StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

yonasBSD/surrealdb/.github/actions/publish-binaries

yonasBSD/surrealdb/.github/actions/publish-binaries

A scalable, distributed, collaborative, document-graph database, for the realtime web

4/10
Maintained action available
PQCA/cbomkit-action

PQCA/cbomkit-action

GitHub Action to generate Cryptography Bill of Materials (CBOM)

5/10
Maintained action available
softprops/action-gh-release/_next/static/chunks/31497-9433930b8b260696.js

softprops/action-gh-release/_next/static/chunks/31497-9433930b8b260696.js

📦 :octocat: GitHub Action for creating GitHub Releases

5/10
Maintained action available
alexellis/setup-arkade

alexellis/setup-arkade

Your favourite developer CLIs for GitHub Actions

3/10
step-security/vitest-coverage-report-action

step-security/vitest-coverage-report-action

A GitHub Action to report vitest test coverage results. Secure drop-in replacement for davelosert/vitest-coverage-report-action.

10/10
Maintained by StepSecurity
googleapis/code-suggester

googleapis/code-suggester

7/10
Gamesight/slack-workflow-status

Gamesight/slack-workflow-status

Github action for sending workflow run results to Slack

3/10
advanced-security/dart-analyzer-sarif

advanced-security/dart-analyzer-sarif

Convert `dart analyze` CLI output into SARIF

6/10
step-security/release-on-push-action/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

step-security/release-on-push-action/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

Github Action to create a git tag + release when pushed to master. Secure drop-in replacement for rymndhng/release-on-push-action.

10/10
brittanyshelton23/docs/.github/actions/node-npm-setup

brittanyshelton23/docs/.github/actions/node-npm-setup

The open-source repo for docs.github.com

2/10
vers-one/dotnet-project-version-updater

vers-one/dotnet-project-version-updater

A GitHub action to update or bump project versions. Supports .csproj, .props, .nuspec, and many other .NET file types.

3/10
FossifyOrg/.github/.github/actions/gradle-cache

FossifyOrg/.github/.github/actions/gradle-cache

6/10
emqx/upload-assets

emqx/upload-assets

GitHub Action to upload multiple assets to a release

3/10
Dargon789/openzeppelin-contracts/.github/actions/storage-layout

Dargon789/openzeppelin-contracts/.github/actions/storage-layout

OpenZeppelin Contracts is a library for secure smart contract development.

6/10
checkmarx/kics-action

checkmarx/kics-action

GitHub actions of KICS scan - Keeping Infrastructure as Code Secure

4/10
Maintained action available
neonidian/teams-notify-build-status

neonidian/teams-notify-build-status

GitHub action: Send message to channel(s) in Microsoft Teams

2/10
testifysec/witness-run-action

testifysec/witness-run-action

3/10
hashicorp/tfc-workflows-github/actions/apply-run

hashicorp/tfc-workflows-github/actions/apply-run

HCP Terraform starter workflows and github actions to automate Terraform Cloud CI/CD pipelines.

6/10
step-security/gha-repo-manager/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/gha-repo-manager/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

Manage your Github repo(s) settings and secrets using Github Actions and a yaml file. Secure drop-in replacement for andrewthetechie/gha-repo-manager.

10/10
PoliticalSphere/ci/.github/actions/ps-setup

PoliticalSphere/ci/.github/actions/ps-setup

CI/CD pipelines and GitHub Actions for Political Sphere

2/10