StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

wyrihaximus/github-action-wait-for-status

wyrihaximus/github-action-wait-for-status

Github Action that waits for successful commit status

2/10
oxsecurity/megalinter/flavors/cupcake

oxsecurity/megalinter/flavors/cupcake

๐Ÿฆ™ MegaLinter analyzes 50 languages, 22 formats, 21 tooling formats, excessive copy-pastes, spelling mistakes and security issues in your repository sources with a GitHub Action, other CI tools or locally.

5/10
Maintained action available
launchdarkly/swift-launchdarkly-observability/.github/actions/test-swiftpm

launchdarkly/swift-launchdarkly-observability/.github/actions/test-swiftpm

LaunchDarkly Observability SDK for Swift

6/10
yonasbsd/buck2/.github/actions/contributing.md

yonasbsd/buck2/.github/actions/contributing.md

Build system, successor to Buck

3/10
Maintained action available
soos-io/soos-dast-github-action

soos-io/soos-dast-github-action

SOOS DAST GitHub Action - Register for a Free Trial at https://app.soos.io/register

4/10
snnaplab/get-labels-action

snnaplab/get-labels-action

3/10
optum/sourcehawk/.github/actions/build-windows-native-image

optum/sourcehawk/.github/actions/build-windows-native-image

Sourcehawk is an extensible compliance as code tool which allows development teams to run compliance scans on their source code.

3/10
sonarsource/parent-oss/.actions/get-build-number

sonarsource/parent-oss/.actions/get-build-number

Parent file of public Maven projects

7/10
singularityhub/install-singularity

singularityhub/install-singularity

Action to install Singlarity optimized for simplicity.

3/10
step-security/test-reporter/__builder_checkout_dir__/.github/actions/action-info.client.tsx

step-security/test-reporter/__builder_checkout_dir__/.github/actions/action-info.client.tsx

Displays test results from popular testing frameworks directly in GitHub. Secure drop-in replacement for dorny/test-reporter.

10/10
turtlesec-no/get-ninja

turtlesec-no/get-ninja

3/10
step-security/filter-sarif

step-security/filter-sarif

GitHub Action for filtering Code Scanning alerts by path and id. Secure drop-in replacement for advanced-security/filter-sarif.

10/10
Maintained by StepSecurity
wistia/parse-tool-versions

wistia/parse-tool-versions

Github action created to parse .tool-versions into the environment

5/10
fortify/github-action/internal/run

fortify/github-action/internal/run

Fortify GitHub Actions

4/10
Maintained action available
launchdarkly/swift-eventsource/.github/actions/build-tvos

launchdarkly/swift-eventsource/.github/actions/build-tvos

Server-sent events (SSE) client implementation in Swift for iOS, macOS, tvOS, and watchOS

5/10
ledgerhq/ledger-live/tools/actions/composites/cache/exists

ledgerhq/ledger-live/tools/actions/composites/cache/exists

Mono-repository for packages related to Ledger Live and its JavaScript ecosystem.

4/10
Maintained action available
ministryofjustice/laa-inquests-ui/.github/actions/setup-node

ministryofjustice/laa-inquests-ui/.github/actions/setup-node

5/10
kevinjil/jellyfin-plugin-repo-action

kevinjil/jellyfin-plugin-repo-action

A GitHub action which generates a Jellyfin plugin repository manifest file as a GitHub action.

2/10
slsa-framework/slsa-github-generator/__builder_checkout_dir__/.github/actions/privacy-check

slsa-framework/slsa-github-generator/__builder_checkout_dir__/.github/actions/privacy-check

Language-agnostic SLSA provenance generation for Github Actions

4/10
aliyun/ack-set-context

aliyun/ack-set-context

3/10