Version updated for https://github.com/DNSZLSK/muad-dib to version v2.5.2. This action is used across all versions by 1 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary MUAD’DIB is a free security tool that detects and analyzes threats in npm and PyPI packages using static and dynamic analysis, deobfuscation, dataflow tracking, and behavioral anomaly detection. It helps developers identify known malicious dependencies and suspicious patterns, offering response guidance and risk scoring to prevent supply chain attacks.

Version updated for https://github.com/docker/setup-buildx-action to version v4.0.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 692,386 repositories. Action Type This is a Node action using Node version 24. Go to the GitHub Marketplace to find the latest changes. Action Summary The Docker Setup Buildx GitHub Action automates the setup of Docker Buildx, a tool for building and pushing multi-platform container images. It simplifies the creation and configuration of Buildx builders, enabling features like multi-platform builds, cache export, and advanced BuildKit functionalities.

Version updated for https://github.com/garagon/aguara to version v0.7.0. This action is used across all versions by 1 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Aguara is a security scanner designed to analyze AI agent skills and MCP servers, detecting threats like prompt injection, data exfiltration, and supply-chain attacks before deployment. It automates static analysis using a multi-layer engine with 173 detection rules across 13 threat categories, providing confidence scoring, remediation guidance, and support for CI integration.

Version updated for https://github.com/h13/gtm-users to version v1.0.0. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary This GitHub Action, gtm-users, is a CLI tool designed to manage Google Tag Manager (GTM) user permissions declaratively using YAML files. It automates the process of configuring, validating, and applying user permissions, enabling a safe and reviewable workflow similar to Terraform.

Version updated for https://github.com/jessehouwing/azure-pipelines-dependency-submission to version v1.0.5. This action is used across all versions by 1 repositories. Action Type This is a Node action using Node version 24. Go to the GitHub Marketplace to find the latest changes. Action Summary This GitHub Action automates the submission of Azure Pipelines task dependencies to GitHub’s Dependency Graph for vulnerability scanning and Dependabot alerts. It identifies pipeline files, resolves tasks using the Azure DevOps API to include full identifiers and versions, and integrates seamlessly with GitHub to provide proactive security monitoring for pipeline dependencies.

Version updated for https://github.com/MettleCI/mcix-asset-analysis-test to version v1.0.1772664737. This action is used across all versions by ? repositories. Action Type This is a Docker action. Go to the GitHub Marketplace to find the latest changes. Action Summary The MCIX Asset Analysis Test GitHub Action automates the process of running asset-level static analysis on IBM DataStage NextGen projects as part of CI/CD workflows. It enables users to perform compliance checks on DataStage assets using the MettleCI MCIX CLI, generating detailed reports and ensuring adherence to predefined rules.

Version updated for https://github.com/msaad00/agent-bom to version v0.54.0. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Agent BOM is an open-source security scanner designed for AI agent infrastructure. It automates the discovery of configurations, dependency scanning, blast radius mapping, compliance enforcement, and vulnerability detection across various environments, including Docker, Kubernetes, multi-cloud, and AI models.

Version updated for https://github.com/noobforanonymous/basilisk to version v1.0.4. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Basilisk is an open-source AI red teaming framework designed to automate security testing of large language models (LLMs) like ChatGPT, Claude, and others. It identifies vulnerabilities such as jailbreaks, data exfiltration, and logic bypasses using advanced techniques like genetic prompt evolution, enabling security researchers to proactively assess and strengthen LLM defenses.

Version updated for https://github.com/octoguide/bot to version 0.21.9. This action is used across all versions by 60 repositories. Go to the GitHub Marketplace to find the latest changes. Action Summary OctoGuide is a GitHub Action designed to help maintainers enforce repository best practices by monitoring contributor activity and providing automated, friendly feedback when undesired actions occur. It streamlines project management by ensuring contributors adhere to repository guidelines, reducing manual intervention and improving collaboration.