StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

rapidsai/dependency-file-generator/.github/actions/semantic-release

rapidsai/dependency-file-generator/.github/actions/semantic-release

5/10
aerospike/aerospike-client-java/.github/actions/publish-build-info-to-jfrog

aerospike/aerospike-client-java/.github/actions/publish-build-info-to-jfrog

Aerospike Java Client Library

4/10
Maintained action available
cybrking/thr8

cybrking/thr8

Automatically generate PASTA threat models from your repo using Claude AI.

0/10
hiddenlayerai/hiddenlayer-model-scan-github-action

hiddenlayerai/hiddenlayer-model-scan-github-action

Official HiddenLayer Github Action for the Model Scanner

7/10
step-security/action-install-gh-release

step-security/action-install-gh-release

GitHub Action to install the Github Release binaries. Secure drop-in replacement for jaxxstorm/action-install-gh-release.

9/10
Maintained by StepSecurity
ministryofjustice/laa-manage-your-civil-cases/.github/actions/deploy

ministryofjustice/laa-manage-your-civil-cases/.github/actions/deploy

A service to centrally manage civil legal aid cases for the Legal Aid Agency

7/10
actionutils/create-release-pr

actionutils/create-release-pr

WIP

1/10
mitchellh/vouch/action/check-pr

mitchellh/vouch/action/check-pr

A community trust management system based on explicit vouches to participate.

3/10
karancode/yamllint-github-action

karancode/yamllint-github-action

Github Action for linting yaml files using yamllint

4/10
step-security/setup-xcode

step-security/setup-xcode

Set up your GitHub Actions workflow with a specific version of Xcode. Secure drop-in replacement for maxim-lobanov/setup-xcode.

9/10
Maintained by StepSecurity
pytorch/tensordict/test-infra/.github/actions/teardown-windows

pytorch/tensordict/test-infra/.github/actions/teardown-windows

TensorDict is a pytorch dedicated tensor container.

4/10
Maintained action available
casadi/commercial_solvers

casadi/commercial_solvers

Set up commercial solvers in CI for testing purposes

2/10
asottile/workflows/.github/actions/fast-checkout

asottile/workflows/.github/actions/fast-checkout

reusable github workflows / actions

2/10
sredevopsorg/kserve/.github/actions/kserve-dep-setup

sredevopsorg/kserve/.github/actions/kserve-dep-setup

Standardized Serverless ML Inference Platform on Kubernetes

2/10
pytorch/text/test-infra/.github/actions/setup-binary-upload

pytorch/text/test-infra/.github/actions/setup-binary-upload

Models, data loaders and abstractions for language processing, powered by PyTorch

2/10
aerospike/aerospike-client-csharp/.github/actions/run-ee-server

aerospike/aerospike-client-csharp/.github/actions/run-ee-server

Aerospike C# Client Library

4/10
Maintained action available
ministryofjustice/hmpps-github-shared-actions/.github/actions/slack_release_results

ministryofjustice/hmpps-github-shared-actions/.github/actions/slack_release_results

Shared actions for Github workflows to use PUT NO WORKFLOWS IN HERE! (except security scanning ones) (bootstrapped 2026-03-30)

4/10
supercharge/redis-github-action

supercharge/redis-github-action

Use Redis in GitHub Actions

5/10
check-spelling/check-spelling

check-spelling/check-spelling

Spelling checker action to check spelling in repositories / pull requests / commits

6/10
natescherer/changelog-management-action

natescherer/changelog-management-action

A GitHub action to parse and update changelogs in Keep a Changelog 1.0.0 format; built on the ChangelogManagement PowerShell module.

5/10