Assess the risk of third-party GitHub Actions

Examples: ,

Actions

Assess all the actions

step-security/setup-just/__builder_checkout_dir__/.github/actions/secure-download-artifact

🤖 GitHub Action to install the just command runner. Secure drop-in replacement for extractions/setup-just.

10/10

step-security/close-milestone

A Github action to remove a milestone by the milestone's name. Secure drop-in replacement for Akkjon/close-milestone.

10/10

Maintained by StepSecurity

mgreau/actions/git-bump-tag-semver

A collection of reusable Github Actions workflows.

3/10

dkhunt27/action-nx-code-coverage

Github Action for Processing Code Coverage for an NX Monorepo

2/10

datadog/upload-dsyms-github-action

Github Action to upload iOS dSYM files using datadog-ci tool.

4/10

Maintained action available

nvidia/cccl/.github/actions/workflow-run-job-linux

CUDA Core Compute Libraries

7/10

kong/public-shared-actions/security-actions/sign-docker-image

Shared actions available to both public and private repositories

5/10

Maintained action available

step-security/gha-setup-swift/__builder_checkout_dir__/.github/actions/secure-download-artifact

Setup Swift (on Windows) on GitHub Actions Builders. Secure drop-in replacement for compnerd/gha-setup-swift.

10/10

intel/ai-containers/workflows/charts

This repository contains Dockerfiles, scripts, yaml files, Helm charts, etc. used to scale out AI containers with versions of TensorFlow and PyTorch that have been optimized for Intel platforms. Scaling is done with python, Docker, kubernetes, kubeflow, cnvrg.io, Helm, and other container orchestration frameworks for use in the cloud and on-premise

5/10