StepSecurity Logo
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

Accenture/AutoFixture.XUnit2.AutoMock/.github/actions/materialize-signing-key

Accenture/AutoFixture.XUnit2.AutoMock/.github/actions/materialize-signing-key

Autofixture auto-mocking for XUnit2 using a mocking library of your choice.

5/10
TimonVS/pr-labeler-action

TimonVS/pr-labeler-action

Automatically labels your PRs based on branch name patterns like feature/* or fix/*.

3/10
grafana/epimetheus/.github/promci/actions/save_artifacts

grafana/epimetheus/.github/promci/actions/save_artifacts

FrostDB backed Prometheus fork

3/10
280780363/kafka-action

280780363/kafka-action

3/10
UnlyEd/github-action-store-variable

UnlyEd/github-action-store-variable

Easily persist and read variables to reuse them between GitHub Action jobs

2/10
beckermr/turnstyle-python

beckermr/turnstyle-python

a python implementation of softprops/turnstyle

4/10
pytorch/torchchat/test-infra/.github/actions/pull-docker-image

pytorch/torchchat/test-infra/.github/actions/pull-docker-image

Run PyTorch LLMs locally on servers, desktop and mobile

3/10
egor-tensin/setup-mingw

egor-tensin/setup-mingw

GitHub action to set up MinGW-w64

4/10
jpetrucciani/bandit-check

jpetrucciani/bandit-check

github action to run the bandit security linter

4/10
SwiftyLab/ci/actions/setup

SwiftyLab/ci/actions/setup

Support files and configurations for SwiftyLab's CI

3/10
amondnet/vercel-action

amondnet/vercel-action

This action make a deployment with github actions instead of Vercel builder.

4/10
step-security/envsubst-action

step-security/envsubst-action

Github Action for envsubst. Secure drop-in replacement for danielr1996/envsubst-action.

10/10
Maintained by StepSecurity
step-security/terraform-cloud-provider-publish/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/terraform-cloud-provider-publish/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

An action for publishing terraform providers to a private registry. Secure drop-in replacement for thechrisjohnson/terraform-cloud-provider-publish.

10/10
redhat-plumbers-in-action/advanced-issue-labeler

redhat-plumbers-in-action/advanced-issue-labeler

🔖 Label issues based on input and defined policy

5/10
Maintained action available
JRubics/poetry-publish

JRubics/poetry-publish

An action to build and publish python package to pypi (https://pypi.org/) using poetry (https://github.com/sdispater/poetry)

6/10
MetaMask/github-tools/.github/actions/create-release-pr

MetaMask/github-tools/.github/actions/create-release-pr

An assortment of tools interacting with the GitHub API to get metrics for things like PR review comments/reviews

4/10
Maintained action available
grafana/traces-drilldown/.github/actions/build

grafana/traces-drilldown/.github/actions/build

Traces Drilldown is a native Grafana application designed to integrate seamlessly with Tempo, the open-source distributed tracing backend, providing a smooth, query-less experience for browsing and analyzing tracing data.

7/10
dflook/terraform-fmt

dflook/terraform-fmt

GitHub action to fix formatting of terraform files

2/10
eine/tip

eine/tip

GitHub Action to keep a 'tip' pre-release always up-to-date

2/10
hashicorp/actions-hc-releases-create-metadata

hashicorp/actions-hc-releases-create-metadata

6/10