitHub Action to apply cisagov's standard permissions monitoring and runner hardening. This Action is intended to be applied at the beginning of every GitHub Actions job.

8/10
actions/upload-pages-artifact

actions/upload-pages-artifact

A composite action for packaging and uploading an artifact that can be deployed to GitHub Pages.

8/10
Reality2byte/codeql-action/../action/.github/actions/check-codescanning-config

Reality2byte/codeql-action/../action/.github/actions/check-codescanning-config

Actions for running CodeQL analysis

7/10
astro/deadnix-action

astro/deadnix-action

Workflow to find and delete dead nix code

2/10
tim-actions/dco

tim-actions/dco

0/10
tideways/release-action

tideways/release-action

Create a Tideways Release with a GitHub Actions workflow

5/10
Maintained action available
einaregilsson/beanstalk-deploy

einaregilsson/beanstalk-deploy

GitHub action (and command line script) to deploy apps to Elastic Beanstalk

5/10
MetaMask/github-tools/.github/actions/post-merge-validation

MetaMask/github-tools/.github/actions/post-merge-validation

An assortment of tools interacting with the GitHub API to get metrics for things like PR review comments/reviews

4/10
Maintained action available