{"payload":{"featured":[],"recommended":[],"recently_added":[],"search_results":{"results":[{"type":"repository_action","id":"468277","name":"TruffleHog OSS","free":null,"primary_category":"Continuous integration","secondary_category":"Security","is_verified_owner":true,"slug":"trufflehog-oss","owner_login":"trufflesecurity","resource_path":"/marketplace/actions/trufflehog-oss","highlights":{"description":"","name.ngram":""},"description":"Scan Github Actions with TruffleHog\n","stars":14052,"dependents_count":1324,"icon_svg":"\n \n\n","repository_action":{"repository_action":{"id":468277,"path":"action.yml","name":"TruffleHog OSS","description":"Scan Github Actions with TruffleHog","icon_name":"shield","color":"28a745","featured":false,"repository_id":77726177,"rank_multiplier":1.0,"slug":"trufflehog-oss","security_email":"dustin@trufflesec.com"}}},{"type":"repository_action","id":"31914","name":"Is Website vulnerable","free":null,"primary_category":"Security","secondary_category":"Testing","is_verified_owner":false,"slug":"is-website-vulnerable","owner_login":"lirantal","resource_path":"/marketplace/actions/is-website-vulnerable","highlights":{"description":"","name.ngram":""},"description":"Scans a url for public javascript library vulnerabilities\n","stars":1913,"dependents_count":72,"icon_svg":"\n \n \n \n\n","repository_action":{"repository_action":{"id":31914,"path":"action.yml","name":"Is Website vulnerable","description":"Scans a url for public javascript library vulnerabilities","icon_name":"alert-circle","color":"6f42c1","featured":false,"repository_id":212983914,"rank_multiplier":1.0,"slug":"is-website-vulnerable","security_email":null}}},{"type":"repository_action","id":"108163","name":"MegaLinter","free":null,"primary_category":"Code quality","secondary_category":"Code Scanning Ready","is_verified_owner":true,"slug":"megalinter","owner_login":"oxsecurity","resource_path":"/marketplace/actions/megalinter","highlights":{"description":"","name.ngram":""},"description":"Combine all available linters to automatically validate your sources without configuration\n","stars":1754,"dependents_count":1098,"icon_svg":"","repository_action":{"repository_action":{"id":108163,"path":"action.yml","name":"MegaLinter","description":"Combine all available linters to automatically validate your sources without configuration ","icon_name":"check","color":"ffffff","featured":false,"repository_id":304830226,"rank_multiplier":1.0,"slug":"megalinter","security_email":"nicolas.vuillamy@gmail.com"}}},{"type":"repository_action","id":"55690","name":"Stelligent cfn_nag","free":null,"primary_category":"Security","secondary_category":"Code quality","is_verified_owner":false,"slug":"stelligent-cfn_nag","owner_login":"stelligent","resource_path":"/marketplace/actions/stelligent-cfn_nag","highlights":{"description":"","name.ngram":""},"description":"Execute cfn_nag_scan against the code in the repository where the GitHub Action workflow is run\n","stars":1225,"dependents_count":322,"icon_svg":"\n \n \n\n","repository_action":{"repository_action":{"id":55690,"path":"action.yml","name":"Stelligent cfn_nag","description":"Execute cfn_nag_scan against the code in the repository where the GitHub Action workflow is run","icon_name":"search","color":"f66a0a","featured":false,"repository_id":51515624,"rank_multiplier":1.0,"slug":"stelligent-cfn_nag","security_email":"shaug@wumpus.org"}}},{"type":"repository_action","id":"265046","name":"Authenticate to Google Cloud","free":null,"primary_category":"Security","secondary_category":"Utilities","is_verified_owner":true,"slug":"authenticate-to-google-cloud","owner_login":"google-github-actions","resource_path":"/marketplace/actions/authenticate-to-google-cloud","highlights":{"description":"","name.ngram":""},"description":"Authenticate to Google Cloud from GitHub Actions via Workload Identity Federation or service account keys\n","stars":838,"dependents_count":25330,"icon_svg":"","repository_action":{"repository_action":{"id":265046,"path":"action.yml","name":"Authenticate to Google Cloud","description":"Authenticate to Google Cloud from GitHub Actions via Workload Identity\nFederation or service account keys","icon_name":"lock","color":"ffffff","featured":false,"repository_id":407242578,"rank_multiplier":1.0,"slug":"authenticate-to-google-cloud","security_email":"gcp-github-actions@google.com"}}},{"type":"repository_action","id":"912832","name":"Legitify