StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

yonasBSD/trivy/.github/actions/trivy-triage

yonasBSD/trivy/.github/actions/trivy-triage

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

5/10
Maintained action available
cloudposse/github-action-atmos-affected-stacks

cloudposse/github-action-atmos-affected-stacks

A composite workflow that runs the atmos describe affected command

6/10
depot/bake-action

depot/bake-action

GitHub Action to use Buildx Bake as a high-level build command using Depot remote builders

3/10
ethereum/EIP-Bot

ethereum/EIP-Bot

A collection of bots that make life easier on editors

2/10
openharmony-rs/setup-ohos-sdk

openharmony-rs/setup-ohos-sdk

Github action to setup the OpenHarmony SDK

4/10
allenporter/flux-local/action/test

allenporter/flux-local/action/test

flux-local is a set of tools and libraries for managing a local flux gitops repository focused on validation steps to help improve quality of commits, PRs, and general local testing.

6/10
tbowman01/prompt-card-system/.github/actions/action-semantic-pull-request-v5

tbowman01/prompt-card-system/.github/actions/action-semantic-pull-request-v5

A comprehensive prompt testing and evaluation system with advanced analytics, AI-powered optimization, and real-time performance monitoring.

5/10
base/optimism/.github/actions/docker-build-prep

base/optimism/.github/actions/docker-build-prep

Optimism is Ethereum, scaled.

5/10
Maintained action available
oracle-actions/get-ocir-repository

oracle-actions/get-ocir-repository

Create or find an Oracle Cloud Infrastructure Registry container repository

2/10
elide-dev/labs-openjdk/.github/actions/get-jtreg

elide-dev/labs-openjdk/.github/actions/get-jtreg

JDK fork for building GraalVM CE.

5/10
docker/bake-action/subaction/xhcyo8%5C%5Cqqq

docker/bake-action/subaction/xhcyo8%5C%5Cqqq

GitHub Action to use Docker Buildx Bake as a high-level build command

5/10
Maintained action available
step-security/github-tag-action/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

step-security/github-tag-action/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

A Github Action to automatically bump and tag master, on merge, with the latest SemVer formatted version. Works on any platform. Secure drop-in replacement for mathieudutour/github-tag-action.

10/10
pkgjs/request-codeowner-review

pkgjs/request-codeowner-review

5/10
datatheorem/datatheorem-mobile-secure-action

datatheorem/datatheorem-mobile-secure-action

2/10
trinodb/github-actions/slash-command-dispatch

trinodb/github-actions/slash-command-dispatch

Github actions used in the Trino project

2/10
yonasBSD/grafana/.github/actions/changelog

yonasBSD/grafana/.github/actions/changelog

The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.

2/10
Maintained action available
cli/gh-extension-precompile

cli/gh-extension-precompile

Action for publishing binary GitHub CLI extensions

5/10
elastic/elastic-github-actions/elasticsearch

elastic/elastic-github-actions/elasticsearch

This action spins up an Elasticsearch instance that can be accessed and used in your subsequent steps.

6/10
step-security/push-md-to-notion/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/push-md-to-notion/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

Push Markdown to Notion. Secure drop-in replacement for JoshStern/push-md-to-notion.

10/10
ministryofjustice/laa-reusable-github-actions/.github/actions/image-scan

ministryofjustice/laa-reusable-github-actions/.github/actions/image-scan

A collection of re-useable GitHub actions

8/10