Version updated for https://github.com/Vigilant-LLC/runner-guard to version v3.0.2. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Runner Guard is a CI/CD security scanner for GitHub Actions workflows that detects vulnerabilities such as pipeline injection, unpinned dependencies, compromised packages, and supply chain threats. It automates the identification, auditing, and remediation of issues across workflows and dependencies, offering capabilities like multi-repo parallel scanning, upstream pipeline audits, and continuous monitoring. This tool enhances software supply chain security by providing actionable insights, automatic fixes, and integration with alerting systems like Slack and PagerDuty.

Version updated for https://github.com/Webba-Creative-Technologies/vice to version v3.1.0. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The VICE GitHub Action is a security auditing tool that automates vulnerability detection for web applications. It performs black-box (remote scans) and white-box (local audits) testing, identifying issues such as SQL injection, XSS, and misconfigurations. By integrating into CI workflows, it comments on pull requests with security findings, updates a live security badge, and enforces score thresholds to prevent vulnerable code from merging.

Version updated for https://github.com/Zxilly/setup-cangjie to version v2.2.0. This action is used across all versions by 13 repositories. Action Type This is a Node action using Node version 24. Go to the GitHub Marketplace to find the latest changes. Action Summary The Setup-Cangjie GitHub Action automates the installation of the Cangjie build environment in CI workflows, supporting various version channels such as LTS, STS, and Nightly. It simplifies setting up specific versions of Cangjie, including automatic version detection and optional configuration of repository credentials, enabling seamless integration and builds for projects that depend on the Cangjie ecosystem.

Version updated for https://github.com/duriantaco/skylos to version v4.3.0. This action is used across all versions by 14 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Skylos is an open-source static analysis tool and GitHub Action designed to detect dead code, hardcoded secrets, exploitable flows, and AI-generated security regressions in Python, TypeScript, and Go. It automates code quality checks, security audits, and CI/CD pull request gating by providing actionable findings, GitHub annotations, and review comments. Skylos is particularly effective for teams using modern frameworks, AI-assisted coding tools, or building AI-driven applications that require robust security and code quality enforcement.

Version updated for https://github.com/ElJijuna/typedoc-action to version v1.0.0. This action is used across all versions by 1 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The TypeDoc Report Action automates the generation of TypeScript documentation in JSON format using TypeDoc and publishes it to a designated monitoring repository (MonitoringTool-DB). It solves the problem of manually creating and updating TypeScript documentation by streamlining the process and ensuring consistent publishing to a central location. Key capabilities include automated documentation generation, artifact management, and seamless integration with a monitoring repository for centralized documentation tracking.

Version updated for https://github.com/fallow-rs/fallow to version v2.19.2. This action is used across all versions by 3 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary This GitHub Action is a Rust-based codebase analysis tool for TypeScript and JavaScript projects, designed to identify unused code, duplication, complexity issues, and architectural problems with minimal configuration and high performance. It automates tasks such as detecting dead code, circular dependencies, and duplicate code blocks, while providing actionable insights to optimize and maintain clean, efficient codebases. Key features include sub-second analysis, framework plugins, and the ability to group findings by ownership, directory, or package for streamlined team collaboration.

Version updated for https://github.com/Fgerthoffert/actions-issues-notifications to version v1.4.2. This action is used across all versions by ? repositories. Action Type This is a Node action using Node version 24. Go to the GitHub Marketplace to find the latest changes. Action Summary The “GitHub Issues Notifications Action” is designed to collect notifications about GitHub Issues and prepare messages that can be forwarded to messaging platforms like Slack, addressing the limitation that GitHub’s Scheduled Reminders only support Pull Requests. It automates the process of retrieving, summarizing, and delivering updates on Issue-related activities, helping teams stay informed without manually checking GitHub notifications. Key capabilities include configurable notification frequency, support for batch or real-time updates, and resource-efficient operation.

Version updated for https://github.com/gha3mi/setup-fortran-conda to version v0.15.1. This action is used across all versions by 63 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The “Setup Fortran with Conda” GitHub Action automates the setup of a Fortran development environment in CI/CD workflows using Conda. It installs a specified Fortran compiler (along with compatible C/C++ compilers) and development tools like fpm, cmake, and ninja, while allowing customization through additional package installations. This action simplifies and standardizes the configuration of cross-platform Fortran environments, enhancing productivity and consistency in software development pipelines.

Version updated for https://github.com/goweft/tenter-rs to version v2.0.4. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The tenter-rs GitHub Action is a pre-publish artifact integrity scanner that automates the detection of sensitive files, embedded secrets, debug symbols, oversized files, and other issues in packages before release. Written in Rust, it provides a memory-safe, static binary solution with no runtime dependencies, eliminating the need for Python or additional setup steps. This action streamlines CI workflows by offering fast, platform-compatible scanning with support for JSON and SARIF output formats for enhanced integration with security and code quality tools.

Version updated for https://github.com/harm-matthias-harms/slackbot-release to version v1.0.2. This action is used across all versions by ? repositories. Action Type This is a Node action using Node version 24. Go to the GitHub Marketplace to find the latest changes. Action Summary The “Slackbot Release” GitHub Action automates the process of sending release notes to a designated Slack channel whenever a new release is created on a repository. It simplifies communication by seamlessly notifying team members about updates, ensuring they stay informed about project changes. This action is particularly useful for streamlining release workflows and enhancing team collaboration.