Analyze","free":null,"primary_category":"Continuous integration","secondary_category":"Security","is_verified_owner":true,"slug":"legitify-analyze","owner_login":"Legit-Labs","resource_path":"/marketplace/actions/legitify-analyze","highlights":{"description":"","name.ngram":""},"description":"Legitify GitHub Action\n","stars":715,"dependents_count":null,"icon_svg":"\n\n\n\n\n\t\n\t\t\n\t\t\t\n\t\t\t\t\n\t\t\t\n\t\t\t\n\t\t\t\t\n\t\t\t\n\t\t\t\n\t\t\t\t\n\t\t\t\t\t\n\t\t\t\t\n\t\t\t\n\t\t\n\t\n\t\n\t\t\n\t\t\t\n\t\t\t\t\n\t\t\t\n\t\t\t\n\t\t\t\t\n\t\t\t\n\t\t\t\n\t\t\t\t\n\t\t\t\t\t\n\t\t\t\t\n\t\t\t\n\t\t\n\t\n\t\n\t\t\n\t\t\t\n\t\t\t\t\n\t\t\t\n\t\t\t\n\t\t\t\t\n\t\t\t\n\t\t\t\n\t\t\t\t\n\t\t\t\t\t\n\t\t\t\t\n\t\t\t\n\t\t\n\t\n\t\n\t\t\n\t\t\t\n\t\t\t\t\n\t\t\t\n\t\t\t\n\t\t\t\t\n\t\t\t\n\t\t\t\n\t\t\t\t\n\t\t\t\t\t\n\t\t\t\t\n\t\t\t\n\t\t\n\t\n\t\n\t\n\t\n\t\n\n\n","repository_action":{"repository_action":{"id":912832,"path":"action.yml","name":"Legitify Analyze","description":"Legitify GitHub Action","icon_name":"target","color":"ffffff","featured":false,"repository_id":513947555,"rank_multiplier":1.0,"slug":"legitify-analyze","security_email":"noam@legitsecurity.com"}}},{"type":"repository_action","id":"67619","name":"Aqua Security Trivy","free":null,"primary_category":"Continuous integration","secondary_category":"Security","is_verified_owner":true,"slug":"aqua-security-trivy","owner_login":"aquasecurity","resource_path":"/marketplace/actions/aqua-security-trivy","highlights":{"description":"","name.ngram":""},"description":"Scans container images for vulnerabilities with Trivy\n","stars":700,"dependents_count":15144,"icon_svg":"\r\n\r\n\r\n\r\n\t\r\n\t\r\n\t\r\n\t\r\n\t\r\n\r\n\r\n\t\r\n\t\t\r\n\t\t\r\n\t\t\t\r\n\t\t\t\t\r\n\t\t\t\r\n\t\t\t\r\n\t\t\t\t\r\n\t\t\t\r\n\t\t\r\n\t\t\r\n\t\t\t\r\n\t\t\r\n\t\r\n\t\r\n\t\t\r\n\t\t\r\n\t\t\t\r\n\t\t\t\t\r\n\t\t\t\r\n\t\t\t\r\n\t\t\t\t\r\n\t\t\t\r\n\t\t\r\n\t\t\r\n\t\t\t\r\n\t\t\r\n\t\r\n\t\r\n\t\t\r\n\t\t\r\n\t\t\t\r\n\t\t\t\t\r\n\t\t\t\r\n\t\t\t\r\n\t\t\t\t\r\n\t\t\t\r\n\t\t\r\n\t\t\r\n\t\t\t\r\n\t\t\r\n\t\r\n\t\r\n\t\t\r\n\t\t\r\n\t\r\n\r\n\r\n","repository_action":{"repository_action":{"id":67619,"path":"action.yaml","name":"Aqua Security Trivy","description":"Scans container images for vulnerabilities with Trivy","icon_name":null,"color":"ffffff","featured":false,"repository_id":268833180,"rank_multiplier":1.0,"slug":"aqua-security-trivy","security_email":"simar7"}}},{"type":"repository_action","id":"10089","name":"SonarCloud Scan","free":null,"primary_category":"Security","secondary_category":"Code quality","is_verified_owner":true,"slug":"sonarcloud-scan","owner_login":"SonarSource","resource_path":"/marketplace/actions/sonarcloud-scan","highlights":{"description":"","name.ngram":""},"description":"Scan your code with SonarCloud to detect bugs, vulnerabilities and code smells in 26+ programming languages.\n","stars":572,"dependents_count":41571,"icon_svg":"\n\n\n\n\n\n","repository_action":{"repository_action":{"id":10089,"path":"action.yml","name":"SonarCloud Scan","description":"Scan your code with SonarCloud to detect bugs, vulnerabilities and code smells in 26+ programming languages.\n","icon_name":"check","color":"ffffff","featured":false,"repository_id":188875157,"rank_multiplier":1.0,"slug":"sonarcloud-scan","security_email":"security@sonarsource.com"}}},{"type":"repository_action","id":"456903","name":"Dependency Review","free":null,"primary_category":"Security","secondary_category":"Dependency management","is_verified_owner":true,"slug":"dependency-review","owner_login":"actions","resource_path":"/marketplace/actions/dependency-review","highlights":{"description":"","name.ngram":""},"description":"Prevent the introduction of dependencies with known vulnerabilities\n","stars":545,"dependents_count":21144,"icon_svg":"\n\n\n","repository_action":{"repository_action":{"id":456903,"path":"action.yml","name":"Dependency Review","description":"Prevent the introduction of dependencies with known vulnerabilities","icon_name":null,"color":"0366d6","featured":false,"repository_id":476372928,"rank_multiplier":1.0,"slug":"dependency-review","security_email":"dependency-graph@github.com"}}},{"type":"repository_action","id":"192956","name":"mobsfscan","free":null,"primary_category":"Code review","secondary_category":"Code Scanning