StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

ZedThree/clang-tidy-review

ZedThree/clang-tidy-review

Create a pull request review based on clang-tidy warnings

5/10
Maintained action available
nvim-neorocks/nvim-busted-action

nvim-neorocks/nvim-busted-action

A composite GitHub action for running busted tests with Neovim

2/10
cshein45-Movement/Movement

cshein45-Movement/Movement

Movement Network Foundation – Building a decentralized blockchain ecosystem for scalable applications, governance, and tokenized infrastructure.

2/10
brpaz/action-label-syncer

brpaz/action-label-syncer

GitHub Action to sync GitHub labels in the declarative way

3/10
elide-dev/labs-openjdk/.github/actions/get-bundles

elide-dev/labs-openjdk/.github/actions/get-bundles

JDK fork for building GraalVM CE.

4/10
prometheus/promci

prometheus/promci

GitHub Actions repository

7/10
sslcom/esigner-codesign

sslcom/esigner-codesign

GitHub Action for CodeSigner by SSL.com

0/10
BirthdayResearch/oss-governance-bot

BirthdayResearch/oss-governance-bot

Speed up issue triaging with automated chat-bot and chat-ops operations. Increased code review agility by moving quality control hierarchy from requirements to educational steps.

5/10
ScribeMD/slack-templates

ScribeMD/slack-templates

Send Informative, Concise Slack Notifications With Minimal Effort

2/10
sst/opencode/github

sst/opencode/github

The open source coding agent.

5/10
Maintained action available
snyk/actions/gradle-jdk17

snyk/actions/gradle-jdk17

A set of GitHub actions for checking your projects for vulnerabilities.

4/10
seemethere/add-github-ssh-key

seemethere/add-github-ssh-key

Add your ssh keys to github actions runners, works best for self hosted runners on EC2, made for https://github.com/pytorch/pytorch

2/10
coveo/ui-kit/.github/actions/cypress-headless-ssr-search-nextjs

coveo/ui-kit/.github/actions/cypress-headless-ssr-search-nextjs

Coveo UI kit repository, home of @coveo/headless, @coveo/atomic, and more.

4/10
Maintained action available
step-security/dependabot-fetch-metadata/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/dependabot-fetch-metadata/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

Extract information about the dependencies being updated by a Dependabot-generated PR. Secure drop-in replacement for dependabot/fetch-metadata.

10/10
AKJUS/autify-cli/.github/actions/upload

AKJUS/autify-cli/.github/actions/upload

Autify Command Line Interface (CLI)

2/10
Maintained action available
charlesthomas/github-action-svu

charlesthomas/github-action-svu

GitHub Action for calculating Semantic Versions using caarlos0/svu

4/10
Maintained action available
ministryofjustice/hmpps-github-actions/.github/actions/auditjson_to_slack

ministryofjustice/hmpps-github-actions/.github/actions/auditjson_to_slack

Github actions for HMPPS projects

6/10
step-security/claude-code-action

step-security/claude-code-action

Secure drop-in replacement for anthropics/claude-code-action.

10/10
Maintained by StepSecurity
talbring/jenkins-release-drafter

talbring/jenkins-release-drafter

Drafts your next release notes as pull requests are merged into master. This is a FORK for the jenkinsci experiments. See https://github.com/toolmantim/release-drafter for upstream

2/10
athul/waka-readme

athul/waka-readme

Wakatime Weekly Metrics on your Profile Readme.

5/10