StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

step-security/harden-runner

step-security/harden-runner

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-time.

8/10
bitwarden/gh-actions/version-bump

bitwarden/gh-actions/version-bump

Bitwarden-utilized GitHub Actions.

6/10
ambilykk/copilot-metrics-retention

ambilykk/copilot-metrics-retention

The Copilot Metrics API supplies data spanning a 28-day timeframe. This Action is designed to persistently store this data over time in a JSON file format.

2/10
anchore/binny/.github/actions/bootstrap

anchore/binny/.github/actions/bootstrap

Manage a directory of binaries without a package manager

7/10
wuan/test-action

wuan/test-action

2/10
babarot/action-github-comment

babarot/action-github-comment

GitHub Actions to post a text to GitHub issue / pull request

2/10
openzeppelin/openzeppelin-relayer/.github/actions/prepare

openzeppelin/openzeppelin-relayer/.github/actions/prepare

OpenZeppelin Relayer

4/10
Maintained action available
aerospike/aerospike-client-java/.github/actions/get-version

aerospike/aerospike-client-java/.github/actions/get-version

Aerospike Java Client Library

4/10
Maintained action available
projectdiscovery/actions/setup/python

projectdiscovery/actions/setup/python

ProjectDiscovery's Composite Actions

5/10
step-security/ansible-galaxy-action/__builder_checkout_dir__/.github/actions/wp-content/uploads/2017/07

step-security/ansible-galaxy-action/__builder_checkout_dir__/.github/actions/wp-content/uploads/2017/07

This Action will import ansible roles on galaxy-ng. Secure drop-in replacement for ansible-actions/ansible-galaxy-action.

10/10
pytorch/hub/test-infra/.github/actions/calculate-docker-image

pytorch/hub/test-infra/.github/actions/calculate-docker-image

Submission to https://pytorch.org/hub/

2/10
ministryofjustice/money-to-prisoners-bank-admin/.github/actions/clean-ecr

ministryofjustice/money-to-prisoners-bank-admin/.github/actions/clean-ecr

Bank Admin โ€“ SSCL staff facing site for Prisoner Money suite of apps

8/10
anysphere/docker-cache

anysphere/docker-cache

Cache Docker Images Whether Built or Pulled

2/10
roadiehq/backstage-entity-validator

roadiehq/backstage-entity-validator

Validate properties and well known annotations in your Backstage catalog-info.yaml files.

2/10
Maintained action available
fortify/github-action/internal/run-script/js

fortify/github-action/internal/run-script/js

Fortify GitHub Actions

2/10
Maintained action available
authzed/action-spicedb-validate

authzed/action-spicedb-validate

GitHub Action for validating your SpiceDB schema

4/10
scottbrenner/cfn-lint-action

scottbrenner/cfn-lint-action

GitHub Action for interacting with CloudFormation Linter

8/10
insightsengineering/pip-action

insightsengineering/pip-action

Github Action to install Python PIP packages ๐Ÿ ๐Ÿ“ฆ

4/10
caphyon/advinst-github-action

caphyon/advinst-github-action

GitHub action for Advanced Installer tool

3/10
Maintained action available
googlecloudplatform/github-actions

googlecloudplatform/github-actions

A GitHub Action for installing and configuring the gcloud CLI.

5/10