StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

pytorch/data/test-infra/.github/actions/setup-binary-upload

pytorch/data/test-infra/.github/actions/setup-binary-upload

A PyTorch repo for data loading and utilities to be shared by the PyTorch domain libraries.

4/10
Maintained action available
step-security/ansible-galaxy-action/__builder_checkout_dir__/.github/actions/wp-content/themes/hestia-will-2/assets/js/material.js

step-security/ansible-galaxy-action/__builder_checkout_dir__/.github/actions/wp-content/themes/hestia-will-2/assets/js/material.js

This Action will import ansible roles on galaxy-ng. Secure drop-in replacement for ansible-actions/ansible-galaxy-action.

10/10
project-tick/project-tick/.github/actions/setup-dependencies/windows

project-tick/project-tick/.github/actions/setup-dependencies/windows

Project Tick is a project dedicated to providing developers with ease of use and users with long-lasting software. SoT: https://git.projecttick.org/project-tick

5/10
celo-org/developer-tooling/.github/actions/upload-codecov

celo-org/developer-tooling/.github/actions/upload-codecov

๐Ÿ› ๏ธ SDKs and CLI for interacting with Celo

5/10
step-security/protobuf-ci/../../_actions/current/internal/setup-runner

step-security/protobuf-ci/../../_actions/current/internal/setup-runner

A shared repository for Protobuf CI actions. Secure drop-in replacement for protocolbuffers/protobuf-ci.

10/10
sonarsource/sonar-lits/.actions/get-build-number

sonarsource/sonar-lits/.actions/get-build-number

Language plugins Integration Tests Support

5/10
Maintained action available
step-security/edit-release

step-security/edit-release

A GitHub Action for editing an existing release. Secure drop-in replacement for irongut/EditRelease.

10/10
Maintained by StepSecurity
templum/govulncheck-action

templum/govulncheck-action

This action uses govulncheck to perform a scan of the code, afterwards it will parse the output and transform it into an Sarif Report, which will be uploaded to Github using the code-scanning API.

2/10
envoyproxy/toolshed/actions/github/script/run

envoyproxy/toolshed/actions/github/script/run

6/10
aerospike/shared-workflows/.github/actions/create-release-bundle

aerospike/shared-workflows/.github/actions/create-release-bundle

automation workflows

8/10
int128/hide-comment-action

int128/hide-comment-action

Action to hide (minimize) comments in pull request

6/10
dolthub/pull-request-comment-trigger

dolthub/pull-request-comment-trigger

A github action for detecting a "trigger" in a pull request description or comment

0/10
gwatts/go-coverage-action

gwatts/go-coverage-action

GitHub action for Go test coverage reports

2/10
caffeelake/neqo/.github/actions/pr-comment-data-export

caffeelake/neqo/.github/actions/pr-comment-data-export

5/10
kong/kongctl/actions/setup

kong/kongctl/actions/setup

Developer CLI for Kong

7/10
hummingbird-regtech/check-pr-format-action

hummingbird-regtech/check-pr-format-action

Checks the PR description body against a configured pattern before allowing merge.

1/10
stainless-api/upload-openapi-spec-action/merge

stainless-api/upload-openapi-spec-action/merge

A GitHub action to build Stainless SDKs.

3/10
Maintained action available
nvidia/cccl/.github/actions/workflow-run-job-windows

nvidia/cccl/.github/actions/workflow-run-job-windows

CUDA Core Compute Libraries

7/10
likec4/actions

likec4/actions

A Github Action for various operations and automation over LikeC4 projects

3/10
caffeelake/bun/bun/.github/actions/setup-bun

caffeelake/bun/bun/.github/actions/setup-bun

Incredibly fast JavaScript runtime, bundler, test runner, and package manager โ€“ all in one

2/10