Hi, this is Varun, co-founder of StepSecurity. StepSecurity helps secure CI/CD pipelines, specifically GitHub Actions.<p>Developers use numerous third-party GitHub Actions in their CI/CD pipelines, often facing challenges in assessing associated risks.<p>We recently launched GitHub Actions Advisor. It offers an automated security score for public GitHub Actions, aiding in informed decision-making based on your risk tolerance. This score incorporates both static analysis of Action code and repository settings, and dynamic analysis of networking behavior during runtime.<p>Try it out and let me know if you have any feedback!