StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

orcid/pre-commit-bash-action

orcid/pre-commit-bash-action

2/10
actions/checkout

actions/checkout

Action for checking out a repo

6/10
snyk/actions/python-3.7

snyk/actions/python-3.7

A set of GitHub actions for checking your projects for vulnerabilities.

4/10
actions-cool/maintain-one-comment

actions-cool/maintain-one-comment

๐Ÿ“Œ Maintain just one comment in Issue and PR by GitHub Action.

5/10
tombi-toml/setup-tombi

tombi-toml/setup-tombi

Set up Tombi in your GitHub Actions workflow

4/10
Maintained action available
launchdarkly/dotnet-logging-adapter-nlog/.github/actions/release-build

launchdarkly/dotnet-logging-adapter-nlog/.github/actions/release-build

Adapter from LaunchDarkly.Logging API to NLog

5/10
step-security/repo-sync-pull-request/__builder_checkout_dir__/.github/actions/secure-download-artifact

step-security/repo-sync-pull-request/__builder_checkout_dir__/.github/actions/secure-download-artifact

โคต๏ธ A GitHub Action for creating pull requests. Secure drop-in replacement for repo-sync/pull-request.

10/10
github/codeql-action/autobuild

github/codeql-action/autobuild

Actions for running CodeQL analysis

10/10
anchore/scan-action/download-grype

anchore/scan-action/download-grype

Anchore container analysis and scan provided as a GitHub Action

6/10
haya14busa/action-bumpr

haya14busa/action-bumpr

๐Ÿ’ฅ Bump semantic version tag on merging Pull Requests with specific lables.

4/10
sonarsource/sonar-java/.github/actions/write-file

sonarsource/sonar-java/.github/actions/write-file

:coffee: SonarSource Static Analyzer for Java Code Quality and Security

4/10
Maintained action available
step-security/dsanders11-project-actions/find-project

step-security/dsanders11-project-actions/find-project

A collection of actions for automating GitHub projects. Secure drop-in replacement for dsanders11/project-actions.

10/10
Maintained by StepSecurity
product-os/flowzone/.github/actions/test

product-os/flowzone/.github/actions/test

Reusable, opinionated, zero-conf workflows for GitHub actions

5/10
Maintained action available
eliashaeussler/gha/.github/actions/is-fork

eliashaeussler/gha/.github/actions/is-fork

๐ŸŒˆ Reusable GitHub Actions and Workflows for use in my personal projects

4/10
cookieai-jar/github-security-jira

cookieai-jar/github-security-jira

Github Action for integrating Security Alerts with JIRA

3/10
modeseven-lfreleng-actions/harden-runner-block-action

modeseven-lfreleng-actions/harden-runner-block-action

Sources and implements a central step-security/harden-runner policy that blocks

4/10
mhausenblas/mkdocs-deploy-gh-pages

mhausenblas/mkdocs-deploy-gh-pages

GitHub Action to deploy an MkDocs site to GitHub Pages

5/10
dotnet/issue-labeler/download

dotnet/issue-labeler/download

An issue labeler bot for use in dotnet repositories.

4/10
yonasbsd/grafana/.github/actions/build-package

yonasbsd/grafana/.github/actions/build-package

The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.

2/10
Maintained action available
breathingdust/firewatch

breathingdust/firewatch

Github Action which alerts a Slack channel if an issue receives reactions over a specified threshold.

0/10