StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

ministryofjustice/laa-data-access-api/.github/actions/deploy_branch

ministryofjustice/laa-data-access-api/.github/actions/deploy_branch

6/10
osdkdev/unlock-issues

osdkdev/unlock-issues

GitHub action for issue unlocking!

3/10
kaisugi/action-regex-match

kaisugi/action-regex-match

GitHub Action to do regex matching

2/10
step-security/sbom-action/fill

step-security/sbom-action/fill

GitHub Action for creating software bill of materials using Syft. Secure drop-in replacement for anchore/sbom-action.

10/10
step-security/post-run-action

step-security/post-run-action

This action runs a script in the post process. It is assumed that it will be called and used with a composite action that cannot perform post processing. Secure drop-in replacement for srz-zumix/post-run-action.

10/10
Maintained by StepSecurity
reviewdog/action-detect-secrets

reviewdog/action-detect-secrets

GitHub Action: Run detect-secrets with reviewdog

5/10
goplus/setup-xgo

goplus/setup-xgo

Set up your GitHub Actions workflow with a specific version of XGo

3/10
adyen/adyen-platform-experience-web/.github/actions/setup-env

adyen/adyen-platform-experience-web/.github/actions/setup-env

Adyen Platform Experience components

7/10
crowdin/github-action

crowdin/github-action

A GitHub action to manage and synchronize localization resources with your Crowdin project

7/10
step-security/upload-release-action/__builder_checkout_dir__/.github/actions/secure-download-artifact

step-security/upload-release-action/__builder_checkout_dir__/.github/actions/secure-download-artifact

Upload files to a GitHub release. Secure drop-in replacement for svenstaro/upload-release-action.

10/10
step-security/terraform-cloud-provider-publish

step-security/terraform-cloud-provider-publish

An action for publishing terraform providers to a private registry. Secure drop-in replacement for thechrisjohnson/terraform-cloud-provider-publish.

10/10
Maintained by StepSecurity
gaphor/gaphor

gaphor/gaphor

Gaphor is the simple modeling tool

6/10
christian-draeger/read-properties

christian-draeger/read-properties

Github action to read java properties files

5/10
montyd/package-json-updated-action

montyd/package-json-updated-action

A GitHub Action which indicates when the package.json version has updated in the most recent commit

2/10
lfreleng-actions/python-project-name-action

lfreleng-actions/python-project-name-action

Extracts Python project name and derives the package name

4/10
Maintained action available
intel/cve-bin-tool-action

intel/cve-bin-tool-action

Known vulnerability scanning for your GitHub repository using CVE Binary Tool. This Action can scan binaries, component lists and SBOMs for known vulnerabilities and CVEs. It can generate SBOM component lists as well as reports in the Security Tab and in HTML/JSON/PDF format.

6/10
amartyajha/airbyte/.github/actions/match-github-to-slack-user

amartyajha/airbyte/.github/actions/match-github-to-slack-user

The leading data integration platform for ETL / ELT data pipelines from APIs, databases & files to data warehouses, data lakes & data lakehouses. Both self-hosted and Cloud-hosted.

0/10
yonasbsd/wazuh/.github/actions/indexer_connector_deps

yonasbsd/wazuh/.github/actions/indexer_connector_deps

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

4/10
Maintained action available
vendic/magento2-clean-cron-schedule/.github/actions/setup

vendic/magento2-clean-cron-schedule/.github/actions/setup

Magento 2 module - auto clean cron schedule table

3/10
nvidia-nemo/fw-ci-templates/.github/actions/check-imports

nvidia-nemo/fw-ci-templates/.github/actions/check-imports

CI/CD templates for NeMo-FW libraries

5/10
Maintained action available