Pricing

Pay per usage

Unbearable IaC Audit Pack

All four Unbearable TechTips audit Actors under one MCP endpoint: docker-compose (25 checks), Dockerfile (26 checks), GitHub Actions (21 checks), HU postcode validator (5 tools). Snyk-comparable IaC coverage at 10x cheaper. Pay-per-event. Built by Unbearable TechTips.

Pricing

Pay per usage

Rating

0.0

(0)

Developer

Noel Himer

Actor stats

Bookmarked

Total users

Monthly active users

16 hours ago

Last modified

What's included

Package	Checks	Categories	Primary tool
Docker Compose audit	25	9	`audit_compose`
Dockerfile audit	18	5	`audit_dockerfile`
GitHub Actions audit	13	5	`audit_github_actions`
HU Postcode Validator	5 tools	—	`validate_postcode`, `lookup_city`, …

Plus two bundle-only tools:

audit_all — paste a dict of filenames → content; auto-detects Dockerfile, compose, and workflow files and runs the right audit on each
list_all_checks — full cross-package check catalog in one call

Quick start (Claude Desktop)

{
  "mcpServers": {
    "iac-audit-pack": {
      "type": "http",
      "url": "https://unbearable-dev--iac-audit-pack.apify.actor/mcp",
      "headers": {
        "Authorization": "Bearer <your-apify-token>"
      }
    }
  }
}

Tool catalog

Aggregation (bundle-only)

Tool	Description
`audit_all(files, min_severity?)`	Multi-file detection + combined audit report
`list_all_checks()`	All 56 checks across all three audit packages

Docker Compose (25 checks, 9 categories)

Tool	Description
`audit_compose(compose_yaml?, compose_url?, min_severity?)`	Full 25-check audit
`check_privilege`	Privileged mode, cap_add, user namespace
`check_network`	Host networking, exposed dangerous ports
`check_secrets`	Hardcoded passwords, tokens in env vars
`check_filesystem`	Docker socket mounts, host path mounts
`check_resources`	Missing memory/CPU limits
`check_image_hygiene`	Unpinned tags, `latest` usage
`check_runtime_lifecycle`	Restart policies, healthchecks
`check_logging`	Logging driver config
`check_compose_hygiene`	Version field, service naming
`list_checks_compose(category?)`	Check catalog

Dockerfile (18 checks, 5 categories)

Tool	Description
`audit_dockerfile(dockerfile_content?, dockerfile_url?, min_severity?)`	Full 18-check audit
`check_base_image_dockerfile`	Unpinned base, `latest`, root user in FROM
`check_instructions_dockerfile`	ADD vs COPY, COPY ordering, ENV secrets
`check_security_dockerfile`	USER root, privilege escalation patterns
`check_efficiency_dockerfile`	Layer count, cache busting
`check_secrets_dockerfile`	Hardcoded secrets in RUN/ENV/ARG
`list_checks_dockerfile(category?)`	Check catalog

GitHub Actions (13 checks, 5 categories)

Tool	Description
`audit_github_actions(workflow_yaml?, workflow_url?, min_severity?)`	Full 13-check audit
`check_secrets_gha`	Leaked tokens, secret in run: blocks
`check_permissions_gha`	Overly broad write-all permissions
`check_action_pinning_gha`	Unpinned action refs (not SHA-pinned)
`check_runner_security_gha`	Self-hosted runner risks
`check_workflow_config_gha`	pull_request_target misuse, script injection
`list_checks_github_actions(category?)`	Check catalog

HU Postcode Validator (5 tools)

Tool	Description
`validate_postcode(postcode)`	Settlement + county for a HU postcode
`lookup_postcode(postcode)`	Alias for validate_postcode
`lookup_city(city)`	All postcodes for a city (diacritic-insensitive)
`validate_address(postcode, city)`	Postcode/city pairing validation
`list_postcodes_in_county(county_name)`	All postcodes in a county
`budapest_district_lookup(district_number)`	Budapest I-XXIII → postcodes

Pricing

$19/mo unlimited individual audits — flat monthly rental via Apify Console.

