Version updated for https://github.com/fluidattacks/sast-action to version 1.2.0. This action is used across all versions by 2 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The Fluid Attacks SAST GitHub Action is a free, open-source tool for static application security testing (SAST) that automates code analysis in repositories without requiring accounts or API keys. It detects vulnerabilities by performing either full scans or differential scans (analyzing only changed files) based on the context of pushes, pull requests, or schedules, optimizing security checks while maintaining CI efficiency. Results are generated in SARIF format, which can be reviewed locally or integrated with GitHub’s Security tab for enhanced visibility and tracking of code scanning alerts.

Version updated for https://github.com/foundry-rs/foundry-toolchain to version v1.8.0. This action is used across all versions by 0 repositories. Action Type This is a Node action using Node version 24. Go to the GitHub Marketplace to find the latest changes. Action Summary The foundry-toolchain GitHub Action automates the installation and caching of Foundry, a development toolkit for building Ethereum applications. It simplifies setting up Foundry in CI/CD workflows by managing version installations, enabling caching for faster builds, and reducing RPC and Etherscan query limits. This action is ideal for automating tasks like formatting, building, and testing Ethereum smart contracts with Foundry.

Version updated for https://github.com/immanuwell/dockerfile-roast to version 1.2.0. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Droast is a Dockerfile linter designed to identify bad practices and provide actionable feedback with a humorous tone. It automates the detection of potential issues in Dockerfiles, streamlining code reviews and ensuring adherence to best practices, particularly in CI/CD pipelines. Key features include severity-based filtering, customizable rule exclusions, multiple output formats, and integration with GitHub Actions for inline annotations on pull request diffs.

Version updated for https://github.com/jbunds/coverage to version v1.0.16. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary This GitHub Action generates a navigable HTML-based visualization of Go test coverage from a coverage profile file. It automates the process of converting go tool cover output into a user-friendly interface, complete with color-coded coverage details, a browsable directory tree, and light/dark theme toggling. This tool simplifies the analysis of test coverage by providing clear insights into which lines of code are covered or missed.

Version updated for https://github.com/klaus82/copilot-security-action to version 1.0.0. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The Terraform Security Analysis Action is a GitHub Action designed to automatically analyze changes to Terraform files in pull requests for security misconfigurations using GitHub Copilot. It generates a structured, prioritized security report covering critical areas such as IAM, network exposure, encryption, and secret management, and posts the findings as a pull request comment. This action helps teams identify and address potential security vulnerabilities in their Terraform infrastructure code early in the development lifecycle.

Version updated for https://github.com/mavoryl/mobile-repo-doctor-action to version v1. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The Mobile Repo Doctor GitHub Action performs automated health checks for Android, iOS, Flutter, and Kotlin Multiplatform (KMP) repositories directly in a continuous integration (CI) pipeline. It identifies issues related to project size, speed, stability, and code hygiene, providing health scores, grades, and detailed reports in various formats. This action helps developers maintain repository quality by automating diagnostics and enforcing customizable failure policies.

Version updated for https://github.com/membrowse/membrowse-action to version v1.2.3. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary MemBrowse is a tool designed to analyze the binary size and memory footprint of embedded firmware by extracting detailed memory information from ELF files and linker scripts. It automates tasks such as source file mapping for symbols, memory region and layout extraction, and generates memory utilization reports, which can be integrated with CI/CD workflows via GitHub Actions. By providing cloud integration, it enables historical tracking, diffs, and budget monitoring, helping developers optimize firmware memory usage and ensure resource constraints are met.

Version updated for https://github.com/Mipiti/mipiti-verify to version v0.30.2. This action is used across all versions by ? repositories. Action Type This is a Docker action. Go to the GitHub Marketplace to find the latest changes. Action Summary The mipiti-verify GitHub Action automates the verification of threat model assertions for security controls using Mipiti. It ensures compliance and prevents security drift by validating assertions locally, in CI pipelines, or through batch processing, with optional integration of AI-based analysis. Key features include model-wide or targeted verification, assertion status reporting, offline verification, and cryptographic auditing of signed reports.

Version updated for https://github.com/mustafasercansak/swagger-sentinel to version v1.0.13. This action is used across all versions by ? repositories. Action Type This is a Docker action. Go to the GitHub Marketplace to find the latest changes. Action Summary Swagger Sentinel is a GitHub Action designed to validate OpenAPI 3.x specifications using a comprehensive 130-point checklist, ensuring compliance with best practices and standards. It automates tasks like syntax checking, rule validation, and error detection, and can generate TypeScript test suites with realistic mock data for API testing. This tool streamlines the process of maintaining high-quality API specifications and supports continuous integration by integrating validation into workflows.

Version updated for https://github.com/OctoTS/OctoTS-action to version v1.1.1. This action is used across all versions by ? repositories. Action Type This is a Docker action. Go to the GitHub Marketplace to find the latest changes. Action Summary The OctoTS Metrics Processor GitHub Action automates the collection and storage of code metrics as a time series in a dedicated branch. It processes input data in various tabular formats, appends a timestamp, and saves the results in a persistent dataset, supporting multiple storage formats like CSV, JSONL, and SQL. This action is ideal for tracking and maintaining historical code metrics over time in a centralized and versioned manner.