Ready","is_verified_owner":true,"slug":"mobsfscan","owner_login":"MobSF","resource_path":"/marketplace/actions/mobsfscan","highlights":{"description":"","name.ngram":""},"description":"mobsfscan is a SAST that can find insecure code patterns in your Android and iOS source code\n","stars":541,"dependents_count":865,"icon_svg":"\n \n \n\n","repository_action":{"repository_action":{"id":192956,"path":"action.yml","name":"mobsfscan","description":"mobsfscan is a SAST that can find insecure code patterns in your Android and iOS source code","icon_name":"code","color":"0366d6","featured":false,"repository_id":334505414,"rank_multiplier":1.0,"slug":"mobsfscan","security_email":"ajin25@gmail.com"}}},{"type":"repository_action","id":"298712","name":"Harden-Runner","free":null,"primary_category":"Security","secondary_category":"Monitoring","is_verified_owner":true,"slug":"harden-runner","owner_login":"step-security","resource_path":"/marketplace/actions/harden-runner","highlights":{"description":"","name.ngram":""},"description":"Harden-Runner provides runtime security for GitHub-hosted and self-hosted runners\n","stars":531,"dependents_count":3237,"icon_svg":"\n\n \n\n","repository_action":{"repository_action":{"id":298712,"path":"action.yml","name":"Harden-Runner","description":"Harden-Runner provides runtime security for GitHub-hosted and self-hosted runners","icon_name":"check-square","color":"ffffff","featured":false,"repository_id":422287306,"rank_multiplier":1.0,"slug":"harden-runner","security_email":"varunsh-coder"}}},{"type":"repository_action","id":"23217","name":"Snyk","free":null,"primary_category":"Security","secondary_category":"Open Source management","is_verified_owner":true,"slug":"snyk","owner_login":"snyk","resource_path":"/marketplace/actions/snyk","highlights":{"description":"","name.ngram":""},"description":"Check your applications for vulnerabilties using Snyk\n","stars":478,"dependents_count":123,"icon_svg":"","repository_action":{"repository_action":{"id":23217,"path":"action.yml","name":"Snyk","description":"Check your applications for vulnerabilties using Snyk","icon_name":"alert-triangle","color":"ffffff","featured":false,"repository_id":208654109,"rank_multiplier":1.0,"slug":"snyk","security_email":"bastian.doetsch@snyk.io"}}},{"type":"repository_action","id":"216849","name":"flawfinder_scan","free":null,"primary_category":"Security","secondary_category":"Code Scanning Ready","is_verified_owner":false,"slug":"flawfinder_scan","owner_login":"david-a-wheeler","resource_path":"/marketplace/actions/flawfinder_scan","highlights":{"description":"","name.ngram":""},"description":"Execute Flawfinder to scan source code for vulnerabilities\n","stars":455,"dependents_count":882,"icon_svg":null,"repository_action":{"repository_action":{"id":216849,"path":"action.yml","name":"flawfinder_scan","description":"Execute Flawfinder to scan source code for vulnerabilities","icon_name":null,"color":"ffd33d","featured":false,"repository_id":157250185,"rank_multiplier":1.0,"slug":"flawfinder_scan","security_email":null}}},{"type":"repository_action","id":"15974","name":"HashiCorp Vault","free":null,"primary_category":"Continuous integration","secondary_category":"Security","is_verified_owner":true,"slug":"hashicorp-vault","owner_login":"hashicorp","resource_path":"/marketplace/actions/hashicorp-vault","highlights":{"description":"","name.ngram":""},"description":"A Github Action that allows you to consume HashiCorp Vault™ secrets as secure environment variables\n","stars":419,"dependents_count":2777,"icon_svg":"","repository_action":{"repository_action":{"id":15974,"path":"action.yml","name":"HashiCorp Vault","description":"A Github Action that allows you to consume HashiCorp Vault™ secrets as secure environment variables","icon_name":"unlock","color":"ffffff","featured":false,"repository_id":209846629,"rank_multiplier":1.0,"slug":"hashicorp-vault","security_email":"security@hashicorp.com"}}},{"type":"repository_action","id":"530591","name":"Authz0 scanner","free":null,"primary_category":"Security","secondary_category":"Testing","is_verified_owner":false,"slug":"authz0-scanner","owner_login":"hahwul","resource_path":"/marketplace/actions/authz0-scanner","highlights":{"description":"","name.ngram":""},"description":"Unauthorized access can be identified based on URLs and Roles Credentials\n","stars":343,"dependents_count":null,"icon_svg":"\n \n\n","repository_action":{"repository_action":{"id":530591,"path":"action.yml","name":"Authz0 scanner","description":"Unauthorized