Skip to content
@step-security

StepSecurity

Secure your GitHub Actions with StepSecurity: Your Trusted CI/CD Security Partner
README.md

Step Security Logo

Close the CI/CD Security Gap

Pinned Loading

  1. harden-runner harden-runner Public

    Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in re…

    TypeScript 677 56

  2. secure-repo secure-repo Public

    Orchestrate GitHub Actions Security

    Go 274 41

  3. wait-for-secrets wait-for-secrets Public

    Publish from GitHub Actions using multi-factor authentication

    TypeScript 283 18

  4. github-actions-goat github-actions-goat Public

    GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment

    JavaScript 456 267

Repositories

Showing 10 of 66 repositories
  • skip-duplicate-actions Public

    Save time and cost when using GitHub Actions

    step-security/skip-duplicate-actions’s past year of commit activity
    TypeScript 2 MIT 1 0 11 Updated Mar 3, 2025
  • harden-runner Public

    Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-time.

    step-security/harden-runner’s past year of commit activity
    TypeScript 677 Apache-2.0 56 20 11 Updated Mar 2, 2025
  • github-actions-goat Public

    GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment

    step-security/github-actions-goat’s past year of commit activity
    JavaScript 456 Apache-2.0 267 11 1 Updated Mar 2, 2025
  • increment Public

    Action to increment a repository variable.

    step-security/increment’s past year of commit activity
    JavaScript 0 MIT 1 1 9 Updated Mar 1, 2025
  • jest-coverage-action-demo Public
    step-security/jest-coverage-action-demo’s past year of commit activity
    JavaScript 0 MIT 0 1 69 Updated Mar 1, 2025
  • wait-for-secrets Public

    Publish from GitHub Actions using multi-factor authentication

    step-security/wait-for-secrets’s past year of commit activity
    TypeScript 283 Apache-2.0 18 3 15 Updated Feb 28, 2025
  • action-setup Public

    Install pnpm package manager

    step-security/action-setup’s past year of commit activity
    TypeScript 0 MIT 1 0 11 Updated Feb 28, 2025
  • ghaction-import-gpg Public

    GitHub Action to import a GPG key

    step-security/ghaction-import-gpg’s past year of commit activity
    TypeScript 1 MIT 1 3 8 Updated Feb 28, 2025
  • gh-docker-logs Public

    GitHub Action to collect logs from all docker containers.

    step-security/gh-docker-logs’s past year of commit activity
    TypeScript 1 MIT 1 0 11 Updated Feb 28, 2025
  • secrets-sync-action Public

    A Github Action that can sync secrets from one repository to many others.

    step-security/secrets-sync-action’s past year of commit activity
    TypeScript 0 Apache-2.0 1 2 11 Updated Feb 28, 2025
View all repositories

Top languages

Loading…

Most used topics

Loading…