UNPWNED Security Scan
Version updated for https://github.com/razazu/unpwned-action to version v1.0.0.
- This action is used across all versions by ? repositories.
Action Type
This is a Composite action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
The UNPWNED Security Scan GitHub Action automates security checks for web applications by scanning domains for vulnerabilities, such as missing security headers, expired certificates, exposed sensitive files, and misconfigured DNS or CORS policies. It runs on every push or pull request and can fail builds based on critical findings, helping developers catch security regressions early. Key features include generating security scores, identifying data breaches, and optionally commenting results on pull requests.
Cargo Workspace Inheritance Check
Version updated for https://github.com/RomarQ/cargo-workspace-inheritance-check to version v1.3.0.
- This action is used across all versions by 0 repositories.
Action Type
This is a Composite action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
This GitHub Action, cargo-workspace-inheritance-check, automates the detection and resolution of dependency inheritance issues in Rust’s Cargo workspaces. It identifies cases where workspace member crates specify dependency versions directly instead of using { workspace = true }, flags version mismatches, and suggests candidates for centralizing shared dependencies in the [workspace.dependencies] section of the root Cargo.toml. By enforcing consistent dependency management, it helps prevent version drift, reduces duplication, and simplifies dependency maintenance across workspace projects.
rumdl-action
Version updated for https://github.com/rvben/rumdl to version v0.1.78.
- This action is used across all versions by 3 repositories.
Action Type
This is a Composite action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
Summary:
The “rumdl” GitHub Action is a high-performance Markdown linter and formatter built with Rust, designed to ensure consistency and enforce best practices in Markdown files. It automates the identification and correction of common Markdown issues through highly configurable linting rules, automatic formatting, and support for multiple Markdown flavors. With its speed, zero dependencies, and CI/CD-friendly design, rumdl streamlines documentation quality control in modern development workflows.
AgentAuditKit MCP Security Scan
Version updated for https://github.com/sattyamjjain/agent-audit-kit to version v0.3.3.
- This action is used across all versions by ? repositories.
Action Type
This is a Docker action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
AgentAuditKit is a comprehensive security scanner designed for AI agent pipelines connected to Multi-Agent Collaboration Protocols (MCP). It automates the detection of vulnerabilities such as misconfigurations, hardcoded secrets, tool poisoning, trust boundary violations, and tainted data flows across 13 agent platforms, using 151 rules and 28 scanning modules. The tool provides robust compliance mapping, OWASP standard coverage, supply chain integrity features, and offline functionality, streamlining security audits and ensuring rapid response to emerging AI-related vulnerabilities.
ZIRAN Agent Security Scan
Version updated for https://github.com/taoq-ai/ziran to version v0.28.0.
- This action is used across all versions by 1 repositories.
Action Type
This is a Composite action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
ZIRAN is a security testing tool designed to identify vulnerabilities in AI agents, particularly those using tools, memory, and multi-step reasoning. It models agents as capability graphs to uncover risks arising from tool interactions, such as transitive attack paths and silent failures, which are often missed by traditional prompt-based testing. Key features include graph-based tool chain analysis, execution-level side-effect detection, multi-phase attack simulations, and support for autonomous pentesting and multi-agent coordination.
Expand AWS IAM Wildcards
Version updated for https://github.com/thekbb/expand-aws-iam-wildcards to version v1.2.4.
- This action is used across all versions by 1 repositories.
Action Type
This is a Node action using Node version 24.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
This GitHub Action automatically detects and expands AWS IAM wildcard actions in pull request (PR) diffs, adding inline comments that detail the specific actions matched by each wildcard, along with links to AWS documentation. It streamlines code reviews by helping reviewers quickly understand the security implications of IAM changes, especially in scenarios involving wildcard permissions. The action supports various file types, groups consecutive wildcards into a single comment, and logs full expansions for very large wildcard matches.
ghstats-cards
Version updated for https://github.com/tiennm99/ghstats to version v1.4.0.
- This action is used across all versions by 2 repositories.
Action Type
This is a Docker action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
The ghstats GitHub Action generates visually appealing SVG cards summarizing a GitHub user’s profile, including data such as activity statistics, language usage, contributions, and productivity over time. It automates the process of fetching GitHub user data and creating customizable graphics for embedding in profile READMEs, solving the need for clear and engaging profile summaries. Key features include detailed visualizations like contribution heatmaps, language breakdowns, productivity charts, and repository stats.
Setup Tombi
Version updated for https://github.com/tombi-toml/setup-tombi to version v1.0.10.
- This action is used across all versions by 85 repositories.
Action Type
This is a Node action using Node version 24.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
The setup-tombi GitHub Action automates the installation and setup of the Tombi tool within GitHub Actions workflows. It simplifies the process of managing Tombi versions by supporting specific version installation, lock file-based version resolution, and optional checksum validation for security. This action is ideal for automating tasks like TOML file validation directly in CI/CD pipelines.
Review Insights
Version updated for https://github.com/wiyco/review-insights to version v2.0.0-rc.2.
- This action is used across all versions by ? repositories.
Action Type
This is a Node action using Node version 24.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
This GitHub Action, Review Insights, analyzes pull request review data to identify workload imbalances, reviewer-author dynamics, merge trends, and the impact of AI involvement, providing detailed visual reports with metrics such as heatmaps, bar charts, and time-series trends. It automates the detection of review bottlenecks, zero-review merges, and AI adoption patterns, helping teams optimize collaboration and improve code review practices. Key capabilities include tracking human review burden, highlighting review biases, and generating actionable insights for repository management.
dbt-semguard
Version updated for https://github.com/yeaight7/dbt-semguard to version v0.3.0.
- This action is used across all versions by ? repositories.
Action Type
This is a Composite action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
dbt-semguard is a semantic change detection tool for dbt’s Semantic Layer, designed to identify and classify changes to metrics and models as breaking, risky, or safe. It automates the process of detecting semantic drift by comparing two versions of semantic contracts, focusing on meaningful changes that could impact downstream consumers, such as dashboards or APIs, while ignoring non-functional YAML changes. This tool helps teams safeguard metric integrity by providing actionable insights during code reviews and CI workflows.