{"id":21097397,"url":"https://github.com/godaddy-wordpress/setup-secure-shell","last_synced_at":"2026-04-01T21:49:49.606Z","repository":{"id":65159929,"uuid":"537257528","full_name":"godaddy-wordpress/setup-secure-shell","owner":"godaddy-wordpress","description":"WIP Composite Action to setup SSH and add Github known hosts.","archived":false,"fork":false,"pushed_at":"2022-11-18T23:20:43.000Z","size":12,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2026-03-28T00:22:54.852Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/godaddy-wordpress.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2022-09-16T01:02:19.000Z","updated_at":"2022-11-16T02:37:23.000Z","dependencies_parsed_at":"2023-01-12T14:31:19.575Z","dependency_job_id":null,"html_url":"https://github.com/godaddy-wordpress/setup-secure-shell","commit_stats":null,"previous_names":[],"tags_count":4,"template":false,"template_full_name":null,"purl":"pkg:github/godaddy-wordpress/setup-secure-shell","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/godaddy-wordpress%2Fsetup-secure-shell","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/godaddy-wordpress%2Fsetup-secure-shell/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/godaddy-wordpress%2Fsetup-secure-shell/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/godaddy-wordpress%2Fsetup-secure-shell/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/godaddy-wordpress","download_url":"https://codeload.github.com/godaddy-wordpress/setup-secure-shell/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/godaddy-wordpress%2Fsetup-secure-shell/sbom","scorecard":{"id":433287,"data":{"date":"2025-08-11","repo":{"name":"github.com/godaddy-wordpress/setup-secure-shell","commit":"271a5975ce9568a792ece5aef4f5f89f441b0d70"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":4,"checks":[{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Code-Review","score":0,"reason":"Found 0/5 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-inputs.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy-wordpress/setup-secure-shell/test-inputs.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-inputs.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy-wordpress/setup-secure-shell/test-inputs.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-inputs.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy-wordpress/setup-secure-shell/test-inputs.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-inputs.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy-wordpress/setup-secure-shell/test-inputs.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-setup.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy-wordpress/setup-secure-shell/test-setup.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-setup.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy-wordpress/setup-secure-shell/test-setup.yml/main?enable=pin","Info:   0 out of   6 GitHub-owned GitHubAction dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/test-inputs.yml:1","Warn: no topLevel permission defined: .github/workflows/test-setup.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Vulnerabilities","score":10,"reason":"0 existing vulnerabilities detected","details":null,"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: GNU General Public License v2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'main'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 1 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Security-Policy","score":9,"reason":"security policy file detected","details":["Info: security policy file detected: github.com/godaddy-wordpress/.github/SECURITY.md:1","Info: Found linked content: github.com/godaddy-wordpress/.github/SECURITY.md:1","Warn: One or no descriptive hints of disclosure, vulnerability, and/or timelines in security policy","Info: Found text in security policy: github.com/godaddy-wordpress/.github/SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}}]},"last_synced_at":"2025-08-19T03:54:21.914Z","repository_id":65159929,"created_at":"2025-08-19T03:54:21.914Z","updated_at":"2025-08-19T03:54:21.914Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31292560,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-01T21:15:39.731Z","status":"ssl_error","status_checked_at":"2026-04-01T21:15:34.046Z","response_time":53,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-11-19T22:47:36.385Z","updated_at":"2026-04-01T21:49:49.584Z","avatar_url":"https://github.com/godaddy-wordpress.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# Setup Secure Shell (SSH)\n\nThis Composite Action will setup and start the SSH (Secure Shell) Agent, and optionally configure GitHub known hosts, custom known hosts, or one private key.\n\n## Usage\n\nUse this Action in one of your Workflow steps.\n\n```yaml\n- name: Setup SSH\n  uses: godaddy-wordpress/setup-secure-shell@v1\n```\n\n### With Inputs\n\nThis Action comes with three inputs, and only the GitHub known hosts are added by default.\n\n#### Disable GitHub Known Hosts\n\nTo disable adding GitHub known hosts, simply set the `add-gh-known-hosts` input to `no`:\n\n```yaml\n- name: Setup SSH\n  uses: godaddy-wordpress/setup-secure-shell@v1\n  with:\n    add-gh-known-hosts: no\n```\n\n#### Add Custom Known Hosts\n\nAdding custom known hosts must include the literal-strip `|-` block scalar style, and each host must be added on a separate line.\n\n```yaml\n- name: Setup SSH\n  uses: godaddy-wordpress/setup-secure-shell@v1\n  with:\n    ssh-known-hosts: |-\n      ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOMqqnkVzrm0SdG6UOoqKLsabgH5C9okWi0dh2l9GKJl\n```\n\n#### Add a Private Key\n\nFor security reasons, adding a private key is accomplished by first setting the key to an environment variable for the step, then referencing the variable in the input.\n\n```yaml\n- name: Setup SSH\n  uses: godaddy-wordpress/setup-secure-shell@v1\n  env:\n    KEY_NAME: ${{ secrets.ssh-private-key }}\n  with:\n    ssh-private-key: $KEY_NAME\n```\n\n#### All Inputs Together\n\n```yaml\n- name: Setup SSH\n  uses: godaddy-wordpress/setup-secure-shell@v1\n  env:\n    KEY_NAME: ${{ secrets.ssh-private-key }}\n  with:\n    add-gh-known-hosts: no\n    ssh-private-key: $KEY_NAME\n    ssh-known-hosts: |-\n      ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOMqqnkVzrm0SdG6UOoqKLsabgH5C9okWi0dh2l9GKJl\n```\n\n## Note on Private Keys\n\nThe default behavior of SSH is to read from the `id_rsa` and `id_rsa.pub` keys. While there is an ability to use `.ssh/config` to configure different keys to use for different hosts, that is beyond the scope of this Action. If you have a project that requires multiple keys, there are a couple ways you can approach this problem:\n\n### Change Keys (easy)\n\nOften times you may need multiple keys, but not necessarily at the same time. This can be accomplished by first deleting current the SSH key (assuming you added one), then adding the new key:\n\n```yaml\n- name: Change key\n  env:\n    OTHER_KEY_NAME: ${{ secrets.other-ssh-private-key }}\n  run: |\n    ssh-add -D\n    ssh-add - \u003c\u003c\u003c \"$OTHER_KEY_NAME\"\n```\n\nThis will keep the SSH default behavior, and threat this new key as the `id_rsa` key pair.\n\n### Add Configuration (complex)\n\nIf your project requires using multiple keys simultaneously, then you are likely going to have to add an SSH configuration file (`.ssh/config`) and route the hosts to the correct identity files. As this is beyond the scope of this Action, please refer to your best online source for creating a custom configuration file.\n\n---\n\nCopyright © 2022  [GoDaddy Operating Company, LLC](https://godaddy.com) \u0026nbsp;\u0026middot;\u0026nbsp; All Rights Reserved \u0026nbsp;\u0026middot;\u0026nbsp; [License](LICENSE)\n\n[![GoDaddy Engineering](https://raw.githubusercontent.com/godaddy-wordpress/.github/master/assets/godaddy-oss-readme-banner.webp)](https://www.godaddy.com/engineering/)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgodaddy-wordpress%2Fsetup-secure-shell","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fgodaddy-wordpress%2Fsetup-secure-shell","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgodaddy-wordpress%2Fsetup-secure-shell/lists"}