Skip to content
Menu

Menu

Actions

An entirely new way to automate your development workflow.

144 results filtered by Security × Actions ×

whitesource

GP Security Scan

By whitesource

Scan packages and Docker images uploaded to GitHub Packages

blackducksoftware

Synopsys Detect

By blackducksoftware

Add SAST and SCA scanning to your GitHub repositories with Synopsys Coverity on Polaris and Black Duck

snyk

Snyk

By snyk

Check your Node application for vulnerabilties using Snyk

google

Secrets Sync Action

By google

Copies secrets from the action's environment to many other repos

zap

OWASP ZAP Baseline Scan

By zaproxy

Scans the web application with the OWASP ZAP Baseline Scan

zap

OWASP ZAP Full Scan

By zaproxy

Scans the web application with the OWASP ZAP Full Scan

sonarsource

SonarCloud Scan

By SonarSource

Scan your code with SonarCloud to detect bugs, vulnerabilities and code smells in more than 25 programming languages

unlock

actions-crypto

By shinhwagk

a simple crypto(encrypt/decrypt) action for file or directory

lock

CyberArk Conjur Secret Fetcher

By infamousjoeg

Securely retrieve a secret from CyberArk Conjur and present to your action as a masked environment variable

check

sast-scan

By AppThreat

sast-scan is a free and open-source Static Analysis Security Testing (SAST) tool for a range of languages

alert-triangle

Whitesource Unified Agent Scan

By TheAxZim

Run a scan using the Whitesource unified agent

list

Generate SBoM for Elixir project

By red-shirts

Generate Software Bill-of-Material for Mix projects

umbrella

Push PMD report

By jwgmeligmeyling

Push PMD Code Analysis report

shield

Manage NSG

By venura9

Add/Remove NSG Rules using the public IP of the hosted runner

lock

Netrc Credentials

By little-core-labs

Sets up netrc credentials

shield

Lockdown CI Security

By InstaCode

Restrict build runs to specific users

package

Cloud One Container Security Scan Action

By felipecosta09

Scan container images with Trend Micro Cloud One Container Security (Formerly Deep Security Smart Check)

align-left

semgrep-action

By returntocorp

Easily detect and prevent bugs and anti-patterns in your codebase

lock

Trufflehog Check

By UnicornGlobal

Scan for committed secrets with minimal configuration

unlock

Vault Secrets

By RichiCoder1

A Github Action that allows you to consume the v2 K/V backend of HashiCorp Vault™ as secure environment variables

Next

List your tool on GitHub Marketplace

Read the documentation
Learn how you can build tools to extend and improve developers' workflows.
Submit your tool for review
Share your app or GitHub Action with millions of developers.
You can’t perform that action at this time.