StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

mshick/add-pr-comment

mshick/add-pr-comment

uses: mshick/add-pr-comment@v2

4/10
expo/expo-github-action

expo/expo-github-action

Expo GitHub Action makes it easy to automate EAS builds or updates

5/10
tfsec/tfsec-sarif-action

tfsec/tfsec-sarif-action

4/10
micronaut-projects/github-actions/graalvm/build

micronaut-projects/github-actions/graalvm/build

2/10
grafana/writers-toolkit/publish-technical-documentation

grafana/writers-toolkit/publish-technical-documentation

Technical documentation guidelines for Grafana Labs documentation

7/10
rockem/create-opsgenie-alert-action

rockem/create-opsgenie-alert-action

GiHub action for creating new alert in OpsGenie

3/10
taiki-e/checkout-action

taiki-e/checkout-action

GitHub Action for checking out a repository. (Simplified actions/checkout alternative that does not depend on Node.js.)

8/10
yonasBSD/pre-commit/.github/actions/pre-test

yonasBSD/pre-commit/.github/actions/pre-test

A framework for managing and maintaining multi-language pre-commit hooks.

4/10
Maintained action available
step-security/release-drafter/docker

step-security/release-drafter/docker

Drafts your next release notes as pull requests are merged into master. Secure drop-in replacement for release-drafter/release-drafter.

10/10
Maintained by StepSecurity
obrassard/action-sharepoint-publish

obrassard/action-sharepoint-publish

Github Action that create an archive of a repository and upload it to a Sharepoint library

2/10
technote-space/get-diff-action

technote-space/get-diff-action

GitHub Actions to get git diff

3/10
wollomatic/socket-proxy

wollomatic/socket-proxy

Secure-by-design and flexible Unix socket proxy. Built in memory-safe Go with zero dependencies, no shell or interpreter required in containers. A modern alternative to tecnativa/docker-socket-proxy and linuxserver/docker-socket-proxy, with powerful regex-based configuration.

6/10
samuelmeuli/action-snapcraft

samuelmeuli/action-snapcraft

🐦 GitHub Action for setting up Snapcraft

3/10
pytorch/torchft/test-infra/.github/actions/calculate-docker-image

pytorch/torchft/test-infra/.github/actions/calculate-docker-image

Fault tolerance for PyTorch (HSDP, LocalSGD, DiLoCo, Streaming DiLoCo)

5/10
Maintained action available
knope-dev/action

knope-dev/action

3/10
Maintained action available
ossf/scorecard-monitor

ossf/scorecard-monitor

Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts

4/10
step-security/ansible-galaxy-action/__BUILDER_CHECKOUT_DIR__/.github/actions/wp-content/plugins/column-shortcodes/assets

step-security/ansible-galaxy-action/__BUILDER_CHECKOUT_DIR__/.github/actions/wp-content/plugins/column-shortcodes/assets

This Action will import ansible roles on galaxy-ng. Secure drop-in replacement for ansible-actions/ansible-galaxy-action.

10/10
grafana/mimir/operations/mimir-rules-action

grafana/mimir/operations/mimir-rules-action

Grafana Mimir provides horizontally scalable, highly available, multi-tenant, long-term storage for Prometheus.

7/10
NVIDIA/onnxruntime/.github/actions/webgpu-validate-shader-key

NVIDIA/onnxruntime/.github/actions/webgpu-validate-shader-key

ONNX Runtime: cross-platform, high performance ML inferencing and training accelerator

3/10
Olivr/copybara-action

Olivr/copybara-action

Transform and move code between repositories. Start with ZERO config and 100% customizable.

4/10