Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

sersoft-gmbh/setup-gh-cli-action

sersoft-gmbh/setup-gh-cli-action

A GitHub action that installs or updates the gh CLI

6/10
chainguard-dev/actions/donotsubmit

chainguard-dev/actions/donotsubmit

A collection of reusable Github Actions workflows.

6/10
dflook/terraform-check

dflook/terraform-check

GitHub action to check if there are terraform changes to apply

2/10
untitaker/hyperlink

untitaker/hyperlink

Very fast link checker for CI.

4/10
the-commons-project/terragrunt-github-actions

the-commons-project/terragrunt-github-actions

Terraform GitHub Actions

3/10
ame-yu/action-delete-latest-release

ame-yu/action-delete-latest-release

2/10
1Password/check-signed-commits-action

1Password/check-signed-commits-action

GitHub Action to check PRs for signed commits

4/10
sigstore/cosign-installer

sigstore/cosign-installer

Cosign Github Action

9/10
SonarSource/sonarcloud-github-c-cpp

SonarSource/sonarcloud-github-c-cpp

Deprecated. Use https://github.com/SonarSource/sonarqube-scan-action instead.

8/10
step-security/helm-gh-pages

step-security/helm-gh-pages

A GitHub Action for publishing Helm charts to Github Pages

10/10
Maintained by StepSecurity
ScribeMD/docker-cache

ScribeMD/docker-cache

Cache Docker Images Whether Built or Pulled

3/10
clowdhaus/terraform-composite-actions/pre-commit

clowdhaus/terraform-composite-actions/pre-commit

Contains composit GitHub actions for use with Terraform AWS Module workflows

4/10
jmertic/lfx-landscape-tools

jmertic/lfx-landscape-tools

Tools for updating a landscape from LFX

7/10
mbrobbel/rustfmt-check

mbrobbel/rustfmt-check

GitHub Action to format Rust code using rustfmt

5/10
prefix-dev/setup-pixi

prefix-dev/setup-pixi

GitHub Action to set up pixi :octocat: 📦

7/10
CycloneDX/gh-gomod-generate-sbom

CycloneDX/gh-gomod-generate-sbom

GitHub action to generate a CycloneDX SBOM for Go modules

5/10
jfrog/frogbot

jfrog/frogbot

🐸 Scans your Git repository with JFrog Xray for security vulnerabilities. 🤖

7/10
mcbeet/check-commands

mcbeet/check-commands

Github action to validate minecraft data packs and function files.

3/10
reviewdog/action-misspell

reviewdog/action-misspell

Run misspell with reviewdog

6/10
jauderho/dnscontrol-action

jauderho/dnscontrol-action

Deploy your DNS configuration using GitHub Actions with DNSControl.

6/10