Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

the-commons-project/terragrunt-github-actions

the-commons-project/terragrunt-github-actions

Terraform GitHub Actions

3/10
ame-yu/action-delete-latest-release

ame-yu/action-delete-latest-release

2/10
1Password/check-signed-commits-action

1Password/check-signed-commits-action

GitHub Action to check PRs for signed commits

4/10
sigstore/cosign-installer

sigstore/cosign-installer

Cosign Github Action

9/10
SonarSource/sonarcloud-github-c-cpp

SonarSource/sonarcloud-github-c-cpp

Deprecated. Use https://github.com/SonarSource/sonarqube-scan-action instead.

8/10
step-security/helm-gh-pages

step-security/helm-gh-pages

A GitHub Action for publishing Helm charts to Github Pages

10/10
Maintained by StepSecurity
ScribeMD/docker-cache

ScribeMD/docker-cache

Cache Docker Images Whether Built or Pulled

3/10
clowdhaus/terraform-composite-actions/pre-commit

clowdhaus/terraform-composite-actions/pre-commit

Contains composit GitHub actions for use with Terraform AWS Module workflows

4/10
jmertic/lfx-landscape-tools

jmertic/lfx-landscape-tools

Tools for updating a landscape from LFX

7/10
mbrobbel/rustfmt-check

mbrobbel/rustfmt-check

GitHub Action to format Rust code using rustfmt

5/10
prefix-dev/setup-pixi

prefix-dev/setup-pixi

GitHub Action to set up pixi :octocat: 📦

7/10
CycloneDX/gh-gomod-generate-sbom

CycloneDX/gh-gomod-generate-sbom

GitHub action to generate a CycloneDX SBOM for Go modules

5/10
jfrog/frogbot

jfrog/frogbot

🐸 Scans your Git repository with JFrog Xray for security vulnerabilities. 🤖

7/10
mcbeet/check-commands

mcbeet/check-commands

Github action to validate minecraft data packs and function files.

3/10
reviewdog/action-misspell

reviewdog/action-misspell

Run misspell with reviewdog

6/10
jauderho/dnscontrol-action

jauderho/dnscontrol-action

Deploy your DNS configuration using GitHub Actions with DNSControl.

6/10
actions-rs/install

actions-rs/install

⏩ GitHub Action for a faster binary crates installation

3/10
erlef/setup-beam

erlef/setup-beam

Set up your BEAM-based GitHub Actions workflow (Erlang, Elixir, Gleam, ...)

8/10
google-github-actions/get-secretmanager-secrets

google-github-actions/get-secretmanager-secrets

A GitHub Action for accessing secrets from Google Secret Manager and making them available as outputs.

7/10
re-actors/checkout-python-sdist

re-actors/checkout-python-sdist

A GitHub Action to unpack a source distribution package (tarball / `.tar.gz`) into the current workspace

3/10