March 6, 2026
Setup Node.js with cnpm mirror
Version updated for https://github.com/stormslowly/setup-node to version v0.0.1.
This action is used across all versions by ? repositories. Action Type This is a Node action using Node version 24.
Go to the GitHub Marketplace to find the latest changes.
Action Summary The setup-node GitHub Action simplifies Node.js environment setup in workflows by downloading, caching, and adding the specified Node.js version to the PATH. It automates dependency caching for npm, yarn, and pnpm, improves error handling with problem matchers, and configures authentication for package registries like npm and GitHub Package Registry (GPR).
March 6, 2026
Workflow Var Action - Replace env vars in file
Version updated for https://github.com/sushidev-team/workflow-var-action to version v1.0.0.
This action is used across all versions by ? repositories. Action Type This is a Docker action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary The Replace Env Vars Action is a GitHub Action designed to automate the replacement of placeholder tokens (e.g., __TOKEN__) in files with corresponding environment variable values. It ensures safe handling of special characters in values (e.
March 6, 2026
grype_me
Version updated for https://github.com/TomTonic/grype_me to version v1.3.3-release.
This action is used across all versions by 0 repositories. Action Type This is a Docker action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary The grype_me GitHub Action automates vulnerability scanning for software supply chains using Anchore Grype, providing detailed reports and visual badges. It enables fast scans of source code dependencies, container images, or SBOMs, and dynamically generates shields.
March 6, 2026
RustStack S3
Version updated for https://github.com/tyrchen/ruststack to version v0.3.0.
This action is used across all versions by 1 repositories. Action Type This is a Composite action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary RustStack is a lightweight, high-performance emulator for AWS services (S3, DynamoDB, SQS, and SSM Parameter Store), designed for local development and CI pipelines. It provides a faster and more resource-efficient alternative to LocalStack, offering compatibility with AWS SDKs/CLI and features like selective service activation, SigV4 authentication, and in-memory storage with disk spillover.
March 6, 2026
SonarQube Community to GitHub Security Tab (SARIF)
Version updated for https://github.com/vmvarela/sonarqube-ce-sarif-action to version v1.0.1.
This action is used across all versions by ? repositories. Action Type This is a Node action using Node version 20.
Go to the GitHub Marketplace to find the latest changes.
Action Summary This GitHub Action enables seamless integration of SonarQube Community Edition (CE) analysis results into GitHub by converting SonarQube issues into the SARIF format, which is compatible with GitHub’s security and code scanning features.
March 6, 2026
WAFtester — WAF Security Testing
Version updated for https://github.com/waftester/waftester-action to version v1.0.53.
This action is used across all versions by ? repositories. Action Type This is a Composite action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary The WAFtester GitHub Action automates the testing, fingerprinting, and bypass analysis of Web Application Firewalls (WAFs) directly within GitHub workflows. It streamlines security assessments by running scans, generating detailed SARIF reports, and uploading findings to GitHub’s Code Scanning feature, helping developers identify vulnerabilities and enhance WAF configurations.
March 6, 2026
Setup Miru CLI
Version updated for https://github.com/mirurobotics/setup-cli to version v0.2.2.
This action is used across all versions by ? repositories. Action Type This is a Node action using Node version 24.
Go to the GitHub Marketplace to find the latest changes.
Action Summary The Miru CLI GitHub Action automates the installation of the Miru Command Line Interface (CLI) in CI/CD workflows. It simplifies the setup process by ensuring the CLI is readily available for use, enabling streamlined development and automation tasks.
March 6, 2026
DevDox AI sonar
Version updated for https://github.com/montymobile1/devdox-ai-sonar to version 0.0.5.
This action is used across all versions by ? repositories. Action Type This is a Docker action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary DevDox AI Sonar is a command-line tool that automates the process of reviewing and fixing code issues identified by SonarCloud, such as bugs, security vulnerabilities, and code smells. It integrates with Large Language Models (LLMs) to generate structured fixes, including code blocks, line numbers, and confidence scores, while maintaining a changelog for audit purposes.
March 6, 2026
agent-bom Scan
Version updated for https://github.com/msaad00/agent-bom to version v0.56.0.
This action is used across all versions by 0 repositories. Action Type This is a Composite action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary Agent-BOM is an open-source security scanner designed for AI agent infrastructure. It automates the discovery of configurations, scanning of dependencies, vulnerability mapping, blast radius assessment, and compliance enforcement across diverse environments including Docker images, Kubernetes clusters, and multi-cloud setups.