StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

cyber-dojo/download-artifact

cyber-dojo/download-artifact

Composite workflow to download a docker image created by reusable-actions-workflows' secure-docker-build workflow.

3/10
deepcode-ai/codeql/codeql/.github/actions/fetch-codeql

deepcode-ai/codeql/codeql/.github/actions/fetch-codeql

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

2/10
technote-space/assign-author

technote-space/assign-author

GitHub Actions to assign author to issue or PR

3/10
hashicorp/tfc-workflows-github/actions/create-run

hashicorp/tfc-workflows-github/actions/create-run

HCP Terraform starter workflows and github actions to automate Terraform Cloud CI/CD pipelines.

7/10
deriv-com/shared-actions/.github/actions/post_preview_link_comment

deriv-com/shared-actions/.github/actions/post_preview_link_comment

This repository is dedicated to hosting reusable GitHub Actions YAML files that can be shared across different repositories.

4/10
Maintained action available
chainguard-dev/actions/setup-terraform-docs

chainguard-dev/actions/setup-terraform-docs

A collection of reusable Github Actions workflows.

8/10
Tsukimarf/stytch-ios/.github/actions/bootstrap

Tsukimarf/stytch-ios/.github/actions/bootstrap

5/10
sigoden/install-binary

sigoden/install-binary

GitHub Action to install a binary from a GitHub Release

2/10
lfreleng-actions/python-sbom-action

lfreleng-actions/python-sbom-action

Generates an SBOM for Python projects

4/10
Maintained action available
mridang/action-semantic-release

mridang/action-semantic-release

Automates semantic-release on GitHub pushes, including plugin management and optional status check waiting

3/10
Maintained action available
NVIDIA/onnxruntime/.github/actions/macos-ci-setup

NVIDIA/onnxruntime/.github/actions/macos-ci-setup

ONNX Runtime: cross-platform, high performance ML inferencing and training accelerator

5/10
Maintained action available
elastic/apm-agent-dotnet/.github/workflows/bootstrap

elastic/apm-agent-dotnet/.github/workflows/bootstrap

8/10
edera-dev/cross/.github/actions/setup-rust

edera-dev/cross/.github/actions/setup-rust

“Zero setup” cross compilation and “cross testing” of Rust crates

3/10
JoftheV/pytorch/.github/actions/setup-xpu

JoftheV/pytorch/.github/actions/setup-xpu

Tensors and Dynamic neural networks in Python with strong GPU acceleration

2/10
ionos-deploy-now/artifact-action

ionos-deploy-now/artifact-action

1/10
neondatabase/neon/.github/actions/download

neondatabase/neon/.github/actions/download

Neon: Serverless Postgres. We separated storage and compute to offer autoscaling, code-like database branching, and scale to zero.

3/10
ministryofjustice/hmpps-probation-integration-services/.github/actions/dependabot-automerge

ministryofjustice/hmpps-probation-integration-services/.github/actions/dependabot-automerge

A collection of small, domain-focused integrations to support HMPPS Digital services that need to interact with probation data.

8/10
spenserblack/actions-wiki

spenserblack/actions-wiki

:open_book: Deploy docs from your source tree to a GitHub wiki

2/10
yonasBSD/prql/.github/actions/build-prqlc-c

yonasBSD/prql/.github/actions/build-prqlc-c

PRQL is a modern language for transforming data — a simple, powerful, pipelined SQL replacement

4/10
Maintained action available
ministryofjustice/hmpps-github-actions/.github/actions/slack_codescan_notification

ministryofjustice/hmpps-github-actions/.github/actions/slack_codescan_notification

Github actions for HMPPS projects

6/10