StepSecurity Logo
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

peter-evans/enable-pull-request-automerge

peter-evans/enable-pull-request-automerge

A GitHub action to enable auto-merge on a pull request

5/10
battila7/get-version-action

battila7/get-version-action

A GitHub Action which extracts the version from github.ref

3/10
chainguard-dev/melange/melange-src/.github/actions/setup-bubblewrap

chainguard-dev/melange/melange-src/.github/actions/setup-bubblewrap

build APKs from source code

8/10
github/issue-labeler

github/issue-labeler

An action for automatically labelling issues

4/10
deployphp/action

deployphp/action

GitHub Action for Deployer

3/10
canonical/k8s-snap/.github/actions/install-lxd

canonical/k8s-snap/.github/actions/install-lxd

Canonical Kubernetes is an opinionated and CNCF conformant Kubernetes operated by Snaps and Charms, which come together to bring simplified operations and an enhanced security posture on any infrastructure.

6/10
pytorch/test-infra/test-infra/.github/actions/teardown-linux

pytorch/test-infra/test-infra/.github/actions/teardown-linux

This repository hosts code that supports the testing infrastructure for the PyTorch organization. For example, this repo hosts the logic to track disabled tests and slow tests, as well as our continuation integration jobs HUD/dashboard.

4/10
Maintained action available
andrcuns/allure-publish-action

andrcuns/allure-publish-action

Allure report publish action

4/10
bit-tasks/commit-bitmap

bit-tasks/commit-bitmap

Commit the modified Bitmap task for CI/CD

0/10
radcortez/project-metadata-action

radcortez/project-metadata-action

0/10
rapidsai/devcontainers/.github/actions/install-devcontainers-cli

rapidsai/devcontainers/.github/actions/install-devcontainers-cli

5/10
Maintained action available
diillson/auto-pull-request

diillson/auto-pull-request

3/10
grafana/grafana/.grafana-main/pkg/build/actions/bump-version

grafana/grafana/.grafana-main/pkg/build/actions/bump-version

The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.

6/10
cloudposse/github-action-jq

cloudposse/github-action-jq

Process a value with a jq script and output to a step output.

5/10
sendgrid/dx-automator/actions/datadog-release-metric

sendgrid/dx-automator/actions/datadog-release-metric

A tool for managing priorities across multiple GitHub repositories

4/10
sudo-bot/action-pull-request-lock

sudo-bot/action-pull-request-lock

Close and lock a pull-request

4/10
coveo/ui-kit/.github/actions/build

coveo/ui-kit/.github/actions/build

Coveo UI kit repository, home of @coveo/headless, @coveo/atomic, and more.

5/10
Maintained action available
1password/load-secrets-action/configure

1password/load-secrets-action/configure

Load secrets from 1Password into your GitHub Actions jobs

5/10
step-security/ghaction-setup-docker/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/ghaction-setup-docker/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

GitHub Action to set up (download and install) Docker CE. Secure drop-in replacement for docker/setup-docker-action.

10/10
envoyproxy/toolshed/gh-actions/envoy/ci/env

envoyproxy/toolshed/gh-actions/envoy/ci/env

6/10