StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

seagate/fio/.github/actions/build-qemu

seagate/fio/.github/actions/build-qemu

Flexible I/O Tester

4/10
release-flow/keep-a-changelog-action

release-flow/keep-a-changelog-action

A GitHub Action that performs operations on changelogs in Keep-a-Changelog format: bump the version, query release info.

3/10
meta-introspector/codeql-action/autobuild

meta-introspector/codeql-action/autobuild

Actions for running CodeQL analysis

2/10
os-climate/osc-github-devops/.github/actions/repository-tag-current-action

os-climate/osc-github-devops/.github/actions/repository-tag-current-action

Template Python project, common tests, GitHub Actions/Workflows, linting tools

3/10
Maintained action available
actions/delete-package-versions

actions/delete-package-versions

5/10
gradle/actions/wrapper-validation

gradle/actions/wrapper-validation

A collection of GitHub Actions to accelerate your Gradle Builds on GitHub

8/10
grafana/pyroscope/actions/backport

grafana/pyroscope/actions/backport

Continuous Profiling Platform. Debug performance issues down to a single line of code

5/10
Maintained action available
step-security/background-action/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/background-action/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

Background commands with log tailing/capture; waits until file/port/socket/http are ready to proceed. Isolates/dedupe errors. Secure drop-in replacement for JarvusInnovations/background-action.

10/10
cookieai-jar/cleanup-action

cookieai-jar/cleanup-action

2/10
preactjs/compressed-size-action

preactjs/compressed-size-action

GitHub Action that adds compressed size changes to your PRs.

5/10
cpanato/vault-installer

cpanato/vault-installer

Action to install Hashicorp Vault

6/10
ory/ci/conventional_commit_config

ory/ci/conventional_commit_config

Automation and robots for Ory's CI and CD pipelines

4/10
amannn/action-semantic-pull-request

amannn/action-semantic-pull-request

A GitHub Action that ensures that your PR title matches the Conventional Commits spec

6/10
portswigger-tim/safer-runner-action

portswigger-tim/safer-runner-action

A GitHub action to lockdown DNS, Network, sudo and Docker

4/10
Maintained action available
yonasBSD/gravity-dns/.github/actions/test-results

yonasBSD/gravity-dns/.github/actions/test-results

Fully-replicated DNS and DHCP Server with ad-blocking powered by etcd

3/10
Maintained action available
edera-dev/cross/.github/actions/cargo-publish

edera-dev/cross/.github/actions/cargo-publish

“Zero setup” cross compilation and “cross testing” of Rust crates

3/10
korniltsev/actions-upload-release-asset

korniltsev/actions-upload-release-asset

Yet Another Upload Release Asset Action

2/10
OpenZeppelin/openzeppelin-sui-amm/.github/actions/setup

OpenZeppelin/openzeppelin-sui-amm/.github/actions/setup

5/10
grafana/opentelemetry-ebpf-instrumentation/.github/actions/integration-test-image-build

grafana/opentelemetry-ebpf-instrumentation/.github/actions/integration-test-image-build

5/10
Maintained action available
anothrNick/github-tag-action

anothrNick/github-tag-action

A Github Action to tag a repo on merge.

6/10