StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

assignuser/stash/restore

assignuser/stash/restore

4/10
dflook/terraform-output

dflook/terraform-output

GitHub action to get outputs from a terraform configuration

2/10
ledgerhq/ledger-live/tools/actions/composites/setup-caches

ledgerhq/ledger-live/tools/actions/composites/setup-caches

Mono-repository for packages related to Ledger Live and its JavaScript ecosystem.

4/10
Maintained action available
kin0992/dev-toolkit/.github/actions/pulumi-setup

kin0992/dev-toolkit/.github/actions/pulumi-setup

Platform Engineering toolkit: reusable GitHub Actions, AI Skills, and shared TypeScript configs.

5/10
pulumi/auth-actions

pulumi/auth-actions

Simplify Pulumi authentication without having to configure secrets for your workflows.

6/10
meedamian/sync-readme

meedamian/sync-readme

Github Action to sync README.md from Github to Docker Hub

3/10
tsukimarf/docs/.github/actions/cache-nextjs

tsukimarf/docs/.github/actions/cache-nextjs

The open-source repo for docs.github.com

2/10
nackerman-nydig/jinja2-action

nackerman-nydig/jinja2-action

Use the Jinja2 template engine as a GitHub action

1/10
timschoenle/actions/actions/bun/setup-cached

timschoenle/actions/actions/bun/setup-cached

Centralized collection of reusable GitHub Actions, Workflows, and configurations.

7/10
step-security/powershell

step-security/powershell

GH Action to run Az PowerShell scripts for developers and administrators to develop, deploy, and manage Microsoft Azure applications. Secure drop-in replacement for azure/powershell.

9/10
Maintained by StepSecurity
install-pinned/uv

install-pinned/uv

Securely install the latest uv release from PyPI.

5/10
Maintained action available
xbow-engineering/xbow-trivy-report-issue-action

xbow-engineering/xbow-trivy-report-issue-action

Creates GitHub Issues from Trivy scan results

4/10
xresloader/upload-to-github-release

xresloader/upload-to-github-release

5/10
ai-dynamo/modelexpress/.github/actions/connect-vcluster

ai-dynamo/modelexpress/.github/actions/connect-vcluster

Model Express is a Rust-based component meant to be placed next to existing model inference systems to speed up their startup times and improve overall performance.

6/10
reviewdog/action-eslint

reviewdog/action-eslint

Run eslint with reviewdog

5/10
Maintained action available
nvidia/dsx-github-actions/.github/actions/slack-notify

nvidia/dsx-github-actions/.github/actions/slack-notify

Github Action infrastructure for DSX

8/10
pytorch/executorch/test-infra/.github/actions/get-workflow-job-id

pytorch/executorch/test-infra/.github/actions/get-workflow-job-id

On-device AI across mobile, embedded and edge for PyTorch

2/10
Maintained action available
stanfordbdhg/action-swiftlint

stanfordbdhg/action-swiftlint

GitHub Action for SwiftLint using the official SwiftLint Docker image.

6/10
benjyw/setup-protoc

benjyw/setup-protoc

GitHub Action to setup the protoc compiler for protocol buffers

2/10
politicalsphere/ci/.github/actions/semgrep-cli

politicalsphere/ci/.github/actions/semgrep-cli

CI/CD pipelines and GitHub Actions for Political Sphere

2/10