StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

codecov/test-results-action

codecov/test-results-action

6/10
federacy/scan-action

federacy/scan-action

Github Action for security scanning utilizing Salus by Coinbase

2/10
step-security/setup-yq

step-security/setup-yq

Sets up YQ, yet-another-markup-language-query-er, for use in your Github Actions workflow. Secure drop-in replacement for chrisdickinson/setup-yq.

9/10
Maintained by StepSecurity
envoyproxy/toolshed/actions/github/merge-commit

envoyproxy/toolshed/actions/github/merge-commit

6/10
grafana/plugin-ci-workflows/actions/internal/plugins/package

grafana/plugin-ci-workflows/actions/internal/plugins/package

Re-usable GitHub Actions workflows for building, testing, releasing and deploying plugins

4/10
Maintained action available
regclient/actions/image

regclient/actions/image

7/10
actions-security-demo/script-injection/.grafana-main/pkg/build/actions/bump-version

actions-security-demo/script-injection/.grafana-main/pkg/build/actions/bump-version

2/10
grafana/grafana/.github/actions/setup-grafana-bench

grafana/grafana/.github/actions/setup-grafana-bench

The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.

4/10
Maintained action available
orhun/image

orhun/image

Encoding and decoding images in Rust

3/10
koki-develop/hub-purge-action

koki-develop/hub-purge-action

๐Ÿงน Action to clear GitHub image caches.

2/10
appthreat/sast-scan-action

appthreat/sast-scan-action

GitHub action for performing SAST scanning using various oss tools such as gitleaks, bandit, findsecbugs etc

3/10
nvidia/nautobot-app-nvdatamodels/.github/.tmp/.generated-actions/run-pypi-publish-in-docker-container

nvidia/nautobot-app-nvdatamodels/.github/.tmp/.generated-actions/run-pypi-publish-in-docker-container

A Nautobot plugin which provides data models for NVIDIA products

6/10
mercari/actions-runner-controller/.github/actions/execute-assert-arc-e2e

mercari/actions-runner-controller/.github/actions/execute-assert-arc-e2e

Kubernetes controller for GitHub Actions self-hosted runners

4/10
tanker187/playwright/.github/actions/run-test

tanker187/playwright/.github/actions/run-test

Playwright is a framework for Web Testing and Automation. It allows testing Chromium, Firefox and WebKit with a single API.

5/10
anothrnick/github-tag-action

anothrnick/github-tag-action

A Github Action to tag a repo on merge.

6/10
rustsec/audit-check

rustsec/audit-check

๐Ÿ›ก๏ธ GitHub Action for security audits

4/10
bots-house/ghcr-delete-image-action

bots-house/ghcr-delete-image-action

โ™ป๏ธ Delete GitHub Container Registry image by tag

3/10
elastic/elastic-otel-dotnet/.github/workflows/bootstrap

elastic/elastic-otel-dotnet/.github/workflows/bootstrap

Elastic OpenTelemetry .NET Distribution

8/10
celfons/agents-default-actions-template/.github/actions/language-detect

celfons/agents-default-actions-template/.github/actions/language-detect

3/10
step-security/create-pull-request/__builder_checkout_dir__/.github/actions/privacy-check

step-security/create-pull-request/__builder_checkout_dir__/.github/actions/privacy-check

A GitHub action to create a pull request for changes to your repository in the actions workspace. Secure drop-in replacement for peter-evans/create-pull-request.

9/10