StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

useblacksmith/cache-delete

useblacksmith/cache-delete

3/10
jessehouwing/actions-dependency-submission

jessehouwing/actions-dependency-submission

Action to automatically report versions for pinned action dependencies

6/10
deef0000dragon1/json-edit-action

deef0000dragon1/json-edit-action

Github Action to make a change to a JSON file

0/10
step-security/r-lib-actions/setup-pandoc

step-security/r-lib-actions/setup-pandoc

GitHub Actions for the R community. Secure drop-in replacement for r-lib/actions.

10/10
Maintained by StepSecurity
step-security/gitleaks-action

step-security/gitleaks-action

Protect your secrets using Gitleaks-Action. Secure drop-in replacement for gitleaks/gitleaks-action.

10/10
Maintained by StepSecurity
devantler-tech/ksail/.github/actions/npm-audit-and-fix

devantler-tech/ksail/.github/actions/npm-audit-and-fix

All-in-one Kubernetes SDK: create, manage, and operate clusters across distributions (Kind, K3d, Talos, VCluster) with built-in GitOps, secrets, AI assistant, and MCP server. Only requires Docker or a Cloud Provider.

3/10
Maintained action available
rigs-it/xanitizer-action

rigs-it/xanitizer-action

GitHub action to download and install Xanitizer, and to run a Xanitizer security analysis in a GitHub workflow.

2/10
sasobadovinac/pytorch/.github/actions/diskspace-cleanup

sasobadovinac/pytorch/.github/actions/diskspace-cleanup

Tensors and Dynamic neural networks in Python with strong GPU acceleration

4/10
Maintained action available
step-security/create-or-update-comment

step-security/create-or-update-comment

A GitHub action to create or update an issue or pull request comment. Secure drop-in replacement for peter-evans/create-or-update-comment.

10/10
Maintained by StepSecurity
slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml

slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml

Language-agnostic SLSA provenance generation for Github Actions

6/10
pytorch/vision/test-infra/.github/actions/calculate-docker-image

pytorch/vision/test-infra/.github/actions/calculate-docker-image

Datasets, Transforms and Models specific to Computer Vision

4/10
Maintained action available
harden-runner-canary/docker-action-k8s

harden-runner-canary/docker-action-k8s

3/10
pytorch/tensordict/test-infra/.github/actions/teardown-linux

pytorch/tensordict/test-infra/.github/actions/teardown-linux

TensorDict is a pytorch dedicated tensor container.

4/10
Maintained action available
dargon789/node/.github/actions/install-clang

dargon789/node/.github/actions/install-clang

Node.js JavaScript runtime โœจ๐Ÿข๐Ÿš€โœจ

5/10
Maintained action available
grafana/falconlogscale-datasource/actions/public-layout.tsx

grafana/falconlogscale-datasource/actions/public-layout.tsx

Falcon LogScale data source for Grafana

7/10
actions-security-demo/script-injection/.github/actions/setup-enterprise

actions-security-demo/script-injection/.github/actions/setup-enterprise

2/10
loft-sh/image

loft-sh/image

Work with containers' images

4/10
grafana/tns/_shared-workflows-dockerhub-login/actions/get-vault-secrets

grafana/tns/_shared-workflows-dockerhub-login/actions/get-vault-secrets

Observability Demo App

5/10
Maintained action available
eclipse-dash/dash-licenses/.github/actions/fill

eclipse-dash/dash-licenses/.github/actions/fill

Extract license information from content.

6/10
pypa/gh-action-pypi-publish

pypa/gh-action-pypi-publish

The blessed :octocat: GitHub Action, for publishing your :package: distribution files to PyPI, the tokenless way: https://github.com/marketplace/actions/pypi-publish

7/10