StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

yonasbsd/strapi/.github/actions/pr_diff

yonasbsd/strapi/.github/actions/pr_diff

πŸš€ Strapi is the leading open-source headless CMS. It’s 100% JavaScript/TypeScript, fully customizable and developer-first.

4/10
Maintained action available
gophercloud/devstack-action

gophercloud/devstack-action

Github actions for Devstack

5/10
yonasbsd/iggy/.github/actions/utils/setup-java-with-cache

yonasbsd/iggy/.github/actions/utils/setup-java-with-cache

Iggy is the persistent message streaming platform written in Rust, supporting QUIC, TCP and HTTP transport protocols, capable of processing millions of messages per second.

3/10
Maintained action available
step-security/github-action-markdown-link-check/__builder_checkout_dir__/.github/actions/secure-download-artifact

step-security/github-action-markdown-link-check/__builder_checkout_dir__/.github/actions/secure-download-artifact

Check all links in markdown files if they are alive or dead. πŸ”—βœ”οΈ. Secure drop-in replacement for gaurav-nelson/github-action-markdown-link-check.

10/10
khulnasoft-lab/setup-env-github-action

khulnasoft-lab/setup-env-github-action

3/10
step-security/ghaction-import-gpg/__builder_checkout_dir__/.github/actions/compute-sha256

step-security/ghaction-import-gpg/__builder_checkout_dir__/.github/actions/compute-sha256

GitHub Action to import a GPG key. Secure drop-in replacement for crazy-max/ghaction-import-gpg.

8/10
anomalyco/opencode/image

anomalyco/opencode/image

The open source coding agent.

7/10
elastic/oblt-actions/github/comment-reaction

elastic/oblt-actions/github/comment-reaction

7/10
stefanprodan/helm-gh-pages

stefanprodan/helm-gh-pages

A GitHub Action for publishing Helm charts to Github Pages

5/10
yonasbsd/rocksdb/.github/actions/setup-upstream

yonasbsd/rocksdb/.github/actions/setup-upstream

A library that provides an embeddable, persistent key-value store for fast storage.

5/10
Maintained action available
ouzi-dev/commit-status-updater

ouzi-dev/commit-status-updater

GitHub Action for updating the Commit Status with a state and a context

2/10
volta-cli/action

volta-cli/action

GitHub Action to Setup Volta

4/10
cookieai-jar/workflow-dispatch

cookieai-jar/workflow-dispatch

A GitHub Action for triggering workflows, using the `workflow_dispatch` event

6/10
deepcode-ai/cal.com/.github/actions/yarn-install

deepcode-ai/cal.com/.github/actions/yarn-install

Scheduling infrastructure for absolutely everyone.

2/10
step-security/repo-file-sync-action

step-security/repo-file-sync-action

πŸ”„ GitHub Action to keep files like Action workflows or entire directories in sync between multiple repositories. Secure drop-in replacement for BetaHuhn/repo-file-sync-action.

9/10
Maintained by StepSecurity
ministryofjustice/ndelius-um/.github/actions/setup

ministryofjustice/ndelius-um/.github/actions/setup

NDelius User Management Tool

3/10
grafana/shared-workflows/actions/generate-openapi-clients

grafana/shared-workflows/actions/generate-openapi-clients

A public-facing, centralized place to store reusable workflows used by Grafana Labs.

6/10
jakejarvis/wait-action

jakejarvis/wait-action

πŸ’€ Very, very simple (and small) action to sleep for an amount of time β€” 10s, 2m, etc.

5/10
sasobadovinac/gitnexus/.github/actions/setup-gitnexus

sasobadovinac/gitnexus/.github/actions/setup-gitnexus

GitNexus: The Zero-Server Code Intelligence Engine - GitNexus is a client-side knowledge graph creator that runs entirely in your browser. Drop in a GitHub repo or ZIP file, and get an interactive knowledge graph wit a built in Graph RAG Agent. Perfect for code exploration

4/10
Maintained action available
13rac1/block-fixup-merge-action

13rac1/block-fixup-merge-action

Github Action to block merge of Pull Requests containing fixup! or squash! commits

4/10