Skip to content
@step-security

StepSecurity

Secure your GitHub Actions with StepSecurity: Your Trusted CI/CD Security Partner
README.md

Step Security Logo

Close the CI/CD Security Gap

Pinned Loading

  1. harden-runner harden-runner Public

    Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in re…

    TypeScript 1.1k 97

  2. dev-machine-guard dev-machine-guard Public

    Scan your dev machine for AI agents, MCP servers, IDE extensions, and suspicious packages - in seconds.

    Go 96 12

  3. secure-repo secure-repo Public

    Orchestrate GitHub Actions Security

    Go 319 51

  4. github-actions-goat github-actions-goat Public

    GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment

    JavaScript 501 311

Repositories

Showing 10 of 309 repositories
  • clippy-action Public

    🐻‍❄️📦 GitHub action to run Clippy, an up-to-date and modern version of actions-rs/clippy. Secure drop-in replacement for auguwu/clippy-action.

    step-security/clippy-action’s past year of commit activity
    TypeScript 0 Apache-2.0 1 1 12 Updated Apr 23, 2026
  • setup-xcode Public

    Set up your GitHub Actions workflow with a specific version of Xcode. Secure drop-in replacement for maxim-lobanov/setup-xcode.

    step-security/setup-xcode’s past year of commit activity
    TypeScript 0 MIT 1 1 8 Updated Apr 23, 2026
  • publish-unit-test-result-action Public

    GitHub Action to publish unit test results on GitHub. Secure drop-in replacement for EnricoMi/publish-unit-test-result-action.

    step-security/publish-unit-test-result-action’s past year of commit activity
    Python 0 Apache-2.0 4 1 25 Updated Apr 23, 2026
  • cancel-action Public

    Secure drop-in replacement for andymckay/cancel-action.

    step-security/cancel-action’s past year of commit activity
    JavaScript 0 MIT 1 1 7 Updated Apr 23, 2026
  • aqua-installer Public

    Install aqua securely and quickly. Secure drop-in replacement for aquaproj/aqua-installer.

    step-security/aqua-installer’s past year of commit activity
    Shell 0 MIT 1 1 5 Updated Apr 23, 2026
  • actions-find-and-replace-string Public

    A GitHub action to execute find-and-replace on strings. Secure drop-in replacement for mad9000/actions-find-and-replace-string.

    step-security/actions-find-and-replace-string’s past year of commit activity
    TypeScript 0 MIT 1 1 10 Updated Apr 23, 2026
  • actions-comment-pull-request Public

    GitHub action to comment pull request. Secure drop-in replacement for thollander/actions-comment-pull-request.

    step-security/actions-comment-pull-request’s past year of commit activity
    TypeScript 0 MIT 1 1 10 Updated Apr 23, 2026
  • action-remove-labels Public

    🏷️ GitHub Action to remove labels. Secure drop-in replacement for actions-ecosystem/action-remove-labels.

    step-security/action-remove-labels’s past year of commit activity
    TypeScript 0 Apache-2.0 1 1 8 Updated Apr 23, 2026
  • action-read-yaml Public

    Custom github action used to read yaml files, supporting multiple keys and variable replacements. Secure drop-in replacement for pietrobolcato/action-read-yaml.

    step-security/action-read-yaml’s past year of commit activity
    JavaScript 0 MIT 1 1 7 Updated Apr 23, 2026
  • action-push-tag Public

    🔖 GitHub Action to push a Git tag. Secure drop-in replacement for actions-ecosystem/action-push-tag.

    step-security/action-push-tag’s past year of commit activity
    Shell 0 Apache-2.0 1 1 7 Updated Apr 23, 2026
View all repositories

Top languages

Loading…

Most used topics

Loading…