Assess the risk of third-party GitHub Actions
Examples: ,
Actions
Assess all the actions
minorusekine/setup-scoop
GitHub Actions to install apps to Windows runner by scoop
kt3k/update-pr-description
Update Pull Request Description on Push
sgammon/copybara-action
Runs https://github.com/google/copybara in GitHub Actions. Copybara transforms and moves code between repositories.
smartcontractkit/.github/.github/actions/build-chainlink-image
reusable GHA workflows and actions
taiki-e/create-gh-release-action
GitHub Action for creating GitHub Releases based on changelog.
elastic/apm-queue/.github/actions/system-test
Abstraction layer over Kafka / GCP PubSub Lite to produce and consume records
slsa-framework/slsa-github-generator/.github/actions/generate-attestations
Language-agnostic SLSA provenance generation for Github Actions
akladiev/labeler
An action for automatically labelling pull requests
allenai/setup-beaker
Set up your GitHub Actions workflow with the Beaker command-line client
ministryofjustice/opg-data-deputy-reporting/_ghsemveraction/.github/actions/branch-name
Deputy reporting integration with OPG Data: Managed by opg-org-infra & Terraform
kneemaa/github-action-rotate-aws-secrets
Github Action to rotate AWS Access Keys stored in a repositories secrets
flatherskevin/semver-action
Bump current semantic version based on Git tagging
coveo/ui-kit/.github/actions/cypress-atomic-screenshots
Coveo UI kit repository, home of @coveo/headless, @coveo/atomic, and more.
coveo/plasma/.github/actions/test
Plasma components implemented with React!
elastic/apm-agent-rum-js/.github/workflows/run-test
optum/semver-cli/setup
A technology agnostic cli for common semantic versioning operations.
microsoft/powerplatform-actions/unpack-solution
Power Platform GitHub Actions automate common build and deployment tasks related to Power Platform. This includes synchronization of solution metadata (a.k.a. solutions) between development environments and source control, generating build artifacts, deploying to downstream environments, provisioning/de-provisioning of environments, and the ability to perform static analysis checks against your solution using the PowerApps checker service.
aerospike/aerospike-jdbc/.github/actions/publish-to-github
Minimalist JDBC driver for Aerospike
step-security/runs-on-cache/restore
Shockingly faster GitHub Action cache with S3 backend. Secure drop-in replacement for runs-on/cache.
tcort/github-action-markdown-link-check
Check all links in markdown files if they are alive or dead. ๐โ๏ธ