Assess the risk of third-party GitHub Actions
Examples: ,
Actions
Assess all the actions
openzeppelin/tron-contracts/.github/actions/storage-layout
aerospike/aerospike-client-csharp/.github/actions/build
Aerospike C# Client Library
yonasbsd/rocksdb/.github/actions/build-for-benchmarks
A library that provides an embeddable, persistent key-value store for fast storage.
actions-security-demo/script-injection/actions/metrics-collector
viasat::Git-Viasat-Com-PoC::seceng-vionix-stepsecurity-poc-test/github/tenable-terrascan-action
Mirror from https://github.com/tenable/terrascan-action
christian-draeger/write-properties
Github action to write java properties files
step-security/pip-action
Github Action to install Pip packages. Secure drop-in replacement for BSFishy/pip-action.
wolfi-dev/actions/wolfictl-update-rm
A collection of reusable Github Actions workflows.
machine-learning-apps/actions-chatops
Actions That Enables ChatOps In a PR Through a GitHub App
step-security/action-swiftlint/__builder_checkout_dir__/.github/actions/secure-download-artifact
GitHub Action for SwiftLint. Secure drop-in replacement for norio-nomura/action-swiftlint.
stripe/openapi/actions/notify-release
An OpenAPI specification for the Stripe API.
firedancer-io/firedancer/.github/actions/hugepages
Firedancer is Jump Crypto's Solana validator software.
turbocoder13/py-lintro/.github/actions/setup-docker
Making linters play nice... Mostly.
secureblue/secureblue/__builder_checkout_dir__/.github/actions/privacy-check
A security-focused desktop and server linux operating system.
shayki5/print-workflow-dispatch-inputs
This GitHub Action prints all input values from a `workflow_dispatch` event to the log. Optionally, it can also print all environment variables. It's a simple and effective tool for debugging or verifying input values and environment settings in your manually triggered workflows.
sonarsource/release-github-actions/update-plugins-deployer
A collection of reusable GitHub Actions to automate the analyzer release process. This toolbox offers modular automations to reduce manual work for squads, handling tasks like changelog generation, version bumps, and release publishing. These actions help teams focus on code quality by simplifying workflows.
qwenlm/qwen-code-action
A GitHub Action that integrates Qwen Code into your development workflow.
orcid/orcid-source-cache-action
nvidia/cudaqx/.github/actions/get-cudaq-version
Accelerated libraries for quantum-classical computing built on CUDA-Q.
step-security/release-drafter
Drafts your next release notes as pull requests are merged into master. Secure drop-in replacement for release-drafter/release-drafter.