StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

ffurrer2/extract-release-notes

ffurrer2/extract-release-notes

A GitHub Action to extract release notes from a "Keep a Changelog" formatted changelog file

6/10
step-security/npm-get-version-action/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

step-security/npm-get-version-action/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

This Action scans for a package.json file and reads the version number from that. Secure drop-in replacement for martinbeentjes/npm-get-version-action.

10/10
snyk/actions/python-3.8

snyk/actions/python-3.8

A set of GitHub actions for checking your projects for vulnerabilities.

4/10
open-edge-platform/geti-ci/actions/bandit

open-edge-platform/geti-ci/actions/bandit

A public-facing, centralized place to store reusable workflows and actions used by Geti projects.

8/10
anz-bank/go-pkcs12/.github/action/github-tag-action

anz-bank/go-pkcs12/.github/action/github-tag-action

3/10
hashicorp/consul-k8s

hashicorp/consul-k8s

First-class support for Consul Service Mesh on Kubernetes

6/10
ARM-software/cmsis-actions/setup-vcpkg

ARM-software/cmsis-actions/setup-vcpkg

Custom GitHub actions for MDK / AVH-FVP CI workflows

5/10
yonasBSD/vector/.github/actions/install-vdev

yonasBSD/vector/.github/actions/install-vdev

A high-performance observability data pipeline.

4/10
Maintained action available
TomTomB/changesets-action

TomTomB/changesets-action

0/10
JoshuaTheMiller/conditional-build-matrix

JoshuaTheMiller/conditional-build-matrix

A GitHub Action that enables easier conditional matrix builds!

3/10
catchpoint/workflow-telemetry-action

catchpoint/workflow-telemetry-action

Github action to collect metrics (CPU, memory, I/O, etc ...) from your workflows to help you debug and optimize your CI/CD pipeline

4/10
Dargon789/blockscout/.github/actions/setup-repo

Dargon789/blockscout/.github/actions/setup-repo

Blockchain explorer for Ethereum based network and a tool for inspecting and analyzing EVM based blockchains.

2/10
org-efernandes-ppb/actions-system-info

org-efernandes-ppb/actions-system-info

This action provides GitHub Actions runner OS information.

2/10
step-security/s3-actions-cache

step-security/s3-actions-cache

Cache to S3 storage with official actions/cache@v2 fallback. Secure drop-in replacement for tespkg/actions-cache.

10/10
Maintained by StepSecurity
equinor/farfetched-actions/fusion-deploy

equinor/farfetched-actions/fusion-deploy

Reusable GitHub Actions and Workflows

7/10
step-security/cirruslabs-cache

step-security/cirruslabs-cache

Cache dependencies and build outputs in GitHub Actions. Secure drop-in replacement for cirruslabs/cache.

10/10
Maintained by StepSecurity
stCarolas/setup-maven/api/download

stCarolas/setup-maven/api/download

Set up your GitHub Actions workflow with a specific version of Apache Maven

2/10
Git-Hub-Chris/VisualStudioCode/actions/classifier-deep/monitor

Git-Hub-Chris/VisualStudioCode/actions/classifier-deep/monitor

Microsoft Visual Studio Code.

6/10
yonasBSD/duckdb/.github/actions/build_extensions

yonasBSD/duckdb/.github/actions/build_extensions

DuckDB is an analytical in-process SQL database management system

3/10
Maintained action available
mikepenz/action-junit-report

mikepenz/action-junit-report

Reports junit test results as GitHub Pull Request Check

8/10