Assess the risk of third-party GitHub Actions
Examples: ,
Actions
Assess all the actions
pguyot/arm-runner-action
Run tests natively and build images directly from GitHub Actions using a chroot-based virtualized Raspberry Pi (raspios/raspbian) environment
gradle/gradle-enterprise-build-validation-scripts/.github/actions/gradle/experiment-1
Executable scripts to assist in validating that your Gradle and Maven builds are in an optimal state in terms of maximizing work avoidance when using Develocity.
chainguard-images/actions/scan-apk
GitHub actions for the chainguard-images
step-security/setup-jfrog-cli/__builder_checkout_dir__/.github/actions/secure-download-artifact
Set up JFrog CLI in your GitHub Actions workflow. Secure drop-in replacement for jfrog/setup-jfrog-cli.
gnosis/cla-github-action
CLA Assistant GitHub Action
yonasbsd/rocksdb/.github/actions/install-gflags-on-macos
A library that provides an embeddable, persistent key-value store for fast storage.
step-security/github-api-commit-action/__builder_checkout_dir__/.github/actions/secure-download-artifact
Commits changes to the repository through the Github api instead of traditional git commands. Secure drop-in replacement for grafana/github-api-commit-action.
int128/kaniko-action
Build container image using Kaniko in GitHub Actions
zephyrproject-rtos/action-s3-cache
Cache dependencies and build outputs to S3
jetli/wasm-pack-action
Install `wasm-pack` by downloading the executable
bit-tasks/pull-request
Build pull request and update lane task for CI/CD
org-deacc-sec/no-secrets-here/.github/actions/safe-action
Empty Repo
grafana/writers-toolkit/vale-action
Technical documentation guidelines for Grafana Labs documentation
harden-runner-canary/caffeine/.github/actions/run-gradle
A high performance caching library for Java
github/contributors
GitHub Action that given an organization or repository, produces information about the contributors over the specified time period.
uncenter/setup-taplo
Setup Taplo in GitHub Actions.
pyvista/setup-headless-display-action
GitHub Action to setup a headless display on Linux and Windows (not needed on MacOS)
action-pack/tag-exists
Action to determine if a tag exists.
grafana/shared-workflows/_shared-workflows-check-drone-signature/actions/get-vault-secrets
A public-facing, centralized place to store reusable workflows used by Grafana Labs.
docker/setup-compose-action
GitHub Action to set up Docker Compose