StepSecurity Logo
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

tomasreyes/bedrock/.github/actions/slack

tomasreyes/bedrock/.github/actions/slack

Making mozilla.org awesome, one pebble at a time

5/10
Maintained action available
llvm/actions/setup-windows

llvm/actions/setup-windows

4/10
step-security/action-read-yaml/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/action-read-yaml/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

Custom github action used to read yaml files, supporting multiple keys and variable replacements. Secure drop-in replacement for pietrobolcato/action-read-yaml.

10/10
jason-dour/action-setup-gomplate

jason-dour/action-setup-gomplate

Set up your GitHub Actions workflow with a specific version of Gomplate

2/10
step-security/add-pr-comment

step-security/add-pr-comment

GitHub Action which adds a comment to a pull request's issue. Secure drop-in replacement for mshick/add-pr-comment.

10/10
Maintained by StepSecurity
php-actions/phpunit

php-actions/phpunit

Run PHPUnit tests in Github Actions.

3/10
chronograph-pe/download-artifact

chronograph-pe/download-artifact

2/10
chronograph-pe/cache

chronograph-pe/cache

Cache dependencies and build outputs in GitHub Actions

3/10
approved-3rd-party-actions/setup-helm

approved-3rd-party-actions/setup-helm

Github Action for installing Helm

3/10
coveo/ui-kit/.github/actions/e2e-atomic-insight-panel

coveo/ui-kit/.github/actions/e2e-atomic-insight-panel

Coveo UI kit repository, home of @coveo/headless, @coveo/atomic, and more.

4/10
Maintained action available
camunda/infra-global-github-actions/fossa/release

camunda/infra-global-github-actions/fossa/release

Small Github Actions maintained by Infra team and used by other teams inside Camunda

6/10
step-security/action-send-mail/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/action-send-mail/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

A GitHub Action to send an email to multiple recipients. Secure drop-in replacement for dawidd6/action-send-mail.

10/10
systemd/mkosi

systemd/mkosi

💽 Build Bespoke OS Images

4/10
Maintained action available
coinbase/mesh-geth-sdk/.github/actions/geth

coinbase/mesh-geth-sdk/.github/actions/geth

go-ethereum based sdk for Mesh API

4/10
Reality2byte/checkout/localClone

Reality2byte/checkout/localClone

Action for checking out a repo

4/10
Tsukimarf/CopilotForXcode/.github/actions/set-xcode-version

Tsukimarf/CopilotForXcode/.github/actions/set-xcode-version

AI coding assistant for Xcode

5/10
Tsukimarf/docs/.github/actions/labeler

Tsukimarf/docs/.github/actions/labeler

The open-source repo for docs.github.com

3/10
modeseven-lfreleng-actions/pypi-publish-action

modeseven-lfreleng-actions/pypi-publish-action

Publishes a Python project to the Python Package Index (PyPI)

5/10
Maintained action available
hashicorp/tfc-workflows-github

hashicorp/tfc-workflows-github

HCP Terraform starter workflows and github actions to automate Terraform Cloud CI/CD pipelines.

7/10
egor-tensin/vs-shell

egor-tensin/vs-shell

GitHub action to set up the Visual Studio shell environment

4/10