StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

politicalsphere/ci/.github/actions/ps-bootstrap/ps-init

politicalsphere/ci/.github/actions/ps-bootstrap/ps-init

CI/CD pipelines and GitHub Actions for Political Sphere

3/10
Maintained action available
elastic/oblt-actions/slack/send

elastic/oblt-actions/slack/send

7/10
depot/build-push-action

depot/build-push-action

GitHub Action to build and push Docker images with Depot

5/10
step-security/import-codesign-certs/__builder_checkout_dir__/.github/actions/privacy-check

step-security/import-codesign-certs/__builder_checkout_dir__/.github/actions/privacy-check

GitHub Action for Importing Code-signing Certificates into a Keychain. Secure drop-in replacement for Apple-Actions/import-codesign-certs.

9/10
lfit/releng-reusable-workflows/.github/actions/git-commit-message-action

lfit/releng-reusable-workflows/.github/actions/git-commit-message-action

Reusuable workflows developed by LF Release Engineering

7/10
yonasbsd/posthog/.github/actions/get-pr-labels

yonasbsd/posthog/.github/actions/get-pr-labels

๐Ÿฆ” PostHog provides open-source web & product analytics, session recording, feature flagging and A/B testing that you can self-host. Get started - free.

2/10
Maintained action available
open-telemetry/opentelemetry-ruby-contrib/.github/actions/test_gem

open-telemetry/opentelemetry-ruby-contrib/.github/actions/test_gem

Contrib Packages for the OpenTelemetry Ruby API and SDK implementation.

6/10
caffeelake/alloy/.github/actions/homebrew-bump-formula

caffeelake/alloy/.github/actions/homebrew-bump-formula

OpenTelemetry Collector distribution with programmable pipelines

3/10
continuousauth/action

continuousauth/action

1/10
nvidia/nautobot-app-nvdatamodels/.github/actions/setup-environment

nvidia/nautobot-app-nvdatamodels/.github/actions/setup-environment

A Nautobot plugin which provides data models for NVIDIA products

6/10
facebook/dotslash-publish-release

facebook/dotslash-publish-release

Create DotSlash files for GitHub releases

5/10
step-security/actions/whereami

step-security/actions/whereami

A collection of reusable Github Actions workflows.

7/10
cclauss/github-action-for-pytest

cclauss/github-action-for-pytest

A GitHub Action to run a pytest command when new code is pushed into your repo

3/10
approved-3rd-party-actions/sticky-pull-request-comment

approved-3rd-party-actions/sticky-pull-request-comment

create comment on pull request, if exists update that comment.

2/10
wei/curl

wei/curl

Wraps the curl CLI to be used in Github Actions

3/10
verity-org/verity/.github/actions/upload-pages-artifact

verity-org/verity/.github/actions/upload-pages-artifact

2/10
yonasbsd/quickwit/.github/actions/cross-build-binary

yonasbsd/quickwit/.github/actions/cross-build-binary

Sub-second search & analytics engine on cloud storage

5/10
Maintained action available
tonybaloney/pycharm-security

tonybaloney/pycharm-security

Finds security holes in your Python projects from PyCharm and GitHub

4/10
wearerequired/lint-action

wearerequired/lint-action

โœจ GitHub Action for detecting and auto-fixing lint errors

3/10
yonasbsd/dragonfly/.github/actions/regression-tests

yonasbsd/dragonfly/.github/actions/regression-tests

A modern replacement for Redis and Memcached

2/10
Maintained action available