Skip to content
@step-security

StepSecurity

Secure your GitHub Actions with StepSecurity: Your Trusted CI/CD Security Partner

Step Security Logo

Close the CI/CD Security Gap

Pinned Loading

  1. harden-runner harden-runner Public

    Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in re…

    TypeScript 1.1k 97

  2. dev-machine-guard dev-machine-guard Public

    Scan your dev machine for AI agents, MCP servers, IDE extensions, and suspicious packages - in seconds.

    Go 96 13

  3. secure-repo secure-repo Public

    Orchestrate GitHub Actions Security

    Go 317 51

  4. github-actions-goat github-actions-goat Public

    GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment

    JavaScript 501 311

Repositories

Showing 10 of 303 repositories
  • dev-machine-guard Public

    Scan your dev machine for AI agents, MCP servers, IDE extensions, and suspicious packages - in seconds.

    step-security/dev-machine-guard’s past year of commit activity
    Go 96 Apache-2.0 13 10 1 Updated Apr 20, 2026
  • add-pr-comment Public

    GitHub Action which adds a comment to a pull request's issue. Secure drop-in replacement for mshick/add-pr-comment.

    step-security/add-pr-comment’s past year of commit activity
    TypeScript 0 MIT 1 1 14 Updated Apr 20, 2026
  • action-golangci-lint Public

    Run golangci-lint with reviewdog. Secure drop-in replacement for reviewdog/action-golangci-lint.

    step-security/action-golangci-lint’s past year of commit activity
    TypeScript 0 MIT 1 1 11 Updated Apr 20, 2026
  • ssh-agent Public

    GitHub Action to setup `ssh-agent` with a private key. Secure drop-in replacement for webfactory/ssh-agent.

    step-security/ssh-agent’s past year of commit activity
    JavaScript 4 MIT 2 1 11 Updated Apr 20, 2026
  • workflow-dispatch Public

    A GitHub Action for triggering workflows, using the `workflow_dispatch` event. Secure drop-in replacement for benc-uk/workflow-dispatch.

    step-security/workflow-dispatch’s past year of commit activity
    TypeScript 2 MIT 3 1 12 Updated Apr 20, 2026
  • rust-cache Public

    A GitHub Action that implements smart caching for rust/cargo projects. Secure drop-in replacement for Swatinem/rust-cache.

    step-security/rust-cache’s past year of commit activity
    TypeScript 0 LGPL-3.0 1 1 20 Updated Apr 20, 2026
  • gha-setup-vsdevenv Public

    GitHub Action to setup the VS dev environment for the job. Secure drop-in replacement for compnerd/gha-setup-vsdevenv.

    step-security/gha-setup-vsdevenv’s past year of commit activity
    JavaScript 0 MIT 1 1 9 Updated Apr 20, 2026
  • aws-codebuild-run-build Public

    Run an AWS CodeBuild project as a step in a GitHub Actions workflow job. Secure drop-in replacement for aws-actions/aws-codebuild-run-build.

    step-security/aws-codebuild-run-build’s past year of commit activity
    JavaScript 0 Apache-2.0 1 1 10 Updated Apr 20, 2026
  • cypress-io-github-action Public

    GitHub Action for running Cypress end-to-end & component tests. Secure drop-in replacement for cypress-io/github-action.

    step-security/cypress-io-github-action’s past year of commit activity
    JavaScript 0 MIT 1 1 55 Updated Apr 20, 2026
  • cosign-installer Public

    Cosign Github Action. Secure drop-in replacement for sigstore/cosign-installer.

    step-security/cosign-installer’s past year of commit activity
    0 Apache-2.0 1 1 6 Updated Apr 20, 2026

Top languages

Loading…

Most used topics

Loading…