StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

envoyproxy/toolshed/gh-actions/diskspace

envoyproxy/toolshed/gh-actions/diskspace

7/10
step-security/claude-code-action/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

step-security/claude-code-action/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

Secure drop-in replacement for anthropics/claude-code-action.

10/10
yoavain/Setup-CSC

yoavain/Setup-CSC

Set up your GitHub Actions workflow to add csc.exe into the PATH

2/10
step-security/action-slack-notify

step-security/action-slack-notify

GitHub Action for sending a notification to a Slack channel. Secure drop-in replacement for rtCamp/action-slack-notify.

10/10
Maintained by StepSecurity
sigstore/scaffolding/actions/setup

sigstore/scaffolding/actions/setup

Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.

8/10
yonasBSD/paradedb/.github/actions/benchmark-queries

yonasBSD/paradedb/.github/actions/benchmark-queries

ParadeDB is a modern Elasticsearch alternative built on Postgres. Built for real-time, update-heavy workloads.

4/10
Maintained action available
grafana/tanka/.github/actions/setup-goversion

grafana/tanka/.github/actions/setup-goversion

Flexible, reusable and concise configuration for Kubernetes

7/10
neondatabase/delete-branch-action

neondatabase/delete-branch-action

4/10
kitabisa/sonarqube-action

kitabisa/sonarqube-action

Integrate SonarQube scanner to GitHub Actions

5/10
mgrybyk-org/allure-report-branch-js-action

mgrybyk-org/allure-report-branch-js-action

Allure Report with history per branch (JS)

4/10
github/lock

github/lock

Lock Action to support deployment locking for the branch-deploy Action

7/10
rfratto/depcheck

rfratto/depcheck

Github Action to create issues for outdated Go deps

2/10
yonasBSD/AFFiNE/.github/actions/server-test-env

yonasBSD/AFFiNE/.github/actions/server-test-env

There can be more than Notion and Miro. AFFiNE is a next-gen knowledge base that brings planning, sorting and creating all together. Privacy first, open-source, customizable and ready to use.

4/10
Maintained action available
anithapriyanatarajan/plumbing/.github/actions/setup-nightly-infra

anithapriyanatarajan/plumbing/.github/actions/setup-nightly-infra

This repo holds configuration for infrastructure used across the tektoncd org 🏗️

4/10
Maintained action available
pandoc/actions/setup

pandoc/actions/setup

4/10
matt-ball/newman-action

matt-ball/newman-action

Use Postman's headless collection runner, Newman, via a GitHub Action.

3/10
bcr-testing/continuous-integration/actions/bcr-pr-reviewer

bcr-testing/continuous-integration/actions/bcr-pr-reviewer

Bazel's Continuous Integration Setup

3/10
yonasBSD/grafana/.github/actions/check-jobs

yonasBSD/grafana/.github/actions/check-jobs

The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.

2/10
Maintained action available
pytorch/pytorch.github.io/test-infra/.github/actions/pull-docker-image

pytorch/pytorch.github.io/test-infra/.github/actions/pull-docker-image

The website for PyTorch

3/10
Maintained action available
gaurav-nelson/github-action-markdown-link-check

gaurav-nelson/github-action-markdown-link-check

⛔️ DEPRECATED Check all links in markdown files if they are alive or dead. 🔗✔️PS: https://github.com/tcort/github-action-markdown-link-check

5/10