StepSecurity Logo
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

valentijnscholten/flake8-your-pr

valentijnscholten/flake8-your-pr

Github action to flake8 lint your pull requests

3/10
step-security/depot-setup-action/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/depot-setup-action/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

▶️ GitHub Action to download and install the Depot CLI. Secure drop-in replacement for depot/setup-action.

10/10
daneden/enable-automerge-action

daneden/enable-automerge-action

🤖 A GitHub action that enables automerge for pull requests opened by a specified author

2/10
nashmaniac/create-issue-action

nashmaniac/create-issue-action

1/10
heliocastro/docker-build-control

heliocastro/docker-build-control

Github action to check if image exists in registry and build with specified parameters

3/10
tomasreyes/kafka/.github/actions/setup-gradle

tomasreyes/kafka/.github/actions/setup-gradle

Mirror of Apache Kafka

3/10
Maintained action available
grafana/mimir/.github/actions/build-image

grafana/mimir/.github/actions/build-image

Grafana Mimir provides horizontally scalable, highly available, multi-tenant, long-term storage for Prometheus.

8/10
MathieuSoysal/jib-container-publish.yml

MathieuSoysal/jib-container-publish.yml

GitHub Actions for your Java project to build container with jib and publish it to GitHub Packages.

4/10
NeuraLegion/run-scan

NeuraLegion/run-scan

Action runs a new security scan in NeuraLegion, or reruns an existing one

2/10
dangoslen/dependabot-changelog-helper

dangoslen/dependabot-changelog-helper

A GitHub Action to update the changelog and bump the version of your project for Dependabot pull requests.

4/10
Maintained action available
step-security/workflow-dispatch

step-security/workflow-dispatch

A GitHub Action for triggering workflows, using the `workflow_dispatch` event. Secure drop-in replacement for benc-uk/workflow-dispatch.

10/10
Maintained by StepSecurity
canonical/has-signed-canonical-cla

canonical/has-signed-canonical-cla

4/10
Maintained action available
MinoruSekine/setup-scoop

MinoruSekine/setup-scoop

GitHub Actions to install apps to Windows runner by scoop

4/10
PyCQA/bandit-action

PyCQA/bandit-action

GitHub Action to run Bandit

6/10
geekyeggo/delete-artifact

geekyeggo/delete-artifact

A GitHub Action to deletes artifacts within the workflow run.

3/10
actions-rs/tarpaulin

actions-rs/tarpaulin

📈 GitHub Action for code coverage reporting with tarpaulin

3/10
hyperledger/indy-shared-gha/.github/actions/get-release-info

hyperledger/indy-shared-gha/.github/actions/get-release-info

5/10
step-security/test-reporting

step-security/test-reporting

Displays test results from popular testing frameworks directly in GitHub. Secure drop-in replacement for phoenix-actions/test-reporting.

10/10
Maintained by StepSecurity
siderolabs/conform

siderolabs/conform

Policy enforcement for your pipelines.

3/10
ivuorinen/gibidify/.github/actions/setup

ivuorinen/gibidify/.github/actions/setup

gibidify is a CLI application written in Go that scans a source directory recursively and aggregates code files into a single text file for LLMs.

6/10