actions/checkout
Action for checking out a repo
GitHub Actions security score
| actions/checkout | |
|---|---|
Score | 9/10 |
License | MIT License |
Maintained | 9 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 8 |
Vulnerabilities | 2 existing vulnerabilities detected |
Branch protection | branch protection is not maximal on development and all release branches |
Manual code review | - |
Secure publishing | - |
Signed commits | - |
Automated security tools | - |
Popular | Used by 1027072 open-source projects |
Security Policy | security policy file detected |
Networking Behavior of actions/checkout
This GitHub Action often makes outbound network calls to these destinations, as gathered from public workflows using the Harden-Runner GitHub Action. Harden-Runner offers network egress filtering and runtime security for both GitHub-hosted and self-hosted runners.
Popular DestinationUnknown Destination
| Network Destination | Owner |
|---|---|
| github.com |  GitHub |
| skia.googlesource.com | Unknown |
| [GitHub Cache Endpoint] | Unknown |
| gcr.io | Unknown |
| boringssl.googlesource.com | Unknown |
| r8.googlesource.com | Unknown |
| git.kernel.dk | Unknown |
| api.github.com | GitHub |
| Unknown | |
| motd.ubuntu.com | |
| fake15.com | Unknown |
| fake16.com | Unknown |
| github-cloud.githubusercontent.com | GitHub |
| fake11.com | Unknown |
| fake12.com | Unknown |
| yum.oracle.com | Unknown |
| mirrors.vcea.wsu.edu | Unknown |
| d2lzkl7pfhq30w.cloudfront.net | Unknown |
| mirrors.wcupa.edu | Unknown |
| atl.mirrors.knownhost.com | Unknown |
| chromium.googlesource.com | Unknown |
| cdn.fwupd.org | Unknown |
| provjobdsettingscdn.blob.core.windows.net | Unknown |
| patch-diff.githubusercontent.com | GitHub |
| instrumentation-telemetry-intake.datadoghq.com | Unknown |
| powitni3dvag4e3vfsuxwbdl.blob.core.windows.net | Unknown |
| auth.safetycli.com | Unknown |
| api.securityscorecards.dev | Unknown |
| scans-in.gradle.com | Unknown |
| repos.eggycrew.com | Unknown |
| ftp-nyc.osuosl.org | Unknown |
| mirror.umd.edu | Unknown |
| nnenix.mm.fcix.net | Unknown |
| ix-denver.mm.fcix.net | Unknown |
| dc.services.visualstudio.com | Unknown |
| sum.golang.org | Unknown |
| ipfs-adebp.gke-europe.settlemint.com | Unknown |
| objects-origin.githubusercontent.com | GitHub |
| ipfs-ws.neaweb.ch | Unknown |
| md-hdd-x34t55m1pqzm.z23.blob.storage.azure.net | Unknown |
| ipfs-swarm.greyh.at | Unknown |
| md-hdd-ch0jrglqk0w2.z11.blob.storage.azure.net | Unknown |
| md-hdd-jj2w313nlcgg.z19.blob.storage.azure.net | Unknown |
| md-hdd-vd2pqrzzvvv5.z20.blob.storage.azure.net | Unknown |
| md-hdd-zf2t32fvnrxk.z44.blob.storage.azure.net | Unknown |
| md-hdd-ncs2v2spkcl4.z37.blob.storage.azure.net | Unknown |
| md-hdd-r4vqq22sdkjm.z9.blob.storage.azure.net | Unknown |
| md-hdd-qhrbrgldgfkb.z16.blob.storage.azure.net | Unknown |
| md-hdd-hfjm12dp4qlt.z27.blob.storage.azure.net | Unknown |
| md-hdd-f1c2wpzxk3fq.z30.blob.storage.azure.net | Unknown |
| md-hdd-ghczzc132dqm.z13.blob.storage.azure.net | Unknown |