access can be identified based on URLs and Roles & Credentials","icon_name":"shield","color":"0366d6","featured":false,"repository_id":444805843,"rank_multiplier":1.0,"slug":"authz0-scanner","security_email":null}}},{"type":"repository_action","id":"31709","name":"PyCharm Python Security Scanner","free":null,"primary_category":"Security","secondary_category":"Code quality","is_verified_owner":false,"slug":"pycharm-python-security-scanner","owner_login":"tonybaloney","resource_path":"/marketplace/actions/pycharm-python-security-scanner","highlights":{"description":"","name.ngram":""},"description":"Scan your Python Code for security issues\n","stars":327,"dependents_count":130,"icon_svg":"\n \n \n\n","repository_action":{"repository_action":{"id":31709,"path":"action.yml","name":"PyCharm Python Security Scanner","description":"Scan your Python Code for security issues","icon_name":"lock","color":"0366d6","featured":false,"repository_id":231985043,"rank_multiplier":1.0,"slug":"pycharm-python-security-scanner","security_email":null}}},{"type":"repository_action","id":"70786","name":"GitGuardian Shield Action","free":null,"primary_category":"Security","secondary_category":"Code review","is_verified_owner":true,"slug":"gitguardian-shield-action","owner_login":"GitGuardian","resource_path":"/marketplace/actions/gitguardian-shield-action","highlights":{"description":"","name.ngram":""},"description":"Scan commits for secrets and other issues\n","stars":322,"dependents_count":645,"icon_svg":"\n \n\n","repository_action":{"repository_action":{"id":70786,"path":"action.yml","name":"GitGuardian Shield Action","description":"Scan commits for secrets and other issues","icon_name":"shield","color":"0366d6","featured":false,"repository_id":272400318,"rank_multiplier":1.0,"slug":"gitguardian-shield-action","security_email":"security@gitguardian.com"}}},{"type":"repository_action","id":"43237","name":"Secrets Sync Action","free":null,"primary_category":"Security","secondary_category":"Open Source management","is_verified_owner":false,"slug":"secrets-sync-action","owner_login":"jpoehnelt","resource_path":"/marketplace/actions/secrets-sync-action","highlights":{"description":"","name.ngram":""},"description":"Copies secrets from the action s environment to many other repos\n","stars":309,"dependents_count":26,"icon_svg":"\n \n \n\n","repository_action":{"repository_action":{"id":43237,"path":"action.yml","name":"Secrets Sync Action","description":"Copies secrets from the action's environment to many other repos","icon_name":"copy","color":"ffffff","featured":false,"repository_id":249534734,"rank_multiplier":1.0,"slug":"secrets-sync-action","security_email":"jpoehnelt@google.com"}}},{"type":"repository_action","id":"47537","name":"ZAP Baseline Scan","free":null,"primary_category":"Security","secondary_category":"Testing","is_verified_owner":true,"slug":"zap-baseline-scan","owner_login":"zaproxy","resource_path":"/marketplace/actions/zap-baseline-scan","highlights":{"description":"","name.ngram":""},"description":"Scans the web application with the ZAP Baseline Scan\n","stars":293,"dependents_count":4497,"icon_svg":"\n \n\n","repository_action":{"repository_action":{"id":47537,"path":"action.yml","name":"ZAP Baseline Scan","description":"Scans the web application with the ZAP Baseline Scan","icon_name":"zap","color":"0366d6","featured":false,"repository_id":245374268,"rank_multiplier":1.0,"slug":"zap-baseline-scan","security_email":"zaproxy-admin@googlegroups.com"}}},{"type":"repository_action","id":"17617","name":"Merge me!","free":null,"primary_category":"Security","secondary_category":"Dependency management","is_verified_owner":false,"slug":"merge-me","owner_login":"ridedott","resource_path":"/marketplace/actions/merge-me","highlights":{"description":"","name.ngram":""},"description":"Automatically merge Pull Requests from the indicated github account\n","stars":293,"dependents_count":2976,"icon_svg":"\n \n \n \n\n","repository_action":{"repository_action":{"id":17617,"path":"action.yml","name":"Merge me!","description":"Automatically merge Pull Requests from the indicated github account","icon_name":"git-merge","color":"24292e","featured":false,"repository_id":212117222,"rank_multiplier":1.0,"slug":"merge-me","security_email":"cloud-administrators@ridedott.com"}}}],"total":1242,"total_pages":63},"categories":{"apps":[{"name":"API management","slug":"api-management","description_html":"

