StepSecurity Logo
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

tisonkun/actions-dco

tisonkun/actions-dco

GitHub Actions that enforces the Developer Certificate of Origin (DCO) on Pull Requests

2/10
falcosecurity/falco-actions/start

falcosecurity/falco-actions/start

Run Falco in a GitHub Actions to detect suspicious behavior in your CI/CD

7/10
sethvargo/ratchet

sethvargo/ratchet

A tool for securing CI/CD workflows with version pinning.

4/10
python-semantic-release/python-semantic-release

python-semantic-release/python-semantic-release

Automating Releases via SemVer and Commit Message Conventions

7/10
elastic/oblt-actions/buildkite/download-artifact

elastic/oblt-actions/buildkite/download-artifact

7/10
ridedott/merge-me-action

ridedott/merge-me-action

Automatically merges Pull Requests.

5/10
Maintained action available
step-security/workflow-conclusion-action/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

step-security/workflow-conclusion-action/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

GitHub action to get workflow conclusion. Secure drop-in replacement for technote-space/workflow-conclusion-action.

10/10
step-security/github-action-get-latest-release/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

step-security/github-action-get-latest-release/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

A Github action to get the latest release from another repository. Secure drop-in replacement for pozetroninc/github-action-get-latest-release.

10/10
angular/dev-infra/github-actions/commit-message-based-labels

angular/dev-infra/github-actions/commit-message-based-labels

Angular Development Infrastructure

6/10
harden-runner-canary/kyverno/.github/actions/setup-test-env

harden-runner-canary/kyverno/.github/actions/setup-test-env

Kubernetes Native Policy Management

3/10
ublue-os/container-storage-action

ublue-os/container-storage-action

6/10
Alemiz112/netbird-connect

Alemiz112/netbird-connect

A GitHub Action to connect your workflow to your Netbird network. Inspired by tailscale/github-action.

3/10
wearefrank/ci-cd-templates/update-buildinfo

wearefrank/ci-cd-templates/update-buildinfo

3/10
Maintained action available
step-security/action-semantic-demo/setup-r-dependencies

step-security/action-semantic-demo/setup-r-dependencies

8/10
Ardiannn08/resolve-outdated-comment

Ardiannn08/resolve-outdated-comment

To keep pull requests free of flooded comments, automatically resolve or remove `outdated` comments on pull requests from a specified GitHub user bot.

1/10
secureblue/secureblue/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

secureblue/secureblue/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

A security-focused desktop and server linux operating system.

7/10
grafana/k6-extension-actions/k6-versions-to-test

grafana/k6-extension-actions/k6-versions-to-test

Reusable composite GitHub actions to support k6 extension development.

6/10
dupuy/action-verify-labels

dupuy/action-verify-labels

Verify labels in pull request are assigned or not

3/10
webiny/action-conventional-commits

webiny/action-conventional-commits

Ensures that all commits are following the conventional-commits standard.

3/10
modeseven-lfreleng-actions/helm-chart-publish-action

modeseven-lfreleng-actions/helm-chart-publish-action

Publishes Helm Charts to an OCI container registry

5/10
Maintained action available