StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

docker/setup-qemu-action

docker/setup-qemu-action

GitHub Action to install QEMU static binaries

8/10
step-security/ansible-galaxy-action/__builder_checkout_dir__/.github/actions/wp-content

step-security/ansible-galaxy-action/__builder_checkout_dir__/.github/actions/wp-content

This Action will import ansible roles on galaxy-ng. Secure drop-in replacement for ansible-actions/ansible-galaxy-action.

10/10
op5dev/tf-via-pr

op5dev/tf-via-pr

Plan and apply Terraform/OpenTofu via PR automation, using best practices for secure and scalable IaC workflows.

7/10
mheap/github-action-required-labels

mheap/github-action-required-labels

Fail the build if/unless a certain combination of labels are applied to a pull request

3/10
nanasess/setup-chromedriver

nanasess/setup-chromedriver

ChromeDriver for use in GitHub Actions

7/10
scribemd/docker-cache

scribemd/docker-cache

Cache Docker Images Whether Built or Pulled

3/10
release-kit/semver

release-kit/semver

Parse semantic version from string or tag

2/10
peter-evans/create-issue-from-file

peter-evans/create-issue-from-file

A GitHub action to create an issue using content from a file

5/10
coveo/ui-kit/.github/actions/setup-sfdx

coveo/ui-kit/.github/actions/setup-sfdx

Coveo UI kit repository, home of @coveo/headless, @coveo/atomic, and more.

4/10
Maintained action available
hashicorp/ghaction-import-gpg

hashicorp/ghaction-import-gpg

DEPRECATED - GitHub action to import GPG private key

5/10
mitchellh/vouch/action/manage-by-issue

mitchellh/vouch/action/manage-by-issue

A community trust management system based on explicit vouches to participate.

5/10
Maintained action available
asana/push-signed-commits

asana/push-signed-commits

This composite Github Action uses the createCommitOnBranch GraphQL mutation to allow Github Apps to push 'Verified' commits to Github.

3/10
ministryofjustice/hmpps-delius-operational-automation/.github/actions/send-slack-notification

ministryofjustice/hmpps-delius-operational-automation/.github/actions/send-slack-notification

6/10
grafana/alloy/_shared-workflows-dockerhub-login/actions/get-vault-secrets

grafana/alloy/_shared-workflows-dockerhub-login/actions/get-vault-secrets

OpenTelemetry Collector distribution with programmable pipelines

7/10
yonasbsd/dolt/.github/actions/data-dump-loading-tests

yonasbsd/dolt/.github/actions/data-dump-loading-tests

Dolt โ€“ Git for Data

5/10
Maintained action available
openzeppelin/defender-sdk/.github/actions/prepare

openzeppelin/defender-sdk/.github/actions/prepare

Defender SDK

4/10
adityagarg8/remove-unwanted-software

adityagarg8/remove-unwanted-software

Github action to maximize the available disk space on Github runners

3/10
rokroskar/workflow-run-cleanup-action

rokroskar/workflow-run-cleanup-action

Github action to cancel previous running instances of a workflow.

5/10
launchdarkly/ldcli/__builder_checkout_dir__/.github/actions/secure-download-artifact

launchdarkly/ldcli/__builder_checkout_dir__/.github/actions/secure-download-artifact

The official command line interface for managing LaunchDarkly feature flags.

4/10
Maintained action available
timonvs/pr-labeler-action

timonvs/pr-labeler-action

Automatically labels your PRs based on branch name patterns like feature/* or fix/*.

3/10