StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

sonarsource/sonarqube-cli/.github/actions/setup-bun

sonarsource/sonarqube-cli/.github/actions/setup-bun

Command-line interface for SonarQube with AI agent integration. Scan for secrets and get fast feedback on code quality and security from your terminal.

6/10
caffeelake/cilium/.github/actions/wait-for-images

caffeelake/cilium/.github/actions/wait-for-images

eBPF-based Networking, Security, and Observability

3/10
omniverse-dev-new-house/security-review-agent

omniverse-dev-new-house/security-review-agent

LLM-powered security review โ€” analyzes PR diffs and posts findings as PR comments

1/10
haya14busa/action-depup

haya14busa/action-depup

Action which updates dependencies automatically

3/10
davideviolante/pr-automerge-action

davideviolante/pr-automerge-action

GitHub Action to automatically merge pull requests when approved by N reviewers.

2/10
igorskyflyer/action-readfile

igorskyflyer/action-readfile

๐ŸŒฌ๏ธ A GitHub Action to read an arbitrary file and either output it or use it in another GitHub Action. ๐Ÿƒ

2/10
advanced-security/sarif-toolkit/public-layout.tsx

advanced-security/sarif-toolkit/public-layout.tsx

All things SARIF, as an Action

7/10
snyk/actions/dotnet

snyk/actions/dotnet

A set of GitHub actions for checking your projects for vulnerabilities.

4/10
reviewdog/action-depup

reviewdog/action-depup

Action which updates dependencies automatically

3/10
kong/public-shared-actions/slack-actions/workflow-notification

kong/public-shared-actions/slack-actions/workflow-notification

Shared actions available to both public and private repositories

5/10
Maintained action available
grafana/shared-workflows/actions/docker-export-digest

grafana/shared-workflows/actions/docker-export-digest

A public-facing, centralized place to store reusable workflows used by Grafana Labs.

6/10
phpstan/phpstan-phpunit/build-infection/.github/actions/setup-php

phpstan/phpstan-phpunit/build-infection/.github/actions/setup-php

PHPUnit extensions and rules for PHPStan

7/10
rudderlabs/github-action-check-pr-title

rudderlabs/github-action-check-pr-title

Check PR title against conventional commit standard

3/10
oaslananka-lab/boardguard

oaslananka-lab/boardguard

Hardware design review, CI, and release preflight for KiCad projects

6/10
nv-gha-runners/cuda-python/.github/actions/fetch_ctk

nv-gha-runners/cuda-python/.github/actions/fetch_ctk

CUDA Python: Performance meets Productivity

4/10
gottox/irc-message-action

gottox/irc-message-action

Github Action to Interact with IRC Channels and Users

1/10
Maintained action available
ashishkurmi/harden-runner

ashishkurmi/harden-runner

GitHub Action to prevent certain types of software supply chain attacks

3/10
ory/ci/sdk/generate

ory/ci/sdk/generate

Automation and robots for Ory's CI and CD pipelines

4/10
svenstaro/upx-action

svenstaro/upx-action

Strips and runs upx on binaries

3/10
walbo/validate-json

walbo/validate-json

Validate JSON files agains their `$schema`

2/10