StepSecurity Logo
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

vijaykramesh/pr-lint-action

vijaykramesh/pr-lint-action

A GitHub Action that verifies your pull request contains a reference to a Jira ticket.

3/10
Seagate/actions-dco

Seagate/actions-dco

GitHub Actions that enforces the Developer Certificate of Origin (DCO) on Pull Requests

3/10
grafana/loki-release/lib/actions/should-release

grafana/loki-release/lib/actions/should-release

Pipeline code for public releases of Loki and GEL

5/10
Maintained action available
org-deac-test/testing-workflows/.github/actions/safe-action

org-deac-test/testing-workflows/.github/actions/safe-action

3/10
thehanimo/pr-title-checker

thehanimo/pr-title-checker

An action to automatically check if pull request titles conform to Contribution Guidelines

4/10
manoelcampos/asciidoctor-ghpages-action

manoelcampos/asciidoctor-ghpages-action

📄⚙️ GitHub Action to build AsciiDoc GitHub Pages: recursively converts every adoc file to html, renaming resulting README.html to index.html. It also enables generating an ebook.pdf or AsciiDoctor Reveal.js slides

3/10
grafana/grafana-aio11y-app/.github/workflows/build-plugin

grafana/grafana-aio11y-app/.github/workflows/build-plugin

App plugin for GPU & AI model observability

2/10
Contrast-Security-OSS/contrastscan-action

Contrast-Security-OSS/contrastscan-action

Contrast Scan GitHub action

3/10
jetify-com/devbox-install-action

jetify-com/devbox-install-action

4/10
lannonbr/repo-permission-check-action

lannonbr/repo-permission-check-action

GitHub Action to check if a user has specific access to a repo

3/10
coveo/ui-kit/.github/actions/e2e-headless-ssr-pages-dev

coveo/ui-kit/.github/actions/e2e-headless-ssr-pages-dev

Coveo UI kit repository, home of @coveo/headless, @coveo/atomic, and more.

4/10
Maintained action available
pytorch/ao/test-infra/.github/actions/teardown-linux

pytorch/ao/test-infra/.github/actions/teardown-linux

PyTorch native quantization and sparsity for training and inference

4/10
Maintained action available
nick-fields/private-action-loader

nick-fields/private-action-loader

Allows private GitHub Actions to be easily reused

3/10
opcr-io/policy-push-action

opcr-io/policy-push-action

policy-push-action

3/10
oprypin/find-latest-tag

oprypin/find-latest-tag

GitHub Action: Find the latest tag in a GitHub repository

4/10
Noelware/docker-manifest-action

Noelware/docker-manifest-action

🐻‍❄️🐳 Simple and tiny GitHub action to link Docker manifests easily.

5/10
Maintained action available
step-security/skip-duplicate-actions/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

step-security/skip-duplicate-actions/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

Save time and cost when using GitHub Actions. Secure drop-in replacement for fkirc/skip-duplicate-actions.

10/10
panva/node/.github/actions/install-clang

panva/node/.github/actions/install-clang

Node.js JavaScript runtime :sparkles::turtle::rocket::sparkles:

3/10
step-security/jest-coverage-action-demo/.github/actions/test

step-security/jest-coverage-action-demo/.github/actions/test

8/10
deepcode-ai/llama.cpp/.github/actions/windows-setup-curl

deepcode-ai/llama.cpp/.github/actions/windows-setup-curl

Port of Facebook's LLaMA model in C/C++

5/10
Maintained action available