StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

m-s-abeer/update-gha-summary-with-workflow-inputs

m-s-abeer/update-gha-summary-with-workflow-inputs

This A GitHub Action that automatically creates a formatted table of all workflow_dispatch input parameters in your workflow summary.

3/10
checkmarx/dustilock

checkmarx/dustilock

DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.

6/10
minicli/action-contributors

minicli/action-contributors

GitHub Action to dynamically update CONTRIBUTORS file

3/10
ericcornelissen/odgen-action/all

ericcornelissen/odgen-action/all

A GitHub Action for ODGen

4/10
kubernetes-sigs/kubebuilder-release-tools

kubernetes-sigs/kubebuilder-release-tools

Release tooling for KubeBuilder projects.

4/10
dekinderfiets/pr-description-enforcer

dekinderfiets/pr-description-enforcer

2/10
step-security/github-action-aerospike/_next/static/chunks/52206-c3a78c17c6739a35.js

step-security/github-action-aerospike/_next/static/chunks/52206-c3a78c17c6739a35.js

GitHub Action to set up an Aerospike database. Secure drop-in replacement for reugn/github-action-aerospike.

10/10
reactive-firewall/python-bandit-scan

reactive-firewall/python-bandit-scan

GitHub Action for Python Bandit SAST

4/10
yonasbsd/iggy/.github/actions/utils/setup-node-with-cache

yonasbsd/iggy/.github/actions/utils/setup-node-with-cache

Iggy is the persistent message streaming platform written in Rust, supporting QUIC, TCP and HTTP transport protocols, capable of processing millions of messages per second.

3/10
Maintained action available
n0-computer/discord-webhook-notify

n0-computer/discord-webhook-notify

Sends a notification to discord using a webhook URL. It is written in JavaScript so it will work with windows, osx, and linux execution environments.

2/10
abatilo/actions-poetry

abatilo/actions-poetry

GitHub Actions for Python projects using poetry

7/10
step-security/action-rubocop/__builder_checkout_dir__/.github/actions/secure-download-artifact

step-security/action-rubocop/__builder_checkout_dir__/.github/actions/secure-download-artifact

Run rubocop with reviewdog ๐Ÿถ. Secure drop-in replacement for reviewdog/action-rubocop.

10/10
aquaproj/update-checksum-action

aquaproj/update-checksum-action

GitHub Actions to update aqua-checksums.json. If aqua-checksums.json isn't latest, update aqua-checksums.json and push a commit

6/10
step-security/quarto-actions/action-info.client.tsx

step-security/quarto-actions/action-info.client.tsx

Secure drop-in replacement for quarto-dev/quarto-actions.

10/10
port-labs/cookiecutter-gha

port-labs/cookiecutter-gha

3/10
pytorch/vision/test-infra/.github/actions/check-disk-space

pytorch/vision/test-infra/.github/actions/check-disk-space

Datasets, Transforms and Models specific to Computer Vision

4/10
Maintained action available
step-security/test-reporting/__builder_checkout_dir__/.github/actions/secure-download-artifact

step-security/test-reporting/__builder_checkout_dir__/.github/actions/secure-download-artifact

Displays test results from popular testing frameworks directly in GitHub. Secure drop-in replacement for phoenix-actions/test-reporting.

8/10
rasahq/rasa-sdk/.github/actions/debug-grpc

rasahq/rasa-sdk/.github/actions/debug-grpc

SDK for the development of custom actions for Rasa

5/10
Maintained action available
ministryofjustice/laa-submit-crime-forms/.github/actions/delete-dev-release

ministryofjustice/laa-submit-crime-forms/.github/actions/delete-dev-release

This is the repository for the replacement of services: Claim a non-standard magistrates' court payment and Apply for prior authority to incur disbursements

7/10
shogo82148/actions-upload-release-asset

shogo82148/actions-upload-release-asset

Yet Another Upload Release Asset Action

7/10