StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

EnricoMi/publish-unit-test-result-action/docker

EnricoMi/publish-unit-test-result-action/docker

GitHub Action to publish unit test results on GitHub

4/10
Maintained action available
runs-on/runs-on

runs-on/runs-on

Self-hosted GitHub Actions runners made simple. For AWS. 10x cheaper, 40% faster, and unlimited caching. Best alternative to Actions Runner Controller.

7/10
momentohq/standards-and-practices/github-actions/generate-and-commit-oss-readme

momentohq/standards-and-practices/github-actions/generate-and-commit-oss-readme

Information about how we organize, maintain, and release open source software at Momento

3/10
dra1ex/minify-action

dra1ex/minify-action

Github Action to minify js, html, and css for Github Pages

3/10
step-security/read-yaml/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/read-yaml/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

A GitHub Action to read yaml files. Secure drop-in replacement for jbutcher5/read-yaml.

10/10
celo-org/optimism/.github/actions/setup

celo-org/optimism/.github/actions/setup

Optimism is Ethereum, scaled.

5/10
Maintained action available
Zomzog/changelog-checker

Zomzog/changelog-checker

2/10
elastic/cloudbeat/.github/actions/azure-ci

elastic/cloudbeat/.github/actions/azure-ci

Analyzing Cloud Security Posture

5/10
Maintained action available
grafana/plugin-actions/e2e-version

grafana/plugin-actions/e2e-version

6/10
vapor/swiftly-action

vapor/swiftly-action

Simple one-step access to the Swiftly toolchain manager from GitHub Actions workflows

8/10
grafana/community-contributions/.github/actions/build-package

grafana/community-contributions/.github/actions/build-package

External contributor PR workflow testing sandbox

2/10
pytorch/test-infra/.github/actions/checkout

pytorch/test-infra/.github/actions/checkout

This repository hosts code that supports the testing infrastructure for the PyTorch organization. For example, this repo hosts the logic to track disabled tests and slow tests, as well as our continuation integration jobs HUD/dashboard.

3/10
Maintained action available
bjw-s/helm-charts-actions/verify-chart-version

bjw-s/helm-charts-actions/verify-chart-version

A collection of GitHub actions to use with helm-charts repo

4/10
Maintained action available
ministryofjustice/hmpps-probation-integration-services/.github/actions/cloud-platform-auth

ministryofjustice/hmpps-probation-integration-services/.github/actions/cloud-platform-auth

A collection of small, domain-focused integrations to support HMPPS Digital services that need to interact with probation data.

8/10
softprops/action-gh-release/_next/static/chunks/85405-4629db2ab7d80b03.js

softprops/action-gh-release/_next/static/chunks/85405-4629db2ab7d80b03.js

📦 :octocat: GitHub Action for creating GitHub Releases

4/10
Maintained action available
boundfoxstudios/action-unassign-contributor-after-days-of-inactivity

boundfoxstudios/action-unassign-contributor-after-days-of-inactivity

2/10
coveo/platform-client/.github/actions/lockfiles

coveo/platform-client/.github/actions/lockfiles

Official Coveo Cloud APIs JavaScript Client

4/10
Maintained action available
step-security/tfclean/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

step-security/tfclean/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

tfclean is tool to remove applied moved block, import block, etc. Secure drop-in replacement for takaishi/tfclean.

10/10
nackerman-nydig/github-actions-ensure-sha-pinned-actions

nackerman-nydig/github-actions-ensure-sha-pinned-actions

A Github Action to ensure that actions are pinned to full length commit SHAs

2/10
bgd-labs/github-workflows/.github/actions/setup-node

bgd-labs/github-workflows/.github/actions/setup-node

a collection of github workflows used at bgd

6/10