StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

step-security/action-install-gh-release/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

step-security/action-install-gh-release/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

GitHub Action to install the Github Release binaries. Secure drop-in replacement for jaxxstorm/action-install-gh-release.

10/10
step-security/action-suggester/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/action-suggester/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

:dog: Suggests any code changes based on diff through GitHub Multi-line code suggestions by using reviewdog. Secure drop-in replacement for reviewdog/action-suggester.

10/10
defenseunicorns/setup-zarf

defenseunicorns/setup-zarf

GitHub Action for Installing and Configuring Zarf

4/10
vijaykramesh/pr-lint-action

vijaykramesh/pr-lint-action

A GitHub Action that verifies your pull request contains a reference to a Jira ticket.

3/10
Seagate/actions-dco

Seagate/actions-dco

GitHub Actions that enforces the Developer Certificate of Origin (DCO) on Pull Requests

3/10
envoyproxy/toolshed/actions/docker/shas

envoyproxy/toolshed/actions/docker/shas

7/10
grafana/loki-release/lib/actions/should-release

grafana/loki-release/lib/actions/should-release

Pipeline code for public releases of Loki and GEL

3/10
Maintained action available
org-deac-test/testing-workflows/.github/actions/safe-action

org-deac-test/testing-workflows/.github/actions/safe-action

4/10
Maintained action available
thehanimo/pr-title-checker

thehanimo/pr-title-checker

An action to automatically check if pull request titles conform to Contribution Guidelines

4/10
manoelcampos/asciidoctor-ghpages-action

manoelcampos/asciidoctor-ghpages-action

📄⚙️ GitHub Action to build AsciiDoc GitHub Pages: recursively converts every adoc file to html, renaming resulting README.html to index.html. It also enables generating an ebook.pdf or AsciiDoctor Reveal.js slides

3/10
grafana/grafana-aio11y-app/.github/workflows/build-plugin

grafana/grafana-aio11y-app/.github/workflows/build-plugin

App plugin for GPU & AI model observability

2/10
Contrast-Security-OSS/contrastscan-action

Contrast-Security-OSS/contrastscan-action

Contrast Scan GitHub action

3/10
dlang-community/setup-dlang

dlang-community/setup-dlang

Github action for dlang compiler setup

5/10
alexvojproc/bluebuild-action

alexvojproc/bluebuild-action

Reusable GitHub Action to build custom images

3/10
jetify-com/devbox-install-action

jetify-com/devbox-install-action

4/10
lannonbr/repo-permission-check-action

lannonbr/repo-permission-check-action

GitHub Action to check if a user has specific access to a repo

3/10
coveo/ui-kit/.github/actions/e2e-headless-ssr-pages-dev

coveo/ui-kit/.github/actions/e2e-headless-ssr-pages-dev

Coveo UI kit repository, home of @coveo/headless, @coveo/atomic, and more.

4/10
Maintained action available
pytorch/ao/test-infra/.github/actions/teardown-linux

pytorch/ao/test-infra/.github/actions/teardown-linux

PyTorch native quantization and sparsity for training and inference

2/10
Maintained action available
nick-fields/private-action-loader

nick-fields/private-action-loader

Allows private GitHub Actions to be easily reused

3/10
opcr-io/policy-push-action

opcr-io/policy-push-action

policy-push-action

3/10