StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

zeebe-io/backport-action

zeebe-io/backport-action

Fast and flexible GitHub action to cherry-pick merged pull requests to selected branches

6/10
step-security/pull-request-comment-trigger/__builder_checkout_dir__/.github/actions/privacy-check

step-security/pull-request-comment-trigger/__builder_checkout_dir__/.github/actions/privacy-check

A github action for detecting a "trigger" in a pull request description or comment. Secure drop-in replacement for Khan/pull-request-comment-trigger.

9/10
xarray-contrib/issue-from-pytest-log

xarray-contrib/issue-from-pytest-log

create issues from pytest-reportlog files

6/10
bazelbuild/continuous-integration/actions/bcr-pr-reviewer

bazelbuild/continuous-integration/actions/bcr-pr-reviewer

Bazel's Continuous Integration Setup

6/10
boneskull/gh-stack/.github/actions/claude-code-review

boneskull/gh-stack/.github/actions/claude-code-review

A GitHub CLI extension for managing stacked pull requests.

2/10
coveord/snowpark-java-scala/jira/gajira-issue-update

coveord/snowpark-java-scala/jira/gajira-issue-update

Snowflake Snowpark Java & Scala API

4/10
gradle/actions/dependency-submission

gradle/actions/dependency-submission

A collection of GitHub Actions to accelerate your Gradle Builds on GitHub

7/10
mitoma/sver-actions/exec

mitoma/sver-actions/exec

GitHub Actions for sver

5/10
git-hub-chris/visualstudiocode/actions/locker

git-hub-chris/visualstudiocode/actions/locker

Microsoft Visual Studio Code.

6/10
wei/wget

wei/wget

Wraps the wget CLI to be used in Github Actions

3/10
olympix/bugpocer-action

olympix/bugpocer-action

2/10
actions-security-demo/script-injection/.github/workflows/actions/changelog

actions-security-demo/script-injection/.github/workflows/actions/changelog

2/10
sersoft-gmbh/setup-gh-cli-action

sersoft-gmbh/setup-gh-cli-action

A GitHub action that installs or updates the gh CLI

5/10
Maintained action available
envoyproxy/toolshed/actions/docker/cache/prime

envoyproxy/toolshed/actions/docker/cache/prime

7/10
caffeelake/serenity/.github/actions/setup

caffeelake/serenity/.github/actions/setup

The Serenity Operating System ๐Ÿž

5/10
step-security/github-create-release-action/__builder_checkout_dir__/.github/actions/privacy-check

step-security/github-create-release-action/__builder_checkout_dir__/.github/actions/privacy-check

Create a GitHub release from a Tag. Secure drop-in replacement for Roang-zero1/github-create-release-action.

9/10
mercurytechnologies/delete-cancelled-runs

mercurytechnologies/delete-cancelled-runs

Deletes cancelled runs for a given workflow

3/10
pytorch/multipy/test-infra/.github/actions/pull-docker-image

pytorch/multipy/test-infra/.github/actions/pull-docker-image

torch::deploy (multipy for non-torch uses) is a system that lets you get around the GIL problem by running multiple Python interpreters in a single C++ process.

1/10
pavelzw/pytest-action

pavelzw/pytest-action

:octocat: GitHub Action to run pytest with GitHub Job Summaries support :snake: :rocket:

5/10
yonasbsd/mask/.github/actions/attach-release-assets

yonasbsd/mask/.github/actions/attach-release-assets

๐ŸŽญ A CLI task runner defined by a simple markdown file

3/10