Assess the risk of third-party GitHub Actions
Examples: ,
Actions
Assess all the actions
Reality2byte/codeql-action/analyze
Actions for running CodeQL analysis
step-security/launchdarkly-gha-flags/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact
Evaluate LaunchDarkly flags in your GitHub Action workflow. Secure drop-in replacement for launchdarkly/gha-flags.
noirbizarre/need-checks
Expect or wait status checks for a commit
bitwarden/android/.github/actions/log-inputs
Bitwarden mobile apps (Password Manager and Authenticator) for Android.
actions-x/commit
check-spelling-sandbox/dependency-review-action
A GitHub Action for detecting vulnerable dependencies in your PRs
d4rkfella/actions/apko-snapshot
yonasBSD/surrealdb/.github/actions/docker-build
A scalable, distributed, collaborative, document-graph database, for the realtime web
Accenture/AutoFixture.XUnit2.AutoMock/.github/actions/determine-next-version
Autofixture auto-mocking for XUnit2 using a mocking library of your choice.
lunarmodules/luacheck
A tool for linting and static analysis of Lua code.
OZI-Project/draft
OZI release draft workflow.
envoyproxy/toolshed/actions/github/remnt
yonasBSD/iggy/.github/actions/rust/post-merge
Iggy is the persistent message streaming platform written in Rust, supporting QUIC, TCP and HTTP transport protocols, capable of processing millions of messages per second.
Raj-StepSecurity/jest-coverage-action-demo
docker-practice/actions-setup-docker
Set up your GitHub Actions workflow with a specific version(18.09,19.03,20.10,nightly) of Docker ON Linux/macOS
toolmantim/release-drafter
Drafts your next release notes as pull requests are merged into master.
github/evergreen
GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.yaml file
wolfi-dev/actions/wolfictl-lint
A collection of reusable Github Actions workflows.