From https://github.com/suchithnarayan/actions-guard-hub
ActionsGuardHub is a comprehensive, modular security analysis tool for GitHub Actions that provides AI-powered analysis for detecting malicious GitHub Actions and vulnerabilities, with detailed reporting and an intuitive web dashboard for results visualization.
Key Features:
- Multi-Provider AI Analysis β Supports Google Gemini and OpenAI models via LangChain for security scanning across 10+ categories
- Flexible Input β Scan individual actions, entire repositories, or full organizations
- Multiple Auth Methods β Personal Access Token or GitHub App authentication
- Rich Reporting β Interactive web dashboard with filtering, JSON export, and text reports with actionable recommendations
- Metadata Collection β Option to collect action metadata without AI analysis for lightweight screening