StepSecurity Logo
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

elastic/cloudbeat/.github/actions/aws-asset-inventory-ci

elastic/cloudbeat/.github/actions/aws-asset-inventory-ci

Analyzing Cloud Security Posture

6/10
quarto-dev/quarto-actions/setup

quarto-dev/quarto-actions/setup

7/10
actions-security-demo/script-injection/actions/remove-milestone

actions-security-demo/script-injection/actions/remove-milestone

2/10
PicnicSupermarket/caffeine/.github/actions/run-gradle

PicnicSupermarket/caffeine/.github/actions/run-gradle

A high performance caching library for Java

5/10
transferwise/actions-pr-checker

transferwise/actions-pr-checker

Github Action to check PR title/description/labels.

6/10
grafana/loki/_shared-workflows-dockerhub-login/actions/get-vault-secrets

grafana/loki/_shared-workflows-dockerhub-login/actions/get-vault-secrets

Like Prometheus, but for logs.

7/10
ko-build/setup-ko

ko-build/setup-ko

6/10
step-security/set-github-variable

step-security/set-github-variable

Use this Github Action to update a variable in your Github Action Workflows for your repository. Secure drop-in replacement for mmoyaferrer/set-github-variable.

10/10
Maintained by StepSecurity
cisagov/action-lineage

cisagov/action-lineage

7/10
grafana/prometheus/.github/promci/actions/publish_main

grafana/prometheus/.github/promci/actions/publish_main

The Prometheus monitoring system and time series database.

5/10
Maintained action available
bats-core/bats-action

bats-core/bats-action

Github action that setup Bats and all the bats libs: support, assert, detik, file.

6/10
microsoft/powerplatform-actions/who-am-i

microsoft/powerplatform-actions/who-am-i

Power Platform GitHub Actions automate common build and deployment tasks related to Power Platform. This includes synchronization of solution metadata (a.k.a. solutions) between development environments and source control, generating build artifacts, deploying to downstream environments, provisioning/de-provisioning of environments, and the ability to perform static analysis checks against your solution using the PowerApps checker service.

6/10
step-security/actions-oidc-debugger/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

step-security/actions-oidc-debugger/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

An Action for printing OIDC claims in GitHub Actions. Secure drop-in replacement for github/actions-oidc-debugger.

10/10
neondatabase/neon/.github/actions/run-python-test-set

neondatabase/neon/.github/actions/run-python-test-set

Neon: Serverless Postgres. We separated storage and compute to offer autoscaling, code-like database branching, and scale to zero.

3/10
Maintained action available
Git-Hub-Chris/FreeCAD/.github/workflows/actions/runPythonTests

Git-Hub-Chris/FreeCAD/.github/workflows/actions/runPythonTests

Open source 3D modeler.

7/10
optum/booster/.github/actions/call-rush

optum/booster/.github/actions/call-rush

Booster Cloud Framework

3/10
thomaseizinger/assign-pr-creator-action

thomaseizinger/assign-pr-creator-action

2/10
step-security/cirruslabs-cache/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/cirruslabs-cache/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

Cache dependencies and build outputs in GitHub Actions. Secure drop-in replacement for cirruslabs/cache.

10/10
istio/get-istioctl

istio/get-istioctl

3/10
GitGuardian/ggshield-action

GitGuardian/ggshield-action

GitGuardian Shield GitHub Action - Find exposed credentials in your commits

5/10