StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

qetza/replacetokens-action

qetza/replacetokens-action

An action to replace tokens in text files with variables and/or secrets.

2/10
clowdhaus/terraform-composite-actions/directories%40v1.4.1

clowdhaus/terraform-composite-actions/directories%40v1.4.1

Contains composit GitHub actions for use with Terraform AWS Module workflows

3/10
ava-labs/avalanchego/.github/actions/run-monitored-tmpnet-cmd

ava-labs/avalanchego/.github/actions/run-monitored-tmpnet-cmd

Go implementation of an Avalanche node.

7/10
ministryofjustice/laa-data-claims-reporting-service/.github/cleanup_branch

ministryofjustice/laa-data-claims-reporting-service/.github/cleanup_branch

Java service to generate claims reports

8/10
fluxcd/pkg/actions/kustomize

fluxcd/pkg/actions/kustomize

GitOps Toolkit Go SDK

7/10
sonarsource/ci-github-actions/pr_cleanup

sonarsource/ci-github-actions/pr_cleanup

CI/CD GitHub Actions

6/10
yokawasa/action-sqlcheck

yokawasa/action-sqlcheck

A GitHub Action that automatically identifies anti-patterns in SQL queries using sqlcheck when PR is requested. Please [✩Star] if you're using it!

4/10
lfreleng-actions/gerrit-review-action

lfreleng-actions/gerrit-review-action

GitHub Action for doing reviews on Gerrit systems

6/10
caffeelake/zed/.github/actions/check_style

caffeelake/zed/.github/actions/check_style

Code at the speed of thought – Zed is a high-performance, multiplayer code editor from the creators of Atom and Tree-sitter.

0/10
ledgerhq/ledger-live/tools/actions/change-product-name

ledgerhq/ledger-live/tools/actions/change-product-name

Mono-repository for packages related to Ledger Live and its JavaScript ecosystem.

4/10
Maintained action available
grafana/shared-workflows/shared-workflows/actions/login-to-gar

grafana/shared-workflows/shared-workflows/actions/login-to-gar

A public-facing, centralized place to store reusable workflows used by Grafana Labs.

6/10
dawidd6/action-get-tag

dawidd6/action-get-tag

:gear: A GitHub Action to get the pushed tag name

4/10
ministryofjustice/hmpps-github-actions-runner-security/.github/actions/runner-slack-notification

ministryofjustice/hmpps-github-actions-runner-security/.github/actions/runner-slack-notification

A special version of the Github Actions Runner specifically to run OWASP security scans (bootstrapped 2025-08-18)

6/10
ministryofjustice/payforlegalaid-openapi/.github/build

ministryofjustice/payforlegalaid-openapi/.github/build

8/10
launchdarkly/java-core/.github/actions/publish

launchdarkly/java-core/.github/actions/publish

LaunchDarkly monorepo for Java SDK packages

6/10
pytorch/pytorch/test-infra/.github/actions/export-matrix-variables

pytorch/pytorch/test-infra/.github/actions/export-matrix-variables

Tensors and Dynamic neural networks in Python with strong GPU acceleration

4/10
Maintained action available
equinor/lighthouse-client/.github/actions/pnpm-setup

equinor/lighthouse-client/.github/actions/pnpm-setup

WebClient for project Lighthouse

5/10
vendic/magento2-sentry-exclude-errors-regex/.github/actions/setup

vendic/magento2-sentry-exclude-errors-regex/.github/actions/setup

Package for excluding errors from sentry using regex in env.php

2/10
aufdenpunkt/python-safety-check

aufdenpunkt/python-safety-check

3/10
invertase/github-action-dart-analyzer

invertase/github-action-dart-analyzer

A GitHub action to run Dart analyzer with annotation support.

0/10