Assess the risk of third-party GitHub Actions
Examples: ,
Actions
Assess all the actions
step-security/fetch-gh-release-asset
Github Action to download an asset from a Github release. Secure drop-in replacement for dsaltares/fetch-gh-release-asset.
ad-m/github-push-action
GitHub actions to push back to repository eg. updated code
yonasBSD/buck2/.github/actions/build_example_toolchain
Build system, successor to Buck
alexellis/upload-assets
GitHub Action to upload multiple assets to a release
touchlab/ga-update-release-tag
GitHub action to update git tag for a GitHub Release. Used in support of KMMBridge publishing.
actions-security-demo/script-injection/pkg/build/actions/bump-version
Maggi64/eslint-plus-action
ESLint via Github Actions on changed files with annotations & comments
coinbase/cdp-sdk/.github/actions/fetch-docs-artifact
Client libraries for managing EVM and Solana wallets while relying on CDP to secure private keys.
zaproxy/action-full-scan
A GitHub Action for running the ZAP Full scan
oracle-actions/setup-java
GitHub Action to download and install Oracle's Java Development Kit builds
KeisukeYamashita/create-comment
📋 GitHub Action that post comment on a GitHub Issue or Pull Request
actions-rs/toolchain
🛠️ GitHub Action for `rustup` commands
lfreleng-actions/gerrit-clone-action
Action to bulk clone (in parallel) an entire Gerrit server repository hierarchy
asyncapi/.github/.github/actions/get-node-version-from-package-lock
Location of all reusable community health files
pytorch/pytorch/pytorch/.github/actions/ecr-login
Tensors and Dynamic neural networks in Python with strong GPU acceleration
proyecto-chaucha/chaucha-gha-wallet-generator
Chaucha functions for usage with Github Actions
Reality2byte/action/.github/actions/setup-swift
coinbase/cds/.github/actions/setup
Coinbase Design System
aerospike/aerospike-client-python/.github/actions/setup-docker-on-macos
Aerospike Python Client
ministryofjustice/action-clean-runner
Composite action for freeing up space on GitHub-hosted runner