StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

knqyf263/trivy-issue-action

knqyf263/trivy-issue-action

GitHub Actions for creating GitHub Issues according to the Trivy scanning result

5/10
kitabisa/docker-slim-action

kitabisa/docker-slim-action

GitHub Action to minify container image by up to 30x (and for compiled languages even more) making it secure too!

3/10
philips-software/pull-request-report-action

philips-software/pull-request-report-action

GitHub action to collect Pull Request related Data and attached that as report to a Pull Request when it's merged.

2/10
determinatesystems/determinate-nix-action

determinatesystems/determinate-nix-action

The Github Action for Determinate Nix

8/10
yonasbsd/surrealdb/.github/actions/quality-format

yonasbsd/surrealdb/.github/actions/quality-format

A scalable, distributed, collaborative, document-graph database, for the realtime web

4/10
Maintained action available
fastai/fastpages

fastai/fastpages

An easy to use blogging platform, with enhanced support for Jupyter Notebooks.

4/10
step-security/assign-author

step-security/assign-author

GitHub Actions to assign author to issue or PR. Secure drop-in replacement for technote-space/assign-author.

8/10
Maintained by StepSecurity
chainguard-actions/actions-checkout

chainguard-actions/actions-checkout

2/10
caffeelake/lmcache/.github/actions/free-disk-space

caffeelake/lmcache/.github/actions/free-disk-space

Supercharge Your LLM with the Fastest KV Cache Layer

5/10
neondatabase/dev-actions/release-pr-notify

neondatabase/dev-actions/release-pr-notify

3/10
ethomson/env-action

ethomson/env-action

2/10
jonathancombs782/aspire/.github/actions/unlock-macos-keychain

jonathancombs782/aspire/.github/actions/unlock-macos-keychain

Aspire is the tool for code-first, extensible, observable dev and deploy.

3/10
yonasbsd/redpanda/ghca/actions/slash-command-error

yonasbsd/redpanda/ghca/actions/slash-command-error

Redpanda is a streaming data platform for developers. Kafka API compatible. 10x faster. No ZooKeeper. No JVM!

3/10
Maintained action available
step-security/setup-php/__builder_checkout_dir__/.github/actions/privacy-check

step-security/setup-php/__builder_checkout_dir__/.github/actions/privacy-check

GitHub action to set up PHP with extensions, php.ini configuration, coverage drivers, and various tools. Secure drop-in replacement for shivammathur/setup-php.

10/10
step-security/winterjung-comment

step-security/winterjung-comment

GitHub action to comment on pr, issue. Secure drop-in replacement for winterjung/comment.

10/10
Maintained by StepSecurity
slsa-framework/slsa-github-generator/.github/actions/rng

slsa-framework/slsa-github-generator/.github/actions/rng

Language-agnostic SLSA provenance generation for Github Actions

5/10
nvidia/dsx-github-actions/.github/actions/security-container-scan

nvidia/dsx-github-actions/.github/actions/security-container-scan

Github Action infrastructure for DSX

8/10
step-security/release-please-action/__builder_checkout_dir__/.github/actions/privacy-check

step-security/release-please-action/__builder_checkout_dir__/.github/actions/privacy-check

automated releases based on conventional commits. Secure drop-in replacement for googleapis/release-please-action.

10/10
yonasbsd/session-desktop/actions/setup

yonasbsd/session-desktop/actions/setup

Session Desktop - A Decentralized, Onion Routed, Private Messenger

3/10
Maintained action available
rudderlabs/rudder-sdk-kotlin/.github/actions/pr-title-check

rudderlabs/rudder-sdk-kotlin/.github/actions/pr-title-check

Kotlin Android SDK and Kotlin JVM for RudderStack - the Customer Data Platform for Developers.

4/10
Maintained action available