StepSecurity Logo
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

firedancer-io/firedancer/.github/actions/cpusonline

firedancer-io/firedancer/.github/actions/cpusonline

Firedancer is Jump Crypto's Solana validator software.

8/10
step-security/pull-request-comment-trigger/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/pull-request-comment-trigger/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

A github action for detecting a "trigger" in a pull request description or comment. Secure drop-in replacement for Khan/pull-request-comment-trigger.

10/10
pytorch/tensordict/test-infra/.github/actions/setup-miniconda

pytorch/tensordict/test-infra/.github/actions/setup-miniconda

TensorDict is a pytorch dedicated tensor container.

3/10
Maintained action available
Nullify-Platform/dast-action

Nullify-Platform/dast-action

GitHub Action for Nullify DAST

5/10
google-github-actions/setup-gcloud

google-github-actions/setup-gcloud

A GitHub Action for installing and configuring the gcloud CLI.

7/10
jscrambler/code-integrity-actions/protect

jscrambler/code-integrity-actions/protect

Code Integrity Github Actions

2/10
Maintained action available
nackerman-nydig/hadolint-action

nackerman-nydig/hadolint-action

GitHub action for Hadolint, A Dockerfile linting tool

3/10
coveooss/snapshots-github-actions/.github/actions/deploy

coveooss/snapshots-github-actions/.github/actions/deploy

An example of how-to manage your Coveo Organization with Code, GHA, and the Coveo CLI

3/10
pytorch/test-infra/test-infra/.github/actions/setup-ssh

pytorch/test-infra/test-infra/.github/actions/setup-ssh

This repository hosts code that supports the testing infrastructure for the PyTorch organization. For example, this repo hosts the logic to track disabled tests and slow tests, as well as our continuation integration jobs HUD/dashboard.

4/10
Maintained action available
chetan/invalidate-cloudfront-action

chetan/invalidate-cloudfront-action

Invalidate AWS CloudFront distribution paths

5/10
apache/skywalking-eyes/header

apache/skywalking-eyes/header

A full-featured license tool to check and fix license headers and resolve dependencies' licenses.

7/10
axiomhq/annotation-action

axiomhq/annotation-action

This action allows you to create an annotation in Axiom.

3/10
google-gemini/gemini-cli-action

google-gemini/gemini-cli-action

6/10
chronograph-pe/git-auto-commit-action

chronograph-pe/git-auto-commit-action

Automatically Commit changed Files back to GitHub with GitHub Actions for the 80% use case.

3/10
step-security/mise-action/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

step-security/mise-action/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

jdx/mise-action is a GitHub Action that integrates the mise tool into your CI/CD workflows. Secure drop-in replacement for jdx/mise-action.

10/10
ritik-deriv/deriv-api-docs/.github/actions/npm_install_from_cache

ritik-deriv/deriv-api-docs/.github/actions/npm_install_from_cache

Deriv API Documentation project

0/10
nexus-actions/drop-nexus-staging-repo

nexus-actions/drop-nexus-staging-repo

Helps discard staging repos when publishing to Maven Central

2/10
rapidsai/shared-actions/telemetry-dispatch-load-base-env-vars

rapidsai/shared-actions/telemetry-dispatch-load-base-env-vars

4/10
Maintained action available
bfra-me/renovate-action

bfra-me/renovate-action

GitHub Action for Self-Hosted Renovate

7/10
pytorch/FBGEMM/test-infra/.github/actions/setup-binary-upload

pytorch/FBGEMM/test-infra/.github/actions/setup-binary-upload

FB (Facebook) + GEMM (General Matrix-Matrix Multiplication) - https://code.fb.com/ml-applications/fbgemm/

3/10
Maintained action available