StepSecurity Logo
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

grafana/k6dist

grafana/k6dist

k6 distribution builder

5/10
approved-3rd-party-actions/skip-duplicate-actions

approved-3rd-party-actions/skip-duplicate-actions

Save time and cost when using GitHub Actions

2/10
citation-file-format/cffconvert-github-action

citation-file-format/cffconvert-github-action

GitHub action to validate CITATION.cff files, and convert to other citation formats.

3/10
python-semantic-release/publish-action

python-semantic-release/publish-action

GitHub Action to publish assets to a release

6/10
jakejarvis/cloudflare-purge-action

jakejarvis/cloudflare-purge-action

🗑️ GitHub Action to purge a website's cache via the Cloudflare API

4/10
contributor-assistant/github-action

contributor-assistant/github-action

CLA Assistant GitHub Action

5/10
triat/terraform-security-scan

triat/terraform-security-scan

Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec

4/10
harden-runner-canary/kyverno/.github/actions/kyverno-wait-ready

harden-runner-canary/kyverno/.github/actions/kyverno-wait-ready

Kubernetes Native Policy Management

3/10
step-security/ghaction-import-gpg

step-security/ghaction-import-gpg

GitHub Action to import a GPG key. Secure drop-in replacement for crazy-max/ghaction-import-gpg.

10/10
Maintained by StepSecurity
Prateek-stepsecurity/harden-runner

Prateek-stepsecurity/harden-runner

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-time.

5/10
step-security/setup-kubectl/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/setup-kubectl/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

GitHub Action for installing Kubectl. Secure drop-in replacement for Azure/setup-kubectl.

10/10
redhat-actions/buildah-build

redhat-actions/buildah-build

GitHub Action to use 'buildah' to build a container image.

6/10
spotdemo4/nix-simple-cache-action/.github/actions/init

spotdemo4/nix-simple-cache-action/.github/actions/init

saves and restores the nix store to/from the actions cache

6/10
hmarr/auto-approve-action

hmarr/auto-approve-action

👍 GitHub Action for automatically approving GitHub pull requests

3/10
step-security/setup-ko

step-security/setup-ko

Secure drop-in replacement for ko-build/setup-ko.

10/10
Maintained by StepSecurity
pytorch/data/test-infra/.github/actions/pull-docker-image

pytorch/data/test-infra/.github/actions/pull-docker-image

A PyTorch repo for data loading and utilities to be shared by the PyTorch domain libraries.

3/10
ljharb/actions/node/prepublish

ljharb/actions/node/prepublish

GitHub actions I use for CI.

4/10
nightfallai/nightfall_dlp_action

nightfallai/nightfall_dlp_action

GitHub Data Loss Prevention (DLP) Action: Scan Pull Requests for sensitive data, like credentials & secrets, PII, credit card numbers, and more.

4/10
h0x0er/jaeger/.github/actions/setup-branch

h0x0er/jaeger/.github/actions/setup-branch

CNCF Jaeger, a Distributed Tracing Platform

3/10
actions4git/add-commit-push

actions4git/add-commit-push

✨ Automagically git add, git commit, and git push

3/10