StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

envoyproxy/toolshed/actions/github/checks

envoyproxy/toolshed/actions/github/checks

7/10
python-semantic-release/publish-action

python-semantic-release/publish-action

GitHub Action to publish assets to a release

6/10
jakejarvis/cloudflare-purge-action

jakejarvis/cloudflare-purge-action

🗑️ GitHub Action to purge a website's cache via the Cloudflare API

4/10
contributor-assistant/github-action

contributor-assistant/github-action

CLA Assistant GitHub Action

5/10
triat/terraform-security-scan

triat/terraform-security-scan

Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec

4/10
harden-runner-canary/kyverno/.github/actions/kyverno-wait-ready

harden-runner-canary/kyverno/.github/actions/kyverno-wait-ready

Kubernetes Native Policy Management

3/10
step-security/ghaction-import-gpg

step-security/ghaction-import-gpg

GitHub Action to import a GPG key. Secure drop-in replacement for crazy-max/ghaction-import-gpg.

10/10
Maintained by StepSecurity
yettoapp/actions/setup-languages

yettoapp/actions/setup-languages

GitHub Actions which are used across the Yetto suite.

2/10
JimCronqvist/action-ssh

JimCronqvist/action-ssh

GitHub Action for executing SSH commands on remote servers

3/10
Prateek-stepsecurity/harden-runner

Prateek-stepsecurity/harden-runner

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-time.

5/10
step-security/setup-kubectl/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/setup-kubectl/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

GitHub Action for installing Kubectl. Secure drop-in replacement for Azure/setup-kubectl.

10/10
redhat-actions/buildah-build

redhat-actions/buildah-build

GitHub Action to use 'buildah' to build a container image.

6/10
spotdemo4/nix-simple-cache-action/.github/actions/init

spotdemo4/nix-simple-cache-action/.github/actions/init

saves and restores the nix store to/from the actions cache

4/10
hmarr/auto-approve-action

hmarr/auto-approve-action

👍 GitHub Action for automatically approving GitHub pull requests

3/10
yonasBSD/rocksdb/.github/actions/cache-getdeps-downloads

yonasBSD/rocksdb/.github/actions/cache-getdeps-downloads

A library that provides an embeddable, persistent key-value store for fast storage.

4/10
Maintained action available
step-security/setup-ko

step-security/setup-ko

Secure drop-in replacement for ko-build/setup-ko.

10/10
Maintained by StepSecurity
pytorch/data/test-infra/.github/actions/pull-docker-image

pytorch/data/test-infra/.github/actions/pull-docker-image

A PyTorch repo for data loading and utilities to be shared by the PyTorch domain libraries.

4/10
Maintained action available
ljharb/actions/node/prepublish

ljharb/actions/node/prepublish

GitHub actions I use for CI.

4/10
nightfallai/nightfall_dlp_action

nightfallai/nightfall_dlp_action

GitHub Data Loss Prevention (DLP) Action: Scan Pull Requests for sensitive data, like credentials & secrets, PII, credit card numbers, and more.

4/10
yonasBSD/rocksdb/.github/actions/perform-benchmarks

yonasBSD/rocksdb/.github/actions/perform-benchmarks

A library that provides an embeddable, persistent key-value store for fast storage.

4/10
Maintained action available