Structure your API infrastructure to enable various internet gateways to interact with your service.

\n"},{"name":"Backup Utilities","slug":"backup-utilities","description_html":"

Utilities providing periodic backups of your GitHub data

\n"},{"name":"Chat","slug":"chat","description_html":"

Bring GitHub into your conversations.

\n"},{"name":"Code quality","slug":"code-quality","description_html":"

Automate your code review with style, quality, security, and test‑coverage checks when you need them.

\n"},{"name":"Code review","slug":"code-review","description_html":"

Ensure your code meets quality standards and ship with confidence.

\n"},{"name":"Container CI","slug":"container-ci","description_html":"

Continuous integration for container applications.

\n"},{"name":"Continuous integration","slug":"continuous-integration","description_html":"

Automatically build and test your code as you push it to GitHub, preventing bugs from being deployed to production.

\n"},{"name":"Dependency management","slug":"dependency-management","description_html":"

Secure and manage your third-party dependencies.

\n"},{"name":"Deployment","slug":"deployment","description_html":"

Streamline your code deployment so you can focus on your product.

\n"},{"name":"Deployment Protection Rules","slug":"deployment-protection-rules","description_html":"

Enables custom protection rules to gate deployments with third-party services

\n"},{"name":"Game CI","slug":"game-ci","description_html":"

Tools for building a CI pipeline for game development

\n"},{"name":"IDEs","slug":"ides","description_html":"

Find the right interface to build, debug, and deploy your source code.

\n"},{"name":"Learning","slug":"learning","description_html":"

Get the skills you need to level up.

\n"},{"name":"Localization","slug":"localization","description_html":"

Extend your software's reach. Localize and translate continuously from GitHub.

