StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

chainguard-dev/actions/donotsubmit

chainguard-dev/actions/donotsubmit

A collection of reusable Github Actions workflows.

8/10
yonasBSD/codeql/.github/actions/fetch-codeql

yonasBSD/codeql/.github/actions/fetch-codeql

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

3/10
Maintained action available
celo-org/viem/.github/actions/setup-wagmi

celo-org/viem/.github/actions/setup-wagmi

TypeScript Interface for Ethereum

2/10
austenstone/actions-playground/.github/actions/hello-world-javascript-action

austenstone/actions-playground/.github/actions/hello-world-javascript-action

Playground for actions

4/10
Maintained action available
dflook/terraform-check

dflook/terraform-check

GitHub action to check if there are terraform changes to apply

2/10
step-security/argo-cd-action

step-security/argo-cd-action

GitHub action for executing Argo CD 🦑. Secure drop-in replacement for clowdhaus/argo-cd-action.

10/10
Maintained by StepSecurity
boredland/action-purge-workflow-runs

boredland/action-purge-workflow-runs

removes inactive check suites after a given amount of days without a run

2/10
deepcode-ai/codeql/.github/actions/cache-query-compilation

deepcode-ai/codeql/.github/actions/cache-query-compilation

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

2/10
ParanoidBeing/action-wip-blocker

ParanoidBeing/action-wip-blocker

GitHub Action that blocks WIP PRs

2/10
untitaker/hyperlink

untitaker/hyperlink

Very fast link checker for CI.

4/10
Maintained action available
the-commons-project/terragrunt-github-actions

the-commons-project/terragrunt-github-actions

Terraform GitHub Actions

3/10
ame-yu/action-delete-latest-release

ame-yu/action-delete-latest-release

2/10
grafana/grafana/.github/actions/test-coverage-processor

grafana/grafana/.github/actions/test-coverage-processor

The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.

4/10
Maintained action available
1Password/check-signed-commits-action

1Password/check-signed-commits-action

GitHub Action to check PRs for signed commits

4/10
sigstore/cosign-installer

sigstore/cosign-installer

Cosign Github Action

8/10
Kong/public-shared-actions/pr-previews/cleanup

Kong/public-shared-actions/pr-previews/cleanup

Shared actions available to both public and private repositories

6/10
SonarSource/sonarcloud-github-c-cpp

SonarSource/sonarcloud-github-c-cpp

Deprecated. Use https://github.com/SonarSource/sonarqube-scan-action instead.

6/10
step-security/helm-gh-pages

step-security/helm-gh-pages

A GitHub Action for publishing Helm charts to Github Pages. Secure drop-in replacement for stefanprodan/helm-gh-pages.

10/10
Maintained by StepSecurity
ScribeMD/docker-cache

ScribeMD/docker-cache

Cache Docker Images Whether Built or Pulled

3/10
clowdhaus/terraform-composite-actions/pre-commit

clowdhaus/terraform-composite-actions/pre-commit

Contains composit GitHub actions for use with Terraform AWS Module workflows

4/10