Skip to content
@step-security

StepSecurity

Secure your GitHub Actions with StepSecurity: Your Trusted CI/CD Security Partner
README.md

Step Security Logo

Close the CI/CD Security Gap

Pinned Loading

  1. harden-runner harden-runner Public

    Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in re…

    TypeScript 1k 93

  2. dev-machine-guard dev-machine-guard Public

    Scan your dev machine for AI agents, MCP servers, IDE extensions, and suspicious packages — in seconds.

    Shell 51 8

  3. secure-repo secure-repo Public

    Orchestrate GitHub Actions Security

    Go 316 51

  4. github-actions-goat github-actions-goat Public

    GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment

    JavaScript 499 305

Repositories

Showing 10 of 281 repositories
  • github-actions-pr-is-linked-to-work-item Public

    Check for linked Azure DevOps work item. Secure drop-in replacement for danhellem/github-actions-pr-is-linked-to-work-item.

    step-security/github-actions-pr-is-linked-to-work-item’s past year of commit activity
    TypeScript 0 MIT 1 0 11 Updated Mar 31, 2026
  • find-comment Public

    A GitHub action to find an issue or pull request comment. Secure drop-in replacement for peter-evans/find-comment.

    step-security/find-comment’s past year of commit activity
    TypeScript 0 MIT 1 0 11 Updated Mar 31, 2026
  • auto-approve-action Public

    👍 GitHub Action for automatically approving GitHub pull requests. Secure drop-in replacement for hmarr/auto-approve-action.

    step-security/auto-approve-action’s past year of commit activity
    TypeScript 0 MIT 1 0 10 Updated Mar 31, 2026
  • action-create-branch Public

    Github action to create a branch. Secure drop-in replacement for peterjgrainger/action-create-branch.

    step-security/action-create-branch’s past year of commit activity
    TypeScript 0 MIT 1 0 10 Updated Mar 31, 2026
  • action-junit-report Public

    Reports junit test results as GitHub Pull Request Check. Secure drop-in replacement for mikepenz/action-junit-report.

    step-security/action-junit-report’s past year of commit activity
    0 0 0 1 Updated Mar 31, 2026
  • create-issue-from-file Public

    A GitHub action to create an issue using content from a file. Secure drop-in replacement for peter-evans/create-issue-from-file.

    step-security/create-issue-from-file’s past year of commit activity
    TypeScript 0 MIT 1 0 10 Updated Mar 31, 2026
  • harden-runner Public

    Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-time.

    step-security/harden-runner’s past year of commit activity
    TypeScript 1,047 Apache-2.0 93 19 26 Updated Mar 31, 2026
  • setup-terraform Public

    Sets up Terraform CLI in your GitHub Actions workflow. Secure drop-in replacement for hashicorp/setup-terraform.

    step-security/setup-terraform’s past year of commit activity
    0 0 0 1 Updated Mar 31, 2026
  • setup-opentofu Public

    Secure drop-in replacement for opentofu/setup-opentofu.

    step-security/setup-opentofu’s past year of commit activity
    0 0 0 0 Updated Mar 31, 2026
  • swift-doc Public

    A documentation generator for Swift projects. Secure drop-in replacement for SwiftDocOrg/swift-doc.

    step-security/swift-doc’s past year of commit activity
    Swift 0 MIT 1 1 8 Updated Mar 31, 2026
View all repositories

Top languages

Loading…

Most used topics

Loading…