StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

Reality2byte/codeql-action/../action/upload-sarif

Reality2byte/codeql-action/../action/upload-sarif

Actions for running CodeQL analysis

6/10
sredevopsorg/opentf/.github/actions/go-version

sredevopsorg/opentf/.github/actions/go-version

OpenTF lets you declaratively manage your cloud infrastructure.

3/10
smrpn/criterion-compare-action

smrpn/criterion-compare-action

⚡️📊 Compare the performance of Rust project branches

3/10
actions-rust-lang/setup-rust-toolchain

actions-rust-lang/setup-rust-toolchain

Setup a specific Rust toolchain with extra features like problem matchers

6/10
grafana/community-contributions/actions/pr-checks

grafana/community-contributions/actions/pr-checks

External contributor PR workflow testing sandbox

2/10
carlosperate/arm-none-eabi-gcc-action

carlosperate/arm-none-eabi-gcc-action

GitHub Action to set-up the `arm-none-eabi-gcc` GNU Arm Embedded Toolchain.

6/10
cybernop/build-fhir-profiles

cybernop/build-fhir-profiles

github Action and Docker image to build FHIR profiles using FSH Sushi

3/10
rlespinasse/drawio-export-action

rlespinasse/drawio-export-action

GitHub Action To Export Draw.io Files

6/10
coveo/ui-kit/.github/actions/e2e-quantic-playwright

coveo/ui-kit/.github/actions/e2e-quantic-playwright

Coveo UI kit repository, home of @coveo/headless, @coveo/atomic, and more.

4/10
Maintained action available
lumoin/trusted-devsecops/.github/actions/sign-artifact

lumoin/trusted-devsecops/.github/actions/sign-artifact

Reusable, security-critical DevSecOps workflows and tools for trusted open-source projects.

2/10
modeseven-lfreleng-actions/release-assets-action

modeseven-lfreleng-actions/release-assets-action

Uploads build artefacts and other workflow assets to a GitHub release

2/10
os-climate/osc-github-devops/.github/actions/repository-inventory-action

os-climate/osc-github-devops/.github/actions/repository-inventory-action

Template Python project, common tests, GitHub Actions/Workflows, linting tools

3/10
Maintained action available
mercari/terraform-provider-slack/.github/actions/setup-go

mercari/terraform-provider-slack/.github/actions/setup-go

2/10
actionshub/chef-install

actionshub/chef-install

Repository for the actionshub-chef-install Github Action

6/10
equinor/fusion-framework/.github/workflows/actions/build-packages

equinor/fusion-framework/.github/workflows/actions/build-packages

Fusion Framework, built and maintained to Fusion Core

7/10
step-security/increment/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/increment/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

Action to increment a repository variable. Secure drop-in replacement for action-pack/increment.

10/10
yonasBSD/surrealdb/.github/actions/prepare-release-vars

yonasBSD/surrealdb/.github/actions/prepare-release-vars

A scalable, distributed, collaborative, document-graph database, for the realtime web

4/10
Maintained action available
equinor/axe-slack-reporter

equinor/axe-slack-reporter

GH Action for reporting findings from axe-core to Slack using incoming web hook

5/10
ribtoks/parent-issue-update

ribtoks/parent-issue-update

GitHub Action that updates parent issues when child issue change

3/10
ministryofjustice/laa-ccms-common-workflows/.github/actions/define-snyk-arguments

ministryofjustice/laa-ccms-common-workflows/.github/actions/define-snyk-arguments

Common GitHub actions and workflows used by LAA CCMS projects.

6/10