Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

LoliGothick/rustfmt-check

LoliGothick/rustfmt-check

GitHub Action for PR annotations with rustfmt checks

5/10
a11smiles/GitSync

a11smiles/GitSync

A workflow action that syncs GitHub and Azure DevOps activities.

2/10
hadolint/hadolint-action

hadolint/hadolint-action

GitHub action for Hadolint, A Dockerfile linting tool

6/10
aks-lts/test-infra

aks-lts/test-infra

LTS specific configuration and tooling for testing

4/10
hashicorp/sentinel-github-actions

hashicorp/sentinel-github-actions

5/10
slsa-framework/slsa-github-generator/.github/actions/secure-upload-artifact

slsa-framework/slsa-github-generator/.github/actions/secure-upload-artifact

Language-agnostic SLSA provenance generation for Github Actions

5/10
rjdbcm/ozi-publish

rjdbcm/ozi-publish

OZI action - publish releases to PyPI; and mirror releases, signature bundles, and provenance in a tagged release

7/10
dagger/dagger-for-github

dagger/dagger-for-github

GitHub Action for Dagger

7/10
scribe-security/action-installer

scribe-security/action-installer

2/10
synopsys-sig/synopsys-action

synopsys-sig/synopsys-action

Synopsys Action consuming Synopsys scanning tools

3/10
mongolyy/reviewdog-action-biome

mongolyy/reviewdog-action-biome

6/10
actions/attest-build-provenance

actions/attest-build-provenance

Action for generating build provenance attestations for workflow artifacts

9/10
elastic/github-actions/project-assigner

elastic/github-actions/project-assigner

4/10
jamesgeorge007/github-activity-readme

jamesgeorge007/github-activity-readme

Updates README with the recent GitHub activity of a user

6/10
golang/govulncheck-action

golang/govulncheck-action

[mirror] GitHub action for govulncheck

5/10
os-climate/osc-github-devops/.github/actions/python-project-test-matrix

os-climate/osc-github-devops/.github/actions/python-project-test-matrix

Template Python project, common tests, GitHub Actions/Workflows, linting tools

6/10
jkroepke/setup-vals

jkroepke/setup-vals

Github Action for installing vals (https://github.com/helmfile/vals)

2/10
chainguard-dev/actions/k8s-diag

chainguard-dev/actions/k8s-diag

A collection of reusable Github Actions workflows.

6/10
git-actions/set-user

git-actions/set-user

Set git user as `github-actions[bot]`

3/10
flowwer-dev/pull-request-stats

flowwer-dev/pull-request-stats

Github action to print relevant stats about Pull Request reviewers

2/10