StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

umani/changed-files

umani/changed-files

GitHub action to export a PR's changed files

2/10
yonasbsd/surrealdb/.github/actions/setup-databases

yonasbsd/surrealdb/.github/actions/setup-databases

A scalable, distributed, collaborative, document-graph database, for the realtime web

5/10
Maintained action available
mobile-dev-inc/action-maestro-cloud

mobile-dev-inc/action-maestro-cloud

2/10
Maintained action available
yonasbsd/turbo/.github/actions/setup-node

yonasbsd/turbo/.github/actions/setup-node

Incremental bundler and build system optimized for JavaScriptΒ and TypeScript, written in Rust.

5/10
Maintained action available
tbowman01/prompt-card-system/.github/actions/gitleaks-action-v2

tbowman01/prompt-card-system/.github/actions/gitleaks-action-v2

A comprehensive prompt testing and evaluation system with advanced analytics, AI-powered optimization, and real-time performance monitoring.

5/10
canonical/documentation-workflows/linkcheck

canonical/documentation-workflows/linkcheck

Reusable workflows for the documentation team

3/10
configu/setup-cli-action

configu/setup-cli-action

Sets up Configu CLI in your GitHub Actions workflow

3/10
cloudflare/wrangler-action

cloudflare/wrangler-action

πŸ§™β€β™€οΈ easily deploy cloudflare workers applications using wrangler and github actions

9/10
cysharp/actions/.github/actions/fill

cysharp/actions/.github/actions/fill

3/10
Maintained action available
docker/bake-action/subaction/list-targets/it7ms0/qqq

docker/bake-action/subaction/list-targets/it7ms0/qqq

GitHub Action to use Docker Buildx Bake as a high-level build command

5/10
Maintained action available
livekit/deploy-action

livekit/deploy-action

GitHub plugin to control LiveKit Cloud Agents

1/10
yuya-takeyama/monotonix/actions/filter-jobs-by-dynamodb-state

yuya-takeyama/monotonix/actions/filter-jobs-by-dynamodb-state

Make deployment monotonous

2/10
fortify/github-action/internal/set-fod-var-defaults

fortify/github-action/internal/set-fod-var-defaults

Fortify GitHub Actions

4/10
Maintained action available
anchore/grype/.github/actions/bootstrap

anchore/grype/.github/actions/bootstrap

A vulnerability scanner for container images and filesystems

7/10
owasp/cve-lite-cli

owasp/cve-lite-cli

Fast, developer-friendly JS/TS dependency vulnerability scanner with local lockfile scanning, OSV matching, direct vs transitive visibility, --fix, JSON output, and practical remediation guidance.

3/10
step-security/sonarqube-scan-action/__builder_checkout_dir__/.github/actions/privacy-check

step-security/sonarqube-scan-action/__builder_checkout_dir__/.github/actions/privacy-check

Secure drop-in replacement for sonarsource/sonarqube-scan-action.

10/10
step-security/setup-vals/__builder_checkout_dir__/.github/actions/secure-download-artifact

step-security/setup-vals/__builder_checkout_dir__/.github/actions/secure-download-artifact

Github Action for installing vals (https://github.com/helmfile/vals). Secure drop-in replacement for jkroepke/setup-vals.

10/10
grafana/mimir-loki/.github/actions/image

grafana/mimir-loki/.github/actions/image

Like Prometheus, but for logs.

0/10
upbound/terraform/.github/actions/go-version

upbound/terraform/.github/actions/go-version

Terraform enables you to safely and predictably create, change, and improve infrastructure. It is an open source tool that codifies APIs into declarative configuration files that can be shared amongst team members, treated as code, edited, reviewed, and versioned.

2/10
ls-lint/action

ls-lint/action

Official ls-lint github action

4/10