Skip to content
@step-security

StepSecurity

Secure your GitHub Actions with StepSecurity: Your Trusted CI/CD Security Partner
README.md

Step Security Logo

Close the CI/CD Security Gap

Pinned Loading

  1. harden-runner harden-runner Public

    Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in re…

    TypeScript 934 82

  2. secure-repo secure-repo Public

    Orchestrate GitHub Actions Security

    Go 303 50

  3. wait-for-secrets wait-for-secrets Public

    Publish from GitHub Actions using multi-factor authentication

    TypeScript 294 20

  4. github-actions-goat github-actions-goat Public

    GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment

    JavaScript 488 302

Repositories

Showing 10 of 197 repositories
  • action-markdownlint Public

    Run markdownlint with reviewdog. Secure drop-in replacement for reviewdog/action-markdownlint.

    step-security/action-markdownlint’s past year of commit activity
    Shell 0 MIT 2 1 8 Updated Dec 24, 2025
  • ghcommit-action Public

    GitHub Action to commit files to a git branch using the ghcommit utility. Secure drop-in replacement for planetscale/ghcommit-action.

    step-security/ghcommit-action’s past year of commit activity
    Shell 0 Apache-2.0 1 1 9 Updated Dec 24, 2025
  • setup-buildx-action Public

    GitHub Action to set up Docker Buildx. Secure drop-in replacement for docker/setup-buildx-action.

    step-security/setup-buildx-action’s past year of commit activity
    TypeScript 0 Apache-2.0 1 1 10 Updated Dec 24, 2025
  • proof-html Public

    A GitHub Action to validate HTML, check links, and more ✅. Secure drop-in replacement for anishathalye/proof-html.

    step-security/proof-html’s past year of commit activity
    Ruby 0 MIT 1 1 5 Updated Dec 24, 2025
  • git-auto-commit-action Public

    Automatically commit and push changed files back to GitHub with this GitHub Action for the 80% use case. Secure drop-in replacement for stefanzweifel/git-auto-commit-action.

    step-security/git-auto-commit-action’s past year of commit activity
    Shell 1 MIT 1 1 10 Updated Dec 24, 2025
  • prisma-cloud-scan Public

    GitHub action to scan container images with Palo Alto Networks' Prisma Cloud. Secure drop-in replacement for PaloAltoNetworks/prisma-cloud-scan.

    step-security/prisma-cloud-scan’s past year of commit activity
    JavaScript 0 Apache-2.0 1 1 10 Updated Dec 24, 2025
  • dispatch-workflow Public

    A GitHub Action to Dispatch and Discover GitHub Workflows using workflow_dispatch or repository_dispatch. Secure drop-in replacement for lasith-kg/dispatch-workflow.

    step-security/dispatch-workflow’s past year of commit activity
    TypeScript 0 MIT 1 1 11 Updated Dec 23, 2025
  • setup-vals Public

    Github Action for installing vals (https://github.com/helmfile/vals). Secure drop-in replacement for jkroepke/setup-vals.

    step-security/setup-vals’s past year of commit activity
    TypeScript 0 MIT 1 1 15 Updated Dec 23, 2025
  • action-golangci-lint Public

    Run golangci-lint with reviewdog. Secure drop-in replacement for reviewdog/action-golangci-lint.

    step-security/action-golangci-lint’s past year of commit activity
    TypeScript 0 MIT 1 1 9 Updated Dec 23, 2025
  • action-push-tag Public

    🔖 GitHub Action to push a Git tag. Secure drop-in replacement for actions-ecosystem/action-push-tag.

    step-security/action-push-tag’s past year of commit activity
    Shell 0 Apache-2.0 1 1 5 Updated Dec 23, 2025
View all repositories

Top languages

Loading…

Most used topics

Loading…