Stepsecurity

StepSecurity Platform: Community

Free tier of the StepSecurity GitHub Actions security platform, available for public repositories only. Includes Harden-Runner runtime security (audit and block modes), network egress monitoring, file integrity monitoring, process activity monitoring, security insights dashboard, automated workflow best-practice remediation (action pinning, permissions), and Actions security scoring. Does not support private repositories or self-hosted runners. Available via GitHub Marketplace at $0.

StepSecurity Platform: Enterprise

Paid enterprise tier of the StepSecurity GitHub Actions security platform. Includes all Community tier features plus support for private repositories, self-hosted runners (VM-based and Kubernetes/ARC-based), GitHub Checks integration, Policy Store for centralized egress policy management, StepSecurity Maintained Actions (secure drop-in replacements for third-party Actions), npm supply chain monitoring, AI agent and developer machine visibility, and enterprise support. Pricing is based on the number of developers who have contributed to secured repositories in the last 90 days, with volume discounts for large teams. Includes a 14-day free trial.