\n"},{"name":"Mobile","slug":"mobile","description_html":"

Improve your workflow for the small screen.

\n"},{"name":"Mobile CI","slug":"mobile-ci","description_html":"

Continuous integration for Mobile applications

\n"},{"name":"Monitoring","slug":"monitoring","description_html":"

Monitor the impact of your code changes. Measure performance, track errors, and analyze your application.

\n"},{"name":"Project management","slug":"project-management","description_html":"

Organize, manage, and track your project with tools that build on top of issues and pull requests.

\n"},{"name":"Publishing","slug":"publishing","description_html":"

Get your site ready for production so you can get the word out.

\n"},{"name":"Recently added","slug":"recently-added","description_html":"

The latest tools that help you and your team build software better, together.

\n"},{"name":"Security","slug":"security","description_html":"

Find, fix, and prevent security vulnerabilities before they can be exploited.

\n"},{"name":"Support","slug":"support","description_html":"

Get your team and customers the help they need.

\n"},{"name":"Testing","slug":"testing","description_html":"

Eliminate bugs and ship with more confidence by adding these tools to your workflow.

\n"},{"name":"Utilities","slug":"utilities","description_html":"

Auxiliary tools to enhance your experience on GitHub

\n"}],"actions":[{"name":"API management","slug":"api-management","description_html":"

Structure your API infrastructure to enable various internet gateways to interact with your service.

\n"},{"name":"Backup Utilities","slug":"backup-utilities","description_html":"

Utilities providing periodic backups of your GitHub data

\n"},{"name":"Chat","slug":"chat","description_html":"

Bring GitHub into your conversations.

\n"},{"name":"Code quality","slug":"code-quality","description_html":"

Automate your code review with style, quality, security, and test‑coverage checks when you need them.

\n"},{"name":"Code review","slug":"code-review","description_html":"

Ensure your code meets quality standards and ship with confidence.

\n"},{"name":"Container CI","slug":"container-ci","description_html":"

Continuous integration for container applications.

\n"},{"name":"Continuous integration","slug":"continuous-integration","description_html":"

Automatically build and test your code as you push it to GitHub, preventing bugs from being deployed to production.

\n"},{"name":"Dependency management","slug":"dependency-management","description_html":"

Secure and manage your third-party dependencies.

\n"},{"name":"Deployment","slug":"deployment","description_html":"

Streamline your code deployment so you can focus on your product.

\n"},{"name":"Deployment Protection Rules","slug":"deployment-protection-rules","description_html":"

Enables custom protection rules to gate deployments with third-party services

\n"},{"name":"Game CI","slug":"game-ci","description_html":"

Tools for building a CI pipeline for game development

\n"},{"name":"GitHub Sponsors","slug":"github-sponsors","description_html":"

Tools to manage your GitHub Sponsors community

\n"},{"name":"IDEs","slug":"ides","description_html":"

Find the right interface to build, debug, and deploy your source code.

\n"},{"name":"Learning","slug":"learning","description_html":"

Get the skills you need to level up.

\n"},{"name":"Localization","slug":"localization","description_html":"

Extend your software's reach. Localize and translate continuously from GitHub.

\n"},{"name":"Mobile","slug":"mobile","description_html":"

Improve your workflow for the small screen.

\n"},{"name":"Mobile CI","slug":"mobile-ci","description_html":"

Continuous integration for Mobile applications

\n"},{"name":"Monitoring","slug":"monitoring","description_html":"

Monitor the impact of your code changes. Measure performance, track errors, and analyze your application.

\n"},{"name":"Project management","slug":"project-management","description_html":"

Organize, manage, and track your project with tools that build on top of issues and pull requests.

\n"},{"name":"Publishing","slug":"publishing","description_html":"

Get your site ready for production so you can get the word out.

\n"},{"name":"Security","slug":"security","description_html":"

Find, fix, and prevent security vulnerabilities before they can be exploited.

\n"},{"name":"Support","slug":"support","description_html":"

Get your team and customers the help they need.

\n"},{"name":"Testing","slug":"testing","description_html":"

Eliminate bugs and ship with more confidence by adding these tools to your workflow.

\n"},{"name":"Utilities","slug":"utilities","description_html":"

Auxiliary tools to enhance your experience on GitHub

\n"}]}},"title":"Marketplace"}