No per-call billing. Run as many audits as you need. Cancel anytime.

Architecture

Package-import (not proxy): all four sub-packages are bundled directly into the Actor image. Single cold start, single billing rail, no cross-Actor latency. See DESIGN.md for the full rationale.

Built by Noel @ Unbearable TechTips — more like this in the weekly newsletter [link].

Dockerfile Security & Quality Audit

unbearable_dev/dockerfile-audit

Hadolint-grade Dockerfile audit, MCP-native. 18+ checks across 5 categories (base image, instructions, security, efficiency, secrets) with severity, line numbers, remediation, and fix snippets. Pay-per-event. Call from Claude Desktop, Cursor, n8n, or any MCP client. Built by Unbearable TechTips.

Noel Himer

GitHub Actions Security Audit

unbearable_dev/github-actions-audit

Audits .github/workflows/*.yml for supply-chain risks: script injection, leaked tokens, unpinned actions, broad permissions, pull_request_target pitfalls. MCP-native — call from Claude Desktop, Cursor, n8n, or any MCP client. Pay-per-event. Built by Unbearable TechTips.

Noel Himer

Docker Compose Security Audit

unbearable_dev/docker-compose-audit

Audits docker-compose.yml files for security misconfigurations. 25 checks across 9 categories with severity, remediation, and YAML fix snippets. Pay-per-event. MCP-native — call from Claude Desktop, Cursor, n8n, or any MCP client. Built by Unbearable TechTips.

Noel Himer

Autotrader UK Scraper

epctex/autotradercouk-scraper

Extract comprehensive vehicle and machinery data from Autotrader.co.uk without an API. Search results and listing details in one powerful tool.

epctex

309

5.0

(7)

CIDR IP Range Calculator

automation-lab/cidr-ip-range-calculator

Calculate network address, broadcast, first/last usable IP, total hosts, subnet mask, wildcard mask, and binary representation from CIDR notation. Supports IPv4 and IPv6. Pure math — no proxy.

Stas Persiianenko

Mudah.my Scraper | Fast & Reliable | $2 / 1k

fatihtahta/mudah-malaysia-scraper

Extract structured Mudah.my listings with prices, locations, seller data, media from millions of listing across cars, properties, electronics, and more. Built for enterprise-grade marketplace intelligence, pricing analysis, lead generation, and automated data pipelines.

Fatih Tahta

Audio Transcriber

parseforge/audio-transcriber

Automates audio transcription from multiple sources (files or links). Normalizes input format to ensure optimal processing. Generates word-for-word transcriptions maintaining references to source audio, perfect for datasets requiring traceability and regulatory compliance.

ParseForge

5.0

(1)

PDF To JSON Parser

parseforge/pdf-to-json-parser

Convert PDF documents into structured JSON using AI-powered OCR and smart data extraction. The Actor processes every page to ensure complete coverage, then identifies text, fields, tables, and key details, delivering clean, organized JSON ready for automation or analysis.

ParseForge

5.0

(1)

BestBuy.com 🏷️ Extractor

jupri/bestbuy-scaper

💫 All-in-One BestBuy.com Scraper

cat

Matrix Message Scraper

jungle_synthesizer/matrix-message-scraper

Scrape public rooms and messages from any Matrix homeserver (matrix.org, Element, or self-hosted). Discover public rooms by keyword or scrape message history from specific rooms using a Matrix access token.

BowTiedRaccoon

Employee-in-a-Box: SEO / AEO / GEO Auditor

gmangabeira2/employee-in-a-box-seo-aeo-geo-auditor

Moltbot (Clawdbot)compatible AI employee for SEO, AEO, and GEO audits. Generates ready-to-use audit frameworks, checklists, and reports for search engines and LLM visibility. Ideal for SaaS, fintech, Web3, and content teams.