StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

octodemo/philips-actions-workshop/.github/actions/custom-js-action

octodemo/philips-actions-workshop/.github/actions/custom-js-action

0/10
jjchange10/test-actions/.github/actions/github-api-test-action

jjchange10/test-actions/.github/actions/github-api-test-action

2/10
step-security/action-markdownlint/__builder_checkout_dir__/.github/actions/secure-download-artifact

step-security/action-markdownlint/__builder_checkout_dir__/.github/actions/secure-download-artifact

Run markdownlint with reviewdog. Secure drop-in replacement for reviewdog/action-markdownlint.

10/10
actions/runner

actions/runner

The Runner for GitHub Actions :rocket:

10/10
scribe-security/action-slsa

scribe-security/action-slsa

Collect, Create and Store SLSA provenance evidence

2/10
ministryofjustice/laa-submit-a-bulk-claim/.github/actions/ecr-update-image-tags

ministryofjustice/laa-submit-a-bulk-claim/.github/actions/ecr-update-image-tags

Web application for bulk upload of claims data

8/10
mattnotmitt/doxygen-action

mattnotmitt/doxygen-action

GitHub Action for generating Doxygen documentation for your projects.

5/10
actionshub/chef-delivery

actionshub/chef-delivery

Repository for the chef-delivery-action Github Action

5/10
elastic/apm-agent-java/.github/workflows/stash

elastic/apm-agent-java/.github/workflows/stash

8/10
devantler-tech/actions/setup-ksail-action

devantler-tech/actions/setup-ksail-action

Actions designed to streamline CI/CD processes.

5/10
Maintained action available
step-security/set-github-variable/__builder_checkout_dir__/.github/actions/secure-download-artifact

step-security/set-github-variable/__builder_checkout_dir__/.github/actions/secure-download-artifact

Use this Github Action to update a variable in your Github Action Workflows for your repository. Secure drop-in replacement for mmoyaferrer/set-github-variable.

10/10
metamask/github-tools/.github/actions/create-release-pr

metamask/github-tools/.github/actions/create-release-pr

An assortment of tools interacting with the GitHub API to get metrics for things like PR review comments/reviews

5/10
Maintained action available
fortify/github-action/internal/fod-logout

fortify/github-action/internal/fod-logout

Fortify GitHub Actions

4/10
Maintained action available
tanker187/terraform/.github/actions/go-version

tanker187/terraform/.github/actions/go-version

Terraform enables you to safely and predictably create, change, and improve infrastructure. It is a source-available tool that codifies APIs into declarative configuration files that can be shared amongst team members, treated as code, edited, reviewed, and versioned.

2/10
space-wizards/submodule-dependency

space-wizards/submodule-dependency

GitHub action to checkout submodule changes that are required for a pull request

1/10
seemethere/download-artifact-s3

seemethere/download-artifact-s3

2/10
estroz/rerun-actions

estroz/rerun-actions

A GitHub App that re-runs Action Workflows via PR comment commands.

3/10
bokuweb/sakimori

bokuweb/sakimori

Cross-platform supply-chain guard for CI: supervised-run audit/block (eBPF/ETW) + minimum-release-age proxy & lockfile check for npm, cargo, PyPI, NuGet.

0/10
launchdarkly/js-core/actions/run-example

launchdarkly/js-core/actions/run-example

LaunchDarkly monorepo for JavaScript SDKs

6/10
1password/load-secrets-action/image

1password/load-secrets-action/image

Load secrets from 1Password into your GitHub Actions jobs

5/10
Maintained action available