StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

spotdemo4/go-template/.github/actions/init

spotdemo4/go-template/.github/actions/init

template for go

6/10
actions-security-demo/script-injection/ephemeral

actions-security-demo/script-injection/ephemeral

2/10
gradle/wrapper-validation-action

gradle/wrapper-validation-action

Gradle Wrapper Validation Action

7/10
nvidia-rtx/godot/.github/actions/fetch-gh-release-asset

nvidia-rtx/godot/.github/actions/fetch-gh-release-asset

NVIDIA fork of Godot Engine โ€“ Multi-platform 2D and 3D game engine

2/10
step-security/pull-request-comment-trigger/__builder_checkout_dir__/.github/actions/secure-download-artifact

step-security/pull-request-comment-trigger/__builder_checkout_dir__/.github/actions/secure-download-artifact

A github action for detecting a "trigger" in a pull request description or comment. Secure drop-in replacement for Khan/pull-request-comment-trigger.

10/10
ansible/ansible-publish-action

ansible/ansible-publish-action

Publish Ansible collection to galaxy.ansible.com

6/10
elide-dev/labs-openjdk/.github/actions/get-bootjdk

elide-dev/labs-openjdk/.github/actions/get-bootjdk

JDK fork for building GraalVM CE.

5/10
pytorch/torchchat/test-infra/.github/actions/teardown-linux

pytorch/torchchat/test-infra/.github/actions/teardown-linux

Run PyTorch LLMs locally on servers, desktop and mobile

3/10
epam/ai-dial-ci/actions/java_prepare

epam/ai-dial-ci/actions/java_prepare

Continuous Integration instrumentation for AI DIAL components

8/10
devmasx/coverage-check-action

devmasx/coverage-check-action

Create a check for coverage percentage.

3/10
neondatabase/neon/.github/actions/upload

neondatabase/neon/.github/actions/upload

Neon: Serverless Postgres. We separated storage and compute to offer autoscaling, code-like database branching, and scale to zero.

3/10
surrealdb/surrealdb/.github/actions/setup-environment

surrealdb/surrealdb/.github/actions/setup-environment

A scalable, distributed, collaborative, document-graph database, for the realtime web

5/10
Maintained action available
fluxcd/pkg/actions/helm

fluxcd/pkg/actions/helm

GitOps Toolkit Go SDK

8/10
rajbos-actions/variable-substitution

rajbos-actions/variable-substitution

Enable GitHub developers to parameterize the values in their config files from a GitHub Action workflow

7/10
jrubics/poetry-publish

jrubics/poetry-publish

An action to build and publish python package to pypi (https://pypi.org/) using poetry (https://github.com/sdispater/poetry)

6/10
haskell-actions/hlint-setup

haskell-actions/hlint-setup

Reusable GitHub Action to set up hlint in a workflow. Use with haskell-actions/hlint-run.

6/10
rubilmax/foundry-storage-check

rubilmax/foundry-storage-check

๐Ÿ” Protect your Smart Contract Proxy from storage collisions upon upgrading, by running this action in a CI on each of your Pull Requests!

0/10
step-security/deployment-action/__builder_checkout_dir__/.github/actions/secure-download-artifact

step-security/deployment-action/__builder_checkout_dir__/.github/actions/secure-download-artifact

GitHub action to create a Deployment. Secure drop-in replacement for chrnorm/deployment-action.

9/10
ministryofjustice/devsecops-actions/sca/repository

ministryofjustice/devsecops-actions/sca/repository

A collection of reusable GitHub Actions that standardise DevSecOps security scanning i.e. SCA, SAST, DAST, secrets, IaC, and container security.

7/10
emqx/macos-erlang

emqx/macos-erlang

Action to install EMQX fork of Erlang/OTP on macOS

3/10