Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/audit.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/audit.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/audit.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/audit.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/cd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cd.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/cd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/cd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:85: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/cd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cd.yml:97: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/cd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:98: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/cd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:106: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/cd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:74: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:76: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:92: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:94: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:105: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:107: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:118: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:120: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:122: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:130: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/manual.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/manual.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/manual.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/manual.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/manual.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/manual.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/manual.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/manual.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/manual.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/manual.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/manual.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/dandavison/delta/manual.yml/main?enable=pin
Warn: containerImage not pinned by hash: etc/docker/ubuntu.Dockerfile:1: pin your Docker image by updating ubuntu:latest to ubuntu:latest@sha256:80dd3c3b9c6cecb9f1667e9290b3bc61b78c2678c02cbdae5f0fea92cc6734ab
Warn: downloadThenRun not pinned by hash: etc/docker/ubuntu.Dockerfile:6
Info: 0 out of 12 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 16 third-party GitHubAction dependencies pinned
Info: 0 out of 1 containerImage dependencies pinned
Info: 0 out of 1 downloadThenRun dependencies pinned