{"id":22117668,"url":"https://github.com/bioblaze/deploy2steam","last_synced_at":"2026-02-27T04:31:13.589Z","repository":{"id":206124729,"uuid":"715898002","full_name":"Bioblaze/deploy2steam","owner":"Bioblaze","description":null,"archived":false,"fork":false,"pushed_at":"2025-04-20T23:44:14.000Z","size":24,"stargazers_count":2,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"master","last_synced_at":"2025-08-29T02:20:48.689Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Bioblaze.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2023-11-08T03:44:08.000Z","updated_at":"2025-04-20T23:44:17.000Z","dependencies_parsed_at":"2025-08-28T22:36:21.759Z","dependency_job_id":"0e0d3784-e5d4-48a6-8602-bc15da1aad71","html_url":"https://github.com/Bioblaze/deploy2steam","commit_stats":null,"previous_names":["bioblaze/deploy2steam"],"tags_count":3,"template":false,"template_full_name":null,"purl":"pkg:github/Bioblaze/deploy2steam","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Bioblaze%2Fdeploy2steam","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Bioblaze%2Fdeploy2steam/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Bioblaze%2Fdeploy2steam/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Bioblaze%2Fdeploy2steam/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Bioblaze","download_url":"https://codeload.github.com/Bioblaze/deploy2steam/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Bioblaze%2Fdeploy2steam/sbom","scorecard":{"id":22162,"data":{"date":"2025-08-11","repo":{"name":"github.com/Bioblaze/deploy2steam","commit":"ef7886bcafcb5452b1e613a127f9a826f9f19b72"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":2.8,"checks":[{"name":"Code-Review","score":0,"reason":"Found 0/9 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Dangerous-Workflow","score":-1,"reason":"no workflows found","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Token-Permissions","score":-1,"reason":"No tokens found","details":null,"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: MIT License: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: containerImage not pinned by hash: Dockerfile:2: pin your Docker image by updating steamcmd/steamcmd:latest to steamcmd/steamcmd:latest@sha256:db03bd87ab33c77fea4216ddacc344d6f145d134eb44a8cf5883bef84f97a2ab","Warn: npmCommand not pinned by hash: Dockerfile:41","Info:   0 out of   1 containerImage dependencies pinned","Info:   0 out of   1 npmCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Vulnerabilities","score":10,"reason":"0 existing vulnerabilities detected","details":null,"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'master'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 2 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}}]},"last_synced_at":"2025-08-14T17:03:55.441Z","repository_id":206124729,"created_at":"2025-08-14T17:03:55.441Z","updated_at":"2025-08-14T17:03:55.441Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":29884685,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-02-26T23:51:21.483Z","status":"online","status_checked_at":"2026-02-27T02:00:06.759Z","response_time":57,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-12-01T13:38:01.838Z","updated_at":"2026-02-27T04:31:13.573Z","avatar_url":"https://github.com/Bioblaze.png","language":"Shell","funding_links":[],"categories":[],"sub_categories":[],"readme":"![Release Version](https://img.shields.io/github/v/release/Bioblaze/deploy2steam)\n\n# Deploy2Steam GitHub Action\n\n## Overview\n\nThe Deploy2Steam GitHub Action is designed to facilitate the deployment of game builds to Steam using the SteamSDK. It provides a straightforward process to connect to Steam's partner network, upload new builds, and manage depots with ease. This action is especially useful for game developers and CI/CD pipelines that aim to automate the deployment process as much as possible.\n\nThis GitHub Action utilizes a Docker image that includes the necessary tools to authenticate with Steam using either a shared secret or a config VDF file, generate a manifest, and execute the deployment.\n\n## Inputs\n\n### Required Inputs\n\n- `username`: The username of your Steam builder account.\n- `password`: The password for your Steam builder account.