StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

grafana/mimir/actions/backport

grafana/mimir/actions/backport

Grafana Mimir provides horizontally scalable, highly available, multi-tenant, long-term storage for Prometheus.

6/10
rudderlabs/github-action-check-size-limit

rudderlabs/github-action-check-size-limit

Compare the real cost to run your JS app or lib to keep good performance in every pull request

3/10
fortify/gha-setup-fod-uploader

fortify/gha-setup-fod-uploader

Deprecated; please use https://github.com/marketplace/actions/fortify-ast-scan instead

2/10
step-security/setup-buildx-action/__builder_checkout_dir__/.github/actions/secure-download-artifact

step-security/setup-buildx-action/__builder_checkout_dir__/.github/actions/secure-download-artifact

GitHub Action to set up Docker Buildx. Secure drop-in replacement for docker/setup-buildx-action.

8/10
amyu/setup-android

amyu/setup-android

Setup Android SDK for self hosted runner

3/10
Maintained action available
h0x0er/thecombine/.github/actions/combine-build

h0x0er/thecombine/.github/actions/combine-build

This is a tool for supporting the rapid word collection workshop and post workshop clean-up

2/10
actions-security-demo/poc-1/.github/actions/custom

actions-security-demo/poc-1/.github/actions/custom

Proof of concept repo 1

2/10
Maintained action available
unsignedapps/swift-create-xcframework

unsignedapps/swift-create-xcframework

A simple Command Line Tool to create XCFrameworks by wrapping xcodebuild.

4/10
beaconbrigade/package-json-version

beaconbrigade/package-json-version

Github action to retrieve the version number in your package.json file for use in other actions

0/10
mskri/check-uncommitted-changes-action

mskri/check-uncommitted-changes-action

A GitHub action for checking if repository has uncommitted changes.

3/10
turbocoder13/py-lintro/.github/actions/egress-audit-lite

turbocoder13/py-lintro/.github/actions/egress-audit-lite

Making linters play nice... Mostly.

8/10
crassula/jira-release-action

crassula/jira-release-action

A Github Action that creates Jira version, sets the given version as fix version for provided issues, and releases the version

2/10
elide-dev/bun/.github/actions/setup-bun

elide-dev/bun/.github/actions/setup-bun

Incredibly fast JavaScript runtime, bundler, test runner, and package manager โ€“ all in one

2/10
bpmn-io/actions/release-issue

bpmn-io/actions/release-issue

The github actions used by the bpmn-io team

2/10
coveo/plasma/.github/actions/storybook

coveo/plasma/.github/actions/storybook

Plasma components implemented with React!

5/10
Maintained action available
google/clusterfuzzlite/actions/run_fuzzers

google/clusterfuzzlite/actions/run_fuzzers

ClusterFuzzLite - Simple continuous fuzzing that runs in CI.

4/10
actionite/secrets-sync-action

actionite/secrets-sync-action

A Github Action that can sync secrets from one repository to many others.

3/10
anchore/go-collections/.github/actions/bootstrap

anchore/go-collections/.github/actions/bootstrap

5/10
mrsquaare/ssh-setup-action

mrsquaare/ssh-setup-action

Setup SSH GitHub Action

5/10
Maintained action available
hugoalh/scan-virus-ghaction

hugoalh/scan-virus-ghaction

A GitHub Action to scan virus (including malicious file and malware).

5/10