StepSecurity Logo
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

meta-introspector/codeql-action/autobuild

meta-introspector/codeql-action/autobuild

Actions for running CodeQL analysis

2/10
os-climate/osc-github-devops/.github/actions/repository-tag-current-action

os-climate/osc-github-devops/.github/actions/repository-tag-current-action

Template Python project, common tests, GitHub Actions/Workflows, linting tools

5/10
Maintained action available
actions/delete-package-versions

actions/delete-package-versions

5/10
gradle/actions/wrapper-validation

gradle/actions/wrapper-validation

A collection of GitHub Actions to accelerate your Gradle Builds on GitHub

8/10
grafana/pyroscope/actions/backport

grafana/pyroscope/actions/backport

Continuous Profiling Platform. Debug performance issues down to a single line of code

7/10
step-security/background-action/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/background-action/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

Background commands with log tailing/capture; waits until file/port/socket/http are ready to proceed. Isolates/dedupe errors. Secure drop-in replacement for JarvusInnovations/background-action.

10/10
preactjs/compressed-size-action

preactjs/compressed-size-action

GitHub Action that adds compressed size changes to your PRs.

5/10
amannn/action-semantic-pull-request

amannn/action-semantic-pull-request

A GitHub Action that ensures that your PR title matches the Conventional Commits spec

5/10
portswigger-tim/safer-runner-action

portswigger-tim/safer-runner-action

A GitHub action to lockdown DNS, Network, sudo and Docker

5/10
Maintained action available
edera-dev/cross/.github/actions/cargo-publish

edera-dev/cross/.github/actions/cargo-publish

“Zero setup” cross compilation and “cross testing” of Rust crates

3/10
korniltsev/actions-upload-release-asset

korniltsev/actions-upload-release-asset

Yet Another Upload Release Asset Action

2/10
grafana/opentelemetry-ebpf-instrumentation/.github/actions/integration-test-image-build

grafana/opentelemetry-ebpf-instrumentation/.github/actions/integration-test-image-build

5/10
Maintained action available
anothrNick/github-tag-action

anothrNick/github-tag-action

A Github Action to tag a repo on merge.

6/10
rubygems/configure-rubygems-credentials

rubygems/configure-rubygems-credentials

Configure rubygems.org credential environment variables for use in other GitHub Actions.

5/10
Maintained action available
aerospike/aerospike-client-nodejs/.github/actions/run-ee-server

aerospike/aerospike-client-nodejs/.github/actions/run-ee-server

Node.js client for the Aerospike database

4/10
siemens/ix/.github/workflows/actions/visual-regression

siemens/ix/.github/workflows/actions/visual-regression

Siemens Industrial Experience is a design system for designers and developers, to consistently create the perfect digital experience for industrial software products.

6/10
codex-/return-dispatch

codex-/return-dispatch

⚙️ Dispatch an action to a foreign repository and output the newly created run ID.

5/10
Maintained action available
pytorch/pytorch/test-infra/.github/actions/pull-docker-image

pytorch/pytorch/test-infra/.github/actions/pull-docker-image

Tensors and Dynamic neural networks in Python with strong GPU acceleration

6/10
diggerhq/digger

diggerhq/digger

Digger is an open source IaC orchestration tool. Digger allows you to run IaC in your existing CI pipeline ⚡️

4/10
Maintained action available
avular-robotics/fork-fetch-gh-release-asset

avular-robotics/fork-fetch-gh-release-asset

Github Action to download an asset from a Github release

2/10