Version updated for https://github.com/sbom-tool/sbom-tools-action to version v1.3.0. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The sbom-tools GitHub Action integrates the sbom-tools utility into GitHub workflows to automate Software Bill of Materials (SBOM) management tasks, such as semantic diffing, validation, quality scoring, enrichment, vulnerability analysis, and license compliance checks. It simplifies SBOM handling by providing pre-built, verified binaries and supports advanced features like provenance verification via Sigstore/SLSA.

Version updated for https://github.com/skyhook-io/generate-service-matrix to version v1.5.0. This action is used across all versions by ? repositories. Action Type This is a Node action using Node version 20. Go to the GitHub Marketplace to find the latest changes. Action Summary The Generate Service Matrix Action is a GitHub Action that automates the creation of a deployment matrix for multi-service, multi-environment workflows. It reads configuration files from your repository or external deployment repositories to generate a strategy.

Version updated for https://github.com/suxrobGM/depvault to version cli/v1.3.13. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary DepVault is a full-stack platform that automates dependency scanning across multiple programming ecosystems to detect vulnerabilities, outdated packages, and license issues, while ensuring compliance using OSV.dev. It also provides an AES-256-GCM encrypted vault for securely managing environment variables, secret files, and CI/CD pipeline secrets, with features like version history, audit logs, and secret sharing.

Version updated for https://github.com/suzuki-shunsuke/pinact-action to version v2.0.0. This action is used across all versions by 174 repositories. Action Type This is a Node action using Node version 24. Go to the GitHub Marketplace to find the latest changes. Action Summary The pinact-action GitHub Action automates the process of pinning specific versions of GitHub Actions and reusable workflows to ensure consistency and security in your repository. It scans and updates workflow files, committing the changes automatically or validating them to prevent the use of unpinned actions, which reduces the risk of unintended behavior due to upstream changes.

Version updated for https://github.com/taoq-ai/ziran to version v0.18.3. This action is used across all versions by 1 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary ZIRAN is a GitHub Action designed to automate security testing for AI agents, focusing on identifying vulnerabilities in agents that utilize tools, memory, and multi-step reasoning. It solves the problem of testing complex tool combinations and multi-agent interactions, which traditional security tools often overlook, by leveraging capabilities such as graph-based tool chain discovery, side-effect detection, and autonomous pentesting.

Version updated for https://github.com/TheThoughtagen/ignition-lint to version v1.5.0. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The ignition-lint GitHub Action is a comprehensive linting toolkit designed for Ignition SCADA projects, enabling automated validation of project files to catch errors before runtime, enforce best practices, and ensure code quality. It detects issues such as Jython syntax errors, malformed bindings, deprecated API usage, and inefficient expressions, while also validating naming conventions and identifying unused properties.

Version updated for https://github.com/tyrchen/ruststack to version v0.4.3. This action is used across all versions by 1 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary RustStack is a lightweight, high-performance AWS service emulator written in Rust, providing local development and CI pipelines with emulation for S3, DynamoDB, SQS (including FIFO), and SSM Parameter Store. It serves as a faster, resource-efficient alternative to LocalStack, offering a unified gateway on a single port, compatibility with AWS SDKs/CLI, and features like SigV4 authentication, in-memory storage with disk spillover, and extensibility for adding new services.

Version updated for https://github.com/wgtechlabs/package-build-flow-action to version v2.1.1. This action is used across all versions by 6 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The Package Build Flow Action automates the versioning, building, and publishing of JavaScript packages to the NPM Registry and GitHub Packages. It simplifies workflows by providing intelligent flow detection based on GitHub events, supporting multiple release types (e.

Version updated for https://github.com/ds-ukassel/yaml-ls-check to version v2.0.1. This action is used across all versions by 2 repositories. Action Type This is a Node action using Node version 24. Go to the GitHub Marketplace to find the latest changes. Action Summary The yaml-ls-check GitHub Action provides automated validation of YAML files against specified schemas using the yaml-language-server tool. It simplifies the process of ensuring YAML file correctness by integrating schema validation into CI/CD pipelines or local workflows, reducing errors and streamlining configuration management.