StepSecurity Logo
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

commit-check/commit-check-action

commit-check/commit-check-action

Commit Check GitHub Action

6/10
step-security/close-milestone

step-security/close-milestone

A Github action to remove a milestone by the milestone's name. Secure drop-in replacement for Akkjon/close-milestone.

10/10
Maintained by StepSecurity
mgreau/actions/git-bump-tag-semver

mgreau/actions/git-bump-tag-semver

A collection of reusable Github Actions workflows.

3/10
step-security/ssh-key-action/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

step-security/ssh-key-action/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

GitHub Action that installs SSH key to .ssh. Secure drop-in replacement for shimataro/ssh-key-action.

10/10
intel/ai-containers/workflows/charts

intel/ai-containers/workflows/charts

This repository contains Dockerfiles, scripts, yaml files, Helm charts, etc. used to scale out AI containers with versions of TensorFlow and PyTorch that have been optimized for Intel platforms. Scaling is done with python, Docker, kubernetes, kubeflow, cnvrg.io, Helm, and other container orchestration frameworks for use in the cloud and on-premise

7/10
step-security/prisma-cloud-scan

step-security/prisma-cloud-scan

GitHub action to scan container images with Palo Alto Networks' Prisma Cloud. Secure drop-in replacement for PaloAltoNetworks/prisma-cloud-scan.

10/10
Maintained by StepSecurity
PQCA/cbomkit-action

PQCA/cbomkit-action

GitHub Action to generate Cryptography Bill of Materials (CBOM)

3/10
Maintained action available
alexellis/setup-arkade

alexellis/setup-arkade

Your favourite developer CLIs for GitHub Actions

3/10
step-security/vitest-coverage-report-action

step-security/vitest-coverage-report-action

A GitHub Action to report vitest test coverage results. Secure drop-in replacement for davelosert/vitest-coverage-report-action.

10/10
Maintained by StepSecurity
googleapis/code-suggester

googleapis/code-suggester

7/10
Gamesight/slack-workflow-status

Gamesight/slack-workflow-status

Github action for sending workflow run results to Slack

3/10
advanced-security/dart-analyzer-sarif

advanced-security/dart-analyzer-sarif

Convert `dart analyze` CLI output into SARIF

6/10
step-security/release-on-push-action/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

step-security/release-on-push-action/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

Github Action to create a git tag + release when pushed to master. Secure drop-in replacement for rymndhng/release-on-push-action.

10/10
brittanyshelton23/docs/.github/actions/node-npm-setup

brittanyshelton23/docs/.github/actions/node-npm-setup

The open-source repo for docs.github.com

3/10
vers-one/dotnet-project-version-updater

vers-one/dotnet-project-version-updater

A GitHub action to update or bump project versions. Supports .csproj, .props, .nuspec, and many other .NET file types.

2/10
FossifyOrg/.github/.github/actions/gradle-cache

FossifyOrg/.github/.github/actions/gradle-cache

6/10
checkmarx/kics-action

checkmarx/kics-action

GitHub actions of KICS scan - Keeping Infrastructure as Code Secure

4/10
Maintained action available
neonidian/teams-notify-build-status

neonidian/teams-notify-build-status

GitHub action: Send message to channel(s) in Microsoft Teams

2/10
testifysec/witness-run-action

testifysec/witness-run-action

4/10
hashicorp/tfc-workflows-github/actions/apply-run

hashicorp/tfc-workflows-github/actions/apply-run

HCP Terraform starter workflows and github actions to automate Terraform Cloud CI/CD pipelines.

7/10