StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

launchdarkly/dotnet-sdk-internal/.github/actions/ci

launchdarkly/dotnet-sdk-internal/.github/actions/ci

Implementation details shared between .NET SDK and Xamarin SDK

6/10
egibs/actions/setup-registry

egibs/actions/setup-registry

A collection of reusable Github Actions workflows.

7/10
peter-evans/create-pull-request

peter-evans/create-pull-request

A GitHub action to create a pull request for changes to your repository in the actions workspace

6/10
actions-rust-lang/audit

actions-rust-lang/audit

Audit Rust Dependencies using the RustSec Advisory DB

6/10
believer-oss/rust-cache

believer-oss/rust-cache

A GitHub Action that implements smart caching for rust/cargo projects

2/10
kong/wasmtime/.github/actions/github-release

kong/wasmtime/.github/actions/github-release

Standalone JIT-style runtime for WebAssembly, using Cranelift

3/10
yonasbsd/wazuh-kubernetes/.github/actions/setup_artifacts

yonasbsd/wazuh-kubernetes/.github/actions/setup_artifacts

Wazuh - Wazuh Kubernetes

7/10
slsa-framework/slsa-github-generator/.github/actions/compute-sha256

slsa-framework/slsa-github-generator/.github/actions/compute-sha256

Language-agnostic SLSA provenance generation for Github Actions

4/10
snyk/release-notes-preview

snyk/release-notes-preview

GitHub Action for providing release notes preview for semantic releases

4/10
joelwmale/webhook-action

joelwmale/webhook-action

Posts data to an endpoint on any event

5/10
azure/bicep-deploy

azure/bicep-deploy

Azure Deploy GitHub Action

6/10
sasobadovinac/occt/.github/actions/run-tests

sasobadovinac/occt/.github/actions/run-tests

Open CASCADE Technology (OCCT) is an open-source software development platform for 3D CAD, CAM, CAE. This is a clone of the official repository located on https://dev.opencascade.org/. Please use official development portal for registering issues and providing patches.

5/10
Maintained action available
actionutils/create-release-pr/__builder_checkout_dir__/.github/actions/privacy-check

actionutils/create-release-pr/__builder_checkout_dir__/.github/actions/privacy-check

WIP

1/10
isaac-sim/isaaclab/.github/actions/combine-results

isaac-sim/isaaclab/.github/actions/combine-results

Unified framework for robot learning built on NVIDIA Isaac Sim

7/10
cloudposse/github-action-matrix-outputs-write

cloudposse/github-action-matrix-outputs-write

Workaround implementation - Write matrix jobs outputs

4/10
togethercomputer/diffusers/.github/actions/setup-miniconda

togethercomputer/diffusers/.github/actions/setup-miniconda

๐Ÿค— Diffusers: State-of-the-art diffusion models for image and audio generation in PyTorch

3/10
igorjs/gh-actions-clean-workflow

igorjs/gh-actions-clean-workflow

Clean workflow run logs based on configuration

8/10
ministryofjustice/hmpps-github-shared-actions/.github/actions/slack_codescan_notification

ministryofjustice/hmpps-github-shared-actions/.github/actions/slack_codescan_notification

Shared actions for Github workflows to use - PUT NO WORKFLOWS IN HERE! (bootstrapped 2026-03-30)

4/10
sonarsource/sonarqube-ide-visualstudio-roslyn/.actions/get-build-number

sonarsource/sonarqube-ide-visualstudio-roslyn/.actions/get-build-number

Plugin using the Plugin API to allow Roslyn integration between SonarQube for Visual Studio and SLCore..

8/10
grafana/community-contributions/.github/actions/setup-enterprise

grafana/community-contributions/.github/actions/setup-enterprise

External contributor PR workflow testing sandbox

2/10