Skip to content
@step-security

StepSecurity

Secure your GitHub Actions with StepSecurity: Your Trusted CI/CD Security Partner
README.md

Step Security Logo

Close the CI/CD Security Gap

Pinned Loading

  1. harden-runner harden-runner Public

    Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in re…

    TypeScript 999 89

  2. dev-machine-guard dev-machine-guard Public

    Scan your dev machine for AI agents, MCP servers, IDE extensions, and suspicious packages — in seconds.

    Shell 40 5

  3. secure-repo secure-repo Public

    Orchestrate GitHub Actions Security

    Go 309 50

  4. github-actions-goat github-actions-goat Public

    GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment

    JavaScript 496 303

Repositories

Showing 10 of 268 repositories
  • action-surefire-report Public

    Reports surefire test results as GitHub Pull Request Check. Secure drop-in replacement for ScaCap/action-surefire-report.

    step-security/action-surefire-report’s past year of commit activity
    JavaScript 0 Apache-2.0 1 0 16 Updated Mar 16, 2026
  • lock-threads Public

    GitHub Action that locks closed issues, pull requests and discussions after a period of inactivity. Secure drop-in replacement for dessant/lock-threads.

    step-security/lock-threads’s past year of commit activity
    JavaScript 0 MIT 1 1 9 Updated Mar 16, 2026
  • github-actions-pr-is-linked-to-work-item Public

    Check for linked Azure DevOps work item. Secure drop-in replacement for danhellem/github-actions-pr-is-linked-to-work-item.

    step-security/github-actions-pr-is-linked-to-work-item’s past year of commit activity
    0 0 0 1 Updated Mar 16, 2026
  • conventional-changelog-action Public

    Github Action that generates a changelog with the Conventional Changelog CLI. Secure drop-in replacement for TriPSs/conventional-changelog-action.

    step-security/conventional-changelog-action’s past year of commit activity
    JavaScript 0 MIT 1 1 10 Updated Mar 16, 2026
  • agent Public

    Purpose-built security agent for hosted runners

    step-security/agent’s past year of commit activity
    Go 42 Apache-2.0 27 22 24 Updated Mar 16, 2026
  • secure-repo Public

    Orchestrate GitHub Actions Security

    step-security/secure-repo’s past year of commit activity
    Go 309 AGPL-3.0 50 71 491 Updated Mar 16, 2026
  • setup-swift Public

    GitHub Action to setup Swift environment. Secure drop-in replacement for SwiftyLab/setup-swift.

    step-security/setup-swift’s past year of commit activity
    TypeScript 0 MIT 1 1 12 Updated Mar 16, 2026
  • harden-runner Public

    Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-time.

    step-security/harden-runner’s past year of commit activity
    TypeScript 999 Apache-2.0 89 20 25 Updated Mar 16, 2026
  • setup-nasm Public

    GitHub Action to install NASM. Secure drop-in replacement for ilammy/setup-nasm.

    step-security/setup-nasm’s past year of commit activity
    0 0 0 1 Updated Mar 16, 2026
  • unity-builder Public

    Build Unity projects for different platforms. Secure drop-in replacement for game-ci/unity-builder.

    step-security/unity-builder’s past year of commit activity
    TypeScript 0 MIT 1 0 9 Updated Mar 16, 2026
View all repositories