| md-hdd-qg4fsnjtspmb.z13.blob.storage.azure.net | Unknown |
| md-hdd-smw0kvh5fzxx.z29.blob.storage.azure.net | Unknown |
| md-hdd-ngxvfwl1mzjk.z11.blob.storage.azure.net | Unknown |
| md-hdd-gt53vrh2c1pj.z13.blob.storage.azure.net | Unknown |
| md-hdd-kzt1j2js5tc1.z48.blob.storage.azure.net | Unknown |
| md-hdd-21bckzxrz2bh.z5.blob.storage.azure.net | Unknown |
| home.pathin.me | Unknown |
| openthread.io | Unknown |
| ipfs.axlabs.net | Unknown |
| checkpoint-cn.yeaosound.com | Unknown |
| telemetry.redwoodjs.com | Unknown |
| srv.nullob.si | Unknown |
| md-hdd-zjclzszfctwn.z24.blob.storage.azure.net | Unknown |
| md-hdd-rjdcznvlvq1g.z22.blob.storage.azure.net | Unknown |
| md-hdd-km3lbp0pqwfp.z41.blob.storage.azure.net | Unknown |
| config.datadoghq.com | Unknown |
| ipfs-node.pcdn.svconcloud.com | Unknown |
| ipfs-c9a6p.settlemint.com | Unknown |
| github.com.kktgveqfb1qudcmjlb3z23h2tb.xx.internal.cloudapp.net | Unknown |
| dweb.quartzbear.link | Unknown |
| md-hdd-xwknwfkphbzw.z37.blob.storage.azure.net | Unknown |
| am6.bootstrap.libp2p.io | Unknown |
| md-hdd-m32mmw32twwl.z20.blob.storage.azure.net | Unknown |
| md-hdd-pvptbh2bvmhk.z22.blob.storage.azure.net | Unknown |
| md-hdd-2l3d1npbbktj.z3.blob.storage.azure.net | Unknown |
| ipfs-store-48eep.settlemint.com | Unknown |
| home.xupernode.com | Unknown |
| ipfs-store-3d9ep.settlemint.com | Unknown |
| sv16.bootstrap.libp2p.io | Unknown |
| sg1.bootstrap.libp2p.io | Unknown |
| ipfs1-8c58p.aks-middleeast.settlemint.com | Unknown |
| microsoft.com | |
| packages.microsoft.com | |
| va1.bootstrap.libp2p.io | Unknown |
| se1.files.someguy123.com | Unknown |
| ipfs-92a0p.settlemint.com | Unknown |
| qrze66qtsvxvfqere2mfdeot.blob.core.windows.net | Unknown |
| aab76adad815848ca82122392d46393c-1873381457.us-east-2.elb.amazonaws.com | Unknown |
| gitlab.com | |
| 2dg2rikggido7fysjhd7mr5c.blob.core.windows.net | Unknown |
| t2g5a7hsasfeeerv7pdgpygo.blob.core.windows.net | Unknown |
| istanbul.le-space.de | Unknown |
| sony-bank-development-ipfs-1-36dfp.gke-japan.settlemint.com | Unknown |
| checkpoint-hk.ipns.network | Unknown |
| checkpoint-hk.yeaosound.com | Unknown |
| a2a4c5c095f8f4421ae16786a4865406-692485639.us-east-2.elb.amazonaws.com | Unknown |
| repo.maven.apache.org | Unknown |
| api.ipify.org | Unknown |
| containers.pkg.github.com | GitHub |
| datapod-ws.gdev.1000i100.fr | Unknown |
| gdev.1000i100.fr | Unknown |
| s3zwo47y6v6ynwdzeq42glrv.blob.core.windows.net | Unknown |
| greenbond.es | Unknown |
| ipfs-store-cfc9p.settlemint.com | Unknown |
| nft-ipfs-d9e4p.settlemint.com | Unknown |
| ipfs-a84aap.gke-europe-staging.settlemint.com | Unknown |
| atd-ipfs-1-62d0cp.gke-europe.settlemint.com | Unknown |
| ipfs.22336699.xyz | Unknown |
| ipfs-1-212eep.gke-europe-staging.settlemint.com | Unknown |
| threadgroup.org | Unknown |
| link.springer.com | Unknown |
| ipns-kubo-2.vin1.filebase.io | Unknown |
| pmu-skat-ipfs-7541cp.gke-europe-staging.settlemint.com | Unknown |
| p2p.gke-middleeast.settlemint.com | Unknown |
| objects.githubusercontent.com | GitHub |