StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

chronograph-pe/report-diffs-action/cloud-compute

chronograph-pe/report-diffs-action/cloud-compute

Run Meticulous tests

2/10
yonasBSD/neon/.github/actions/allure-report-generate

yonasBSD/neon/.github/actions/allure-report-generate

Neon: Serverless Postgres. We separated storage and compute to offer autoscaling, branching, and bottomless storage.

2/10
grafana/hackathon-12-action-stat

grafana/hackathon-12-action-stat

3/10
microsoft/vstest-action

microsoft/vstest-action

GitHub Action equivalent to the Azure DevOps VS Test Task

4/10
Dargon789/thirdweb/.github/composite-actions/install

Dargon789/thirdweb/.github/composite-actions/install

Best in class web3 SDKs for Browser, Node and Mobile apps

6/10
rapidsai/shared-actions/telemetry-dispatch-write-summary

rapidsai/shared-actions/telemetry-dispatch-write-summary

6/10
linaro-its/merge-test-branch

linaro-its/merge-test-branch

1/10
unfor19/install-aws-cli-action

unfor19/install-aws-cli-action

Install AWS CLI on a GitHub Actions Linux host

5/10
rudderlabs/rudder-sdk-kotlin/.github/actions/build-check

rudderlabs/rudder-sdk-kotlin/.github/actions/build-check

Kotlin Android SDK and Kotlin JVM for RudderStack - the Customer Data Platform for Developers.

4/10
Maintained action available
PaulHatch/semantic-version

PaulHatch/semantic-version

A GitHub Action to generate semantic version from a git repository's commit history.

6/10
microsoft/psscriptanalyzer-action

microsoft/psscriptanalyzer-action

GitHub Action to run PSScriptAnalyzer to your repository and produce a SARIF file

6/10
os-climate/osc-github-devops/.github/actions/semantic-tag-production-action

os-climate/osc-github-devops/.github/actions/semantic-tag-production-action

Template Python project, common tests, GitHub Actions/Workflows, linting tools

3/10
Maintained action available
softprops/action-gh-release/_next/static/chunks/91251-342071341969cc75.js

softprops/action-gh-release/_next/static/chunks/91251-342071341969cc75.js

📦 :octocat: GitHub Action for creating GitHub Releases

5/10
Maintained action available
indygreg/apple-code-sign-action

indygreg/apple-code-sign-action

Sign and notarize Apple applications using open source software

1/10
Maintained action available
flathub-infra/flatpak-github-actions/flatpak-builder

flathub-infra/flatpak-github-actions/flatpak-builder

2/10
gravitational/shared-workflows/tools/amplify-preview

gravitational/shared-workflows/tools/amplify-preview

GitHub Actions shared within the organization

6/10
blackduck-inc/black-duck-security-scan

blackduck-inc/black-duck-security-scan

Black Duck Security Action consuming Black Duck scanning tools

5/10
Maintained action available
step-security/npm-get-version-action/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/npm-get-version-action/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

This Action scans for a package.json file and reads the version number from that. Secure drop-in replacement for martinbeentjes/npm-get-version-action.

10/10
step-security/delete-deployment-environment/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

step-security/delete-deployment-environment/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

GitHub action to remove an environment and it's deployments. Secure drop-in replacement for strumwolf/delete-deployment-environment.

10/10
wow-actions/auto-comment

wow-actions/auto-comment

💬 Automatically comment issues or PRs on events triggered

2/10