StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

mondeja/remove-labels-gh-action

mondeja/remove-labels-gh-action

Remove labels from GitHub issues or pull requests

2/10
step-security/release-notes-generator-action

step-security/release-notes-generator-action

Action to auto generate a release note based on your events. Secure drop-in replacement for Decathlon/release-notes-generator-action.

10/10
Maintained by StepSecurity
haythem/public-ip

haythem/public-ip

Queries GitHub actions runner's public IP address

5/10
docker/bake-action/%3C/script%3E%3Ckww3f2%3E/list-targets

docker/bake-action/%3C/script%3E%3Ckww3f2%3E/list-targets

GitHub Action to use Docker Buildx Bake as a high-level build command

5/10
Maintained action available
yonasBSD/wazuh/.github/actions/4_operational_prerelease_coverity_issue

yonasBSD/wazuh/.github/actions/4_operational_prerelease_coverity_issue

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

4/10
Maintained action available
jobayertangail92-hub/setup-node

jobayertangail92-hub/setup-node

Set up your GitHub Actions workflow with a specific version of node.js

2/10
kunalnagarco/action-cve

kunalnagarco/action-cve

A GitHub action that sends Dependabot Vulnerability Alerts to multiple sources.

3/10
Maintained action available
bus1/cabuild/action/msdevshell

bus1/cabuild/action/msdevshell

Content-Addressable Build Environments

2/10
oxsecurity/megalinter/flavors/cupcake

oxsecurity/megalinter/flavors/cupcake

🦙 MegaLinter analyzes 50 languages, 22 formats, 21 tooling formats, excessive copy-pastes, spelling mistakes and security issues in your repository sources with a GitHub Action, other CI tools or locally.

5/10
Maintained action available
soos-io/soos-dast-github-action

soos-io/soos-dast-github-action

SOOS DAST GitHub Action - Register for a Free Trial at https://app.soos.io/register

4/10
snnaplab/get-labels-action

snnaplab/get-labels-action

3/10
optum/sourcehawk/.github/actions/build-windows-native-image

optum/sourcehawk/.github/actions/build-windows-native-image

Sourcehawk is an extensible compliance as code tool which allows development teams to run compliance scans on their source code.

3/10
singularityhub/install-singularity

singularityhub/install-singularity

Action to install Singlarity optimized for simplicity.

3/10
step-security/filter-sarif

step-security/filter-sarif

GitHub Action for filtering Code Scanning alerts by path and id. Secure drop-in replacement for advanced-security/filter-sarif.

10/10
Maintained by StepSecurity
wistia/parse-tool-versions

wistia/parse-tool-versions

Github action created to parse .tool-versions into the environment

5/10
step-security/gh-find-current-pr/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

step-security/gh-find-current-pr/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

Github Action for finding the Pull Request (PR) associated with the current SHA. Secure drop-in replacement for jwalton/gh-find-current-pr.

9/10
aliyun/ack-set-context

aliyun/ack-set-context

3/10
GrantBirki/git-diff-action

GrantBirki/git-diff-action

A GitHub Action for gathering the git diff of a pull request in raw or JSON format

6/10
devops-actions/action-get-tag

devops-actions/action-get-tag

:gear: A GitHub Action to get the pushed tag name

7/10
jwlawson/actions-setup-cmake

jwlawson/actions-setup-cmake

5/10