Version updated for https://github.com/Halfblood-Prince/trustcheck-action to version v1.0.0. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The TrustCheck GitHub Action automates the evaluation of a PyPI package’s trustworthiness during CI workflows by running the trustcheck inspect command. It analyzes package metadata, provenance, publisher identity, repository alignment, and vulnerability records to provide a comprehensive trust posture report. This action helps teams identify potential risks or trust signals early in the software supply chain, ensuring informed decisions before package installation or promotion.

Version updated for https://github.com/halostatue/starlist to version v2.1.0. This action is used across all versions by 1 repositories. Action Type This is a Node action using Node version 24. Go to the GitHub Marketplace to find the latest changes. Action Summary The halostatue/starlist GitHub Action generates a categorized Markdown list of repositories that a user has starred on GitHub, organized by criteria such as language, topic, or license. It automates the process of fetching starred repositories, formatting the data, and committing the output back to a repository, providing an efficient way to manage and document starred repositories. Key features include output partitioning for large datasets, customizable templates, and support for both GitHub Action and CLI usage.

Version updated for https://github.com/hashgraph-online/ai-plugin-scanner-action to version v1.2.15. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The HOL AI Plugin Scanner GitHub Action is designed to analyze AI plugin repositories across ecosystems like Codex, Claude, Gemini, and OpenCode for security, runtime readiness, publishability, and trust signals. It automates the generation of structured reports, including SARIF and submission metadata, while offering configurable modes for scanning, linting, verification, and submission. This action simplifies the validation and preparation of AI plugins for marketplaces, ensuring compliance and quality assurance.

Version updated for https://github.com/hashgraph-online/hol-codex-plugin-scanner-action to version v1.2.15. This action is used across all versions by 3 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The HOL AI Plugin Scanner GitHub Action is designed to scan AI plugin repositories across various ecosystems (Codex, Claude, Gemini, OpenCode) to assess security, publishability, runtime readiness, and trust signals. It automates the generation of structured reports, SARIF files, policy compliance results, and submission metadata, streamlining the process of validating and preparing plugins for deployment. Key capabilities include customizable scanning modes (e.g., linting, verification, and submission), offline and live network probing, as well as seamless integration with GitHub code scanning workflows.

Version updated for https://github.com/iSerter/php-obfuscator to version v0.1.4. This action is used across all versions by ? repositories. Action Type This is a Docker action. Go to the GitHub Marketplace to find the latest changes. Action Summary The iserter/php-obfuscator GitHub Action automates the obfuscation of PHP code to protect intellectual property, supporting modern PHP versions from 7.4 to 8.5. It enhances deobfuscation resistance through techniques like control flow flattening, dead code injection, and per-file XOR string encoding, making it harder for reverse engineering. The action is designed for CI/CD pipelines, offering incremental processing, consistent symbol scrambling across projects, and a clean, test-covered architecture with customizable YAML-based configurations.

Version updated for https://github.com/jedi-knights/go-semantic-release to version v0.9.4. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary This GitHub Action, go-semantic-release, automates semantic versioning and release workflows by analyzing conventional commit messages to determine the next version, generating changelogs, creating GitHub tags, and publishing releases. It is tailored for production-grade use, offers robust support for monorepos with independent project versioning, and provides features such as branch policies, dry-run mode, dependency propagation, and a pluggable architecture for extensibility. This tool simplifies and streamlines the release process, ensuring consistency and reducing manual effort.

Version updated for https://github.com/jedi-knights/neospec to version v0.2.0. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The neospec GitHub Action is a self-contained test runner and coverage tool designed for Neovim plugins and distributions. It automates plugin testing by managing a dedicated Neovim binary, isolating test environments, instrumenting Lua code coverage, and generating detailed reports in CI-compatible formats. By eliminating the need for external testing frameworks or fragile scripts, it simplifies testing in both local and ephemeral CI environments.

Version updated for https://github.com/malken21/setup-aarch64-toolchain to version v1.2.5. This action is used across all versions by 1 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The setup-aarch64-toolchain GitHub Action enables the use of AArch64 (ARM64) development tools, such as assemblers and linkers, directly on AArch64 GitHub Actions runners (ubuntu-24.04-arm). It simplifies and automates the setup process for targeting AArch64 Linux environments, streamlining tasks like assembly, linking, and binary manipulation on ARM-based architectures.

Version updated for https://github.com/membrowse/membrowse-action to version v1.2.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary MemBrowse is a GitHub Action designed to analyze the binary size and memory usage of embedded firmware by extracting detailed memory information from ELF files and linker scripts. It automates tasks such as symbol-level analysis, source file mapping, memory region extraction, and provides CI/CD integration with PR comments highlighting memory utilization changes and budget alerts. Additionally, it supports cloud-based historical tracking, diffs, and monitoring through integration with the MemBrowse platform.

Version updated for https://github.com/Mipiti/mipiti-verify to version v0.26.1. This action is used across all versions by ? repositories. Action Type This is a Docker action. Go to the GitHub Marketplace to find the latest changes. Action Summary The mipiti-verify GitHub Action automates the verification of security threat model assertions for projects using the Mipiti platform. It ensures that security controls remain consistent and aligned by checking assertions locally or against remote models, using both static analysis and AI-powered verification. Key features include batch verification, drift detection, audit trail validation, and support for tiered verification (local and AI-assisted), making it an effective tool for maintaining robust security practices in CI pipelines.