StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

aurelien-baudet/workflow-dispatch

aurelien-baudet/workflow-dispatch

A GitHub Action for triggering workflows, using the `workflow_dispatch` event

2/10
micalevisk/last-issue-action

micalevisk/last-issue-action

GitHub Action to find and output the number of the last updated open issue that has given labels and state.

2/10
hiero-ledger/hiero-solo-action

hiero-ledger/hiero-solo-action

A GitHub Action for setting up a Hiero based network for tests

6/10
step-security/trigger-workflow-and-wait/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/trigger-workflow-and-wait/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

Trigger a workflow in another (or same) repository and wait for the job to finish. Secure drop-in replacement for convictional/trigger-workflow-and-wait.

10/10
ministryofjustice/laa-apply-for-criminal-legal-aid/.github/actions/deploy

ministryofjustice/laa-apply-for-criminal-legal-aid/.github/actions/deploy

A service applying for criminal legal aid

8/10
rapidsai/rmm/shared-actions/telemetry-impls/github-actions-job-info

rapidsai/rmm/shared-actions/telemetry-impls/github-actions-job-info

RAPIDS Memory Manager

8/10
Typesafegithub/github-actions-typing

Typesafegithub/github-actions-typing

Bring type-safety to your GitHub actions' API!

6/10
Layr-Labs/security-shared-workflows/actions/codeql-scans

Layr-Labs/security-shared-workflows/actions/codeql-scans

3/10
endorlabs/github-action

endorlabs/github-action

A GitHub action you can use to scan with Endor Labs

5/10
ministryofjustice/hmpps-github-actions-runner-security/.github/actions/docker-build

ministryofjustice/hmpps-github-actions-runner-security/.github/actions/docker-build

A special version of the Github Actions Runner specifically to run OWASP security scans (bootstrapped 2025-08-18)

6/10
yonasBSD/vlang/.github/actions/cache-apt-packages-action

yonasBSD/vlang/.github/actions/cache-apt-packages-action

Simple, fast, safe, compiled language for developing maintainable software. Compiles itself in <1s with zero library dependencies. Supports automatic C => V translation. https://vlang.io

5/10
Maintained action available
Bhacaz/docs-as-code-confluence

Bhacaz/docs-as-code-confluence

Publish the content of a folder to confluence Github Action

2/10
jitsecurity-controls/jit-github-action

jitsecurity-controls/jit-github-action

The Jit main Github Action

6/10
Reality2byte/action/init

Reality2byte/action/init

3/10
DevSecTop/TF-via-PR

DevSecTop/TF-via-PR

Plan and apply Terraform/OpenTofu via PR automation, using best practices for secure and scalable IaC workflows.

7/10
technote-space/get-git-comment-action

technote-space/get-git-comment-action

GitHub actions to get git comment.

2/10
secondlife/setup-cygwin

secondlife/setup-cygwin

GitHub action to install Cygwin

6/10
anysphere/turbo-cache-server

anysphere/turbo-cache-server

Lightning-fast Turborepo remote cache server as a Github Action or Docker container

3/10
gacts/run-and-post-run

gacts/run-and-post-run

🚀 A simple GitHub action that allows you to execute commands on place and in post-run, once a workflow job has ended.

5/10
Adyen/adyen-prestashop/main/.github/actions/run_e2e

Adyen/adyen-prestashop/main/.github/actions/run_e2e

Adyen Payment plugin for Prestashop

7/10