StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

projectdiscovery/actions/cache/nuclei

projectdiscovery/actions/cache/nuclei

ProjectDiscovery's Composite Actions

7/10
opcr-io/policy-build-action

opcr-io/policy-build-action

policy-build-action

3/10
maheshrayas/action-pr-comment-delete

maheshrayas/action-pr-comment-delete

GitHub Action to delete older PR comments

3/10
devcontainers/ci/merge

devcontainers/ci/merge

A GitHub Action and Azure DevOps Task designed to simplify using Dev Containers (https://containers.dev) in CI/CD systems.

5/10
Maintained action available
ethereum-optimism/factory/actions/detect-changes

ethereum-optimism/factory/actions/detect-changes

Github CI workflows to build artifacts securely

7/10
elastic/apm-pipeline-library/.github/actions/docker-layer-caching

elastic/apm-pipeline-library/.github/actions/docker-layer-caching

4/10
step-security/sbom-action/publish-sbom

step-security/sbom-action/publish-sbom

GitHub Action for creating software bill of materials using Syft. Secure drop-in replacement for anchore/sbom-action.

10/10
Maintained by StepSecurity
anz-bank/pkg/.github/action/github-tag-action

anz-bank/pkg/.github/action/github-tag-action

Common ANZ Go packages

2/10
approved-3rd-party-actions/hashicorp-setup-terraform

approved-3rd-party-actions/hashicorp-setup-terraform

Sets up Terraform CLI in your GitHub Actions workflow.

2/10
ministryofjustice/hmpps-approved-premises-ui/.github/actions/slack_failure_notification

ministryofjustice/hmpps-approved-premises-ui/.github/actions/slack_failure_notification

The user interface for the Approved Premises Service

8/10
rasahq/rasa-helm-charts/.github/actions/check-chart-rc

rasahq/rasa-helm-charts/.github/actions/check-chart-rc

Helm Charts Packaging and Distribution

8/10
clj-holmes/clj-watson-action

clj-holmes/clj-watson-action

clj-watson action

2/10
lerebear/sizeup-action

lerebear/sizeup-action

Encourage digestible pull requests

3/10
lfreleng-actions/python-dynamic-version-action

lfreleng-actions/python-dynamic-version-action

Checks if dynamic versioning is enabled in pyproject.toml

4/10
Maintained action available
sozercan/kaito/.github/actions/build-image-action

sozercan/kaito/.github/actions/build-image-action

Kubernetes AI Toolchain Operator

2/10
step-security/claude-code-action/__builder_checkout_dir__/.github/actions/secure-download-artifact

step-security/claude-code-action/__builder_checkout_dir__/.github/actions/secure-download-artifact

Secure drop-in replacement for anthropics/claude-code-action.

10/10
pytorch/test-infra/.github/actions/setup-ssh

pytorch/test-infra/.github/actions/setup-ssh

This repository hosts code that supports the testing infrastructure for the PyTorch organization. For example, this repo hosts the logic to track disabled tests and slow tests, as well as our continuation integration jobs HUD/dashboard.

4/10
Maintained action available
tanker187/stagehand/.github/actions/upload-ctrf-report

tanker187/stagehand/.github/actions/upload-ctrf-report

The AI Browser Automation Framework

5/10
Maintained action available
openzeppelin/openzeppelin-ui/../__tool_action_dir__

openzeppelin/openzeppelin-ui/../__tool_action_dir__

OpenZeppelin UI - React components and utilities for blockchain applications

4/10
Maintained action available
siemens/mtda/.github/workflows/free-disk-space

siemens/mtda/.github/workflows/free-disk-space

Multi-Tenant Device Access

6/10