StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

bubkoo/auto-assign

bubkoo/auto-assign

🎯 Automatically add reviewers/assignees to issues/PRs

2/10
boecht/birre/.github/actions/uv-env

boecht/birre/.github/actions/uv-env

BiRRe (Bitsight Rating Retriever) MCP server provides access to BitSight security rating data without installation

6/10
nelonoel/branch-name

nelonoel/branch-name

GitHub Action for exporting current branch name as an environment variable

3/10
prisma/create-prisma-postgres-database-action

prisma/create-prisma-postgres-database-action

5/10
gradle/gradle-command-action

gradle/gradle-command-action

Execute your Gradle build and trigger dependency submission

6/10
actions-security-demo/script-injection/.github/actions/test-coverage-processor

actions-security-demo/script-injection/.github/actions/test-coverage-processor

2/10
grafana/community-contributions/pkg/build/actions/bump-version

grafana/community-contributions/pkg/build/actions/bump-version

External contributor PR workflow testing sandbox

2/10
step-security/action-download-artifact/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

step-security/action-download-artifact/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

:gear: A GitHub Action to download an artifact associated with given workflow and commit or other criteria. Secure drop-in replacement for dawidd6/action-download-artifact.

10/10
yonasBSD/wazuh/.github/actions/5_builderpackage_linux-smoke-upgrade-test

yonasBSD/wazuh/.github/actions/5_builderpackage_linux-smoke-upgrade-test

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

4/10
Maintained action available
coveord/spinnaker/.github/actions/version

coveord/spinnaker/.github/actions/version

Spinnaker is an open source, multi-cloud continuous delivery platform for releasing software changes with high velocity and confidence.

3/10
bgd-labs/github-workflows/.github/actions/foundry-test

bgd-labs/github-workflows/.github/actions/foundry-test

a collection of github workflows used at bgd

4/10
peaceiris/actions-mdbook

peaceiris/actions-mdbook

GitHub Actions for mdBook (rust-lang/mdBook) ⚡️ Setup mdBook quickly and build your site fast. Linux (Ubuntu), macOS, and Windows are supported.

4/10
lovetoknow/slackify-markdown-action

lovetoknow/slackify-markdown-action

GitHub Action to convert markdown into Slack's mrkdwn.

3/10
grafana/hackathon-dragndrop-grafana/actions/backport

grafana/hackathon-dragndrop-grafana/actions/backport

The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.

2/10
actions-security-demo/pytorch/.github/actions/get-workflow-job-id

actions-security-demo/pytorch/.github/actions/get-workflow-job-id

Tensors and Dynamic neural networks in Python with strong GPU acceleration

2/10
coveo/ui-kit/.github/actions/e2e-headless-ssr-app-prod

coveo/ui-kit/.github/actions/e2e-headless-ssr-app-prod

Coveo UI kit repository, home of @coveo/headless, @coveo/atomic, and more.

4/10
Maintained action available
yonasBSD/rspack/.github/actions/artifact/upload

yonasBSD/rspack/.github/actions/artifact/upload

A fast Rust-based web bundler.

5/10
Maintained action available
mevisoft/formbricks/.github/actions/cache-build-web

mevisoft/formbricks/.github/actions/cache-build-web

2/10
grafana/plugin-ci-workflows/actions/plugins/publish/publish

grafana/plugin-ci-workflows/actions/plugins/publish/publish

Re-usable GitHub Actions workflows for building, testing, releasing and deploying plugins

5/10
Maintained action available
step-security/setup-zig/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/setup-zig/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

Install a Zig compiler for usage in GitHub Actions workflows. Secure drop-in replacement for mlugg/setup-zig.

10/10