StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

dagster-io/dagster-cloud-action/actions/build_deploy_python_executable

dagster-io/dagster-cloud-action/actions/build_deploy_python_executable

5/10
mevisoft/formbricks/.github/actions/build-and-push-docker

mevisoft/formbricks/.github/actions/build-and-push-docker

4/10
Maintained action available
tailscale/gitops-acl-action

tailscale/gitops-acl-action

GitOps for your Tailscale ACLs

6/10
brycedorn/react-snap-action

brycedorn/react-snap-action

Github Action for pre-rendering via react-snap.

0/10
docker/setup-buildx-action

docker/setup-buildx-action

GitHub Action to set up Docker Buildx

8/10
nodoubtz-record-label/node/node/.github/actions/install-clang

nodoubtz-record-label/node/node/.github/actions/install-clang

npm's fork of nodejs/node, for sending PRs to update deps/npm

3/10
glassechidna/artifact-cleaner

glassechidna/artifact-cleaner

GitHub Action that can clean up old artifacts on a regular schedule

2/10
anchore/sbom-action/publish-sbom

anchore/sbom-action/publish-sbom

GitHub Action for creating software bill of materials using Syft.

6/10
diddlesnaps/snapcraft-review-action

diddlesnaps/snapcraft-review-action

GitHub Action to review your built Snap package using the same tools as the Snap Store

2/10
chrisgavin/setup-python-action

chrisgavin/setup-python-action

4/10
Maintained action available
reality2byte/action/.github/actions/check-codescanning-config

reality2byte/action/.github/actions/check-codescanning-config

7/10
rmuir/uv-dependency-submission

rmuir/uv-dependency-submission

GitHub Action for submitting uv.lock dependencies

6/10
equinor/fusion-project-portal/.github/actions/get-fusion-token'

equinor/fusion-project-portal/.github/actions/get-fusion-token'

Project Portal powered By Fusion

4/10
grafana/writers-toolkit/build-website

grafana/writers-toolkit/build-website

Technical documentation guidelines for Grafana Labs documentation

6/10
ilai-deutel/kibi/__builder_checkout_dir__/.github/actions/privacy-check

ilai-deutel/kibi/__builder_checkout_dir__/.github/actions/privacy-check

A text editor in โ‰ค1024 lines of code, written in Rust

8/10
step-security/setup-just/__builder_checkout_dir__/.github/actions/privacy-check

step-security/setup-just/__builder_checkout_dir__/.github/actions/privacy-check

๐Ÿค– GitHub Action to install the just command runner. Secure drop-in replacement for extractions/setup-just.

10/10
sonarsource/release-github-actions/get-jira-version

sonarsource/release-github-actions/get-jira-version

A collection of reusable GitHub Actions to automate the analyzer release process. This toolbox offers modular automations to reduce manual work for squads, handling tasks like changelog generation, version bumps, and release publishing. These actions help teams focus on code quality by simplifying workflows.

5/10
Maintained action available
slsa-framework/slsa-github-generator/../__tool_action_dir__

slsa-framework/slsa-github-generator/../__tool_action_dir__

Language-agnostic SLSA provenance generation for Github Actions

5/10
yann300/rebase-pull-requests

yann300/rebase-pull-requests

A GitHub action to rebase pull requests in a repository

2/10
tsunematsu21/actions-publish-gh-pages

tsunematsu21/actions-publish-gh-pages

:sushi: A GitHub Action to publish static website using GitHub Pages

3/10