StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

ruby/setup-ruby-pkgs

ruby/setup-ruby-pkgs

Cross platform action for Ruby CI

3/10
jaywcjlove/github-action-folder-tree

jaywcjlove/github-action-folder-tree

View the folder directory tree structure, similar to the output of the tree command

3/10
chainguard-dev/actions/gofmt

chainguard-dev/actions/gofmt

A collection of reusable Github Actions workflows.

8/10
approved-3rd-party-actions/spectral-action

approved-3rd-party-actions/spectral-action

GitHub Action wrapper for Spectral - a JSON/YAML/OpenAPI/AsyncAPI/etc linter with custom rule support.

2/10
actions/go-dependency-submission

actions/go-dependency-submission

Calculates dependencies for a Go build-target and submits the list to the Dependency Submission API

6/10
pascalgn/size-label-action

pascalgn/size-label-action

GitHub action to assign labels based on pull request change sizes

3/10
dolthub/pull-request-comment-branch

dolthub/pull-request-comment-branch

A GitHub Action to get the head ref and sha of a pull request comment

3/10
step-security/sccache-action/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/sccache-action/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

sccache github action. Secure drop-in replacement for Mozilla-Actions/sccache-action.

10/10
nv-gha-runners/setup-proxy-cache

nv-gha-runners/setup-proxy-cache

GitHub Action for enabling conda/pip package caching in CI workflows via a self-hosted proxy

2/10
adoptium/run-aqa

adoptium/run-aqa

Repository for the Github Action that enables the running of the Adoptium Quality Assurance (AQA) tests

6/10
step-security/setup-kubectl/__BUILDER_CHECKOUT_DIR__/.github/actions/compute-sha256

step-security/setup-kubectl/__BUILDER_CHECKOUT_DIR__/.github/actions/compute-sha256

GitHub Action for installing Kubectl. Secure drop-in replacement for Azure/setup-kubectl.

10/10
godaddy-wordpress/setup-wp-cli

godaddy-wordpress/setup-wp-cli

Composite Action for setting up WP-CLI in a workflow.

5/10
rojopolis/spellcheck-github-actions

rojopolis/spellcheck-github-actions

Spell check action

6/10
peter-murray/terraform-variables-action

peter-murray/terraform-variables-action

2/10
scruplelesswizard/split-tests

scruplelesswizard/split-tests

Github Action for splitting a test suite for parallelization with equal time

4/10
changesets/action

changesets/action

4/10
cisagov/action-job-preamble

cisagov/action-job-preamble

A GitHub Action to apply cisagov's standard permissions monitoring and runner hardening. This Action is intended to be applied at the beginning of every GitHub Actions job.

6/10
actions/upload-pages-artifact

actions/upload-pages-artifact

A composite action for packaging and uploading an artifact that can be deployed to GitHub Pages.

8/10
Reality2byte/codeql-action/../action/.github/actions/check-codescanning-config

Reality2byte/codeql-action/../action/.github/actions/check-codescanning-config

Actions for running CodeQL analysis

7/10
ministryofjustice/opg-github-actions/.github/actions/terraform-version

ministryofjustice/opg-github-actions/.github/actions/terraform-version

OPG shared GitHub composite actions for workflows.: Managed by opg-org-infra & Terraform

7/10