StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

step-security/pip-action/__builder_checkout_dir__/.github/actions/secure-download-artifact

step-security/pip-action/__builder_checkout_dir__/.github/actions/secure-download-artifact

Github Action to install Pip packages. Secure drop-in replacement for BSFishy/pip-action.

10/10
step-security/conventional-changelog-action/__builder_checkout_dir__/.github/actions/secure-download-artifact

step-security/conventional-changelog-action/__builder_checkout_dir__/.github/actions/secure-download-artifact

Github Action that generates a changelog with the Conventional Changelog CLI. Secure drop-in replacement for TriPSs/conventional-changelog-action.

10/10
kewisch/action-web-ext

kewisch/action-web-ext

A GitHub Action to run web-ext commands

1/10
Maintained action available
tsukimarf/docs/.github/actions/retry-command

tsukimarf/docs/.github/actions/retry-command

The open-source repo for docs.github.com

2/10
jofthev/medusa/.github/actions/cache-deps

jofthev/medusa/.github/actions/cache-deps

Building blocks for digital commerce

5/10
Maintained action available
cshein45-movement/move-token

cshein45-movement/move-token

Movement Ecosystem

3/10
oxsecurity/megalinter/flavors/salesforce

oxsecurity/megalinter/flavors/salesforce

๐Ÿฆ™ MegaLinter analyzes 50 languages, 22 formats, 21 tooling formats, excessive copy-pastes, spelling mistakes and security issues in your repository sources with a GitHub Action, other CI tools or locally.

5/10
Maintained action available
rashdamada/androidx/.github/actions/build-single-project

rashdamada/androidx/.github/actions/build-single-project

Development environment for Android Jetpack extension libraries under the androidx namespace. Synchronized with Android Jetpack's primary development branch on AOSP.

2/10
cyber-dojo/pinned-checkout

cyber-dojo/pinned-checkout

Composite actions/checkout pinned to v6 commit

3/10
elastic/oblt-actions/oblt-cli/cluster-credentials

elastic/oblt-actions/oblt-cli/cluster-credentials

7/10
accuknox/report-action

accuknox/report-action

Github actions to trigger report generation for runtime security.

3/10
check-spelling/check-spelling/../check-spelling-actions/upload-sarif

check-spelling/check-spelling/../check-spelling-actions/upload-sarif

Spelling checker action to check spelling in repositories / pull requests / commits

7/10
invisirisk/pse-action

invisirisk/pse-action

5/10
Maintained action available
datadog/install-datadog-ci-github-action

datadog/install-datadog-ci-github-action

6/10
step-security/octocov-action

step-security/octocov-action

:octocat: GitHub Action for octocov. Secure drop-in replacement for k1LoW/octocov-action.

10/10
Maintained by StepSecurity
iflow-ai/iflow-cli-action

iflow-ai/iflow-cli-action

Automate software development tasks within your GitHub repositories with iFlow CLI and AI ecosystem. https://github.com/iflow-ai/iflow-cli

4/10
step-security/setup-swift/.ref-download-test

step-security/setup-swift/.ref-download-test

GitHub Action to setup Swift environment. Secure drop-in replacement for SwiftyLab/setup-swift.

10/10
tomasreyes/maui/.github/actions/triage-labels

tomasreyes/maui/.github/actions/triage-labels

.NET MAUI is the .NET Multi-platform App UI, a framework for building native device applications spanning mobile, tablet, and desktop.

7/10
step-security/setup-bazelisk

step-security/setup-bazelisk

Set up your GitHub Actions workflow with a specific version of Bazelisk. Secure drop-in replacement for bazelbuild/setup-bazelisk.

9/10
Maintained by StepSecurity
bibipkins/dotnet-test-reporter

bibipkins/dotnet-test-reporter

A GitHub action to parse test results and post the summary as a PR comment

4/10
Maintained action available