\n- `appId`: The unique identifier for your application within Steam's partner network.\n- `rootPath`: The root path where your game's build files are located. This is used to determine the files to be included in the depots.\n- `depotId`: The identifier for your Steam depot.\n- `depotPath`: The path where your depot files are located, relative to the `rootPath`.\n\n### Optional Inputs\n\n- `buildDescription`: A description for the build being deployed.\n- `shared_secret`: The shared secret for Steam's two-factor authentication. This must be provided unless `configVdf` is used.\n- `configVdf`: If `shared_secret` is not provided, this is required. It should contain the contents of your `STEAM_HOME/config/config.vdf`.\n\n## Outputs\n\n- `build_id`: The unique build ID returned after a successful upload to Steam.\n\n## Environment Variables\n\nThe following environment variables are used by the action:\n\n- `steam_username`\n- `steam_password`\n- `steam_shared_secret`\n- `configVdf`\n- `appId`\n- `buildDescription`\n- `rootPath`\n- `depotId`\n- `depotPath`\n\n## Usage\n\nTo use this action, you must have a GitHub Actions workflow defined in your repository.\n\nHere's a basic example of how to use the Deploy2Steam GitHub Action in a workflow:\n\n```yaml\nname: Deploy to Steam\n\non:\n  push:\n    branches:\n      - master  # Trigger the workflow on push to the master branch\n\njobs:\n  deploy:\n    runs-on: ubuntu-latest\n    steps:\n    - uses: actions/checkout@v2\n\n    # Use the Deploy2Steam action\n    - name: Deploy to Steam\n      uses: ./.github/actions/steam-deploy  # Path to the action\n      with:\n        username: ${{ secrets.STEAM_USERNAME }}\n        password: ${{ secrets.STEAM_PASSWORD }}\n        shared_secret: ${{ secrets.STEAM_SHARED_SECRET }}\n        appId: '1234567'\n        buildDescription: 'My Game Build'\n        rootPath: 'build'\n        depotId: '1234568'\n        depotPath: 'depot'\n```\n\nIn this example, you would replace `appId`, `depotId`, and the `secrets` with your own credentials and identifiers. The action will take care of logging in to the Steam partner network, creating a manifest file, and executing the deployment.\n\n## Notes\n\n- Make sure your repository has GitHub Secrets set up for `STEAM_USERNAME`, `STEAM_PASSWORD`, and `STEAM_SHARED_SECRET` to keep your credentials secure.\n- The `rootPath` should be relative to the root of your repository.\n- Your depot's contents should be structured as expected by Steam, typically with a folder containing the executable and all other game assets.\n\n## Node.js File: `get_totp.js`\n\nThis GitHub Action includes a Node.js file named `get_totp.js` that is used to generate the time-based one-time password (TOTP) for Steam's two-factor authentication when provided with a `shared_secret`.\n\n# How to Get the Shared Token for Steam\n\nTo facilitate seamless deployment of game builds on Steam through our GitHub Actions workflow, obtaining a shared token for authentication is a critical step. This token is associated with Steam Guard's two-factor authentication system. For detailed instructions on setting this up, we have prepared a comprehensive tutorial.\n\nPlease refer to the following guide to obtain your shared token:\n\n[How to Get the Shared Token for Steam (STEAM_TUTORIAL.md)](./STEAM_TUTORIAL.md)\n\nThis guide includes all the necessary steps from installing the required software, such as Rust and `steamguard-cli`, to linking an authenticator with your Steam account and finalizing the process to obtain your shared token.\n\nEnsure that you follow the steps carefully and safeguard your revocation code as it is essential for account recovery purposes. If you encounter any issues, feel free to raise an issue on the repository or contact the maintainer.\n\n## License\n\nThis GitHub Action is distributed under the MIT license. See the `LICENSE` file for more details.\n\n\n---\n\n\nThis action is maintained by Randolph William Aarseth II \u003crandolph@divine.games\u003e. Please reach out for support or contributions.","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbioblaze%2Fdeploy2steam","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fbioblaze%2Fdeploy2steam","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbioblaze%2Fdeploy2steam/lists"}