Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cache-factory.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/cache-factory.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cache-factory.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/cache-factory.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cargo-audit.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/cargo-audit.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cargo-audit.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/cargo-audit.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:144: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:146: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:366: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:373: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:163: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:171: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:209: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:211: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:270: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:272: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:289: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:310: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:353: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:355: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:111: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:113: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:117: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:122: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:332: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:334: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:393: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:192: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:194: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:232: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:234: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:251: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:253: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:318: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:320: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:400: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:401: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docker-image.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/docker-image.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker-image.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/docker-image.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker-image.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/docker-image.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker-image.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/docker-image.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker-image.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/docker-image.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docs.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/docs.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docs.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/docs.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docs.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/docs.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/interop-test.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/interop-test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/interop-test.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/interop-test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/interop-test.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/interop-test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/interop-test.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/interop-test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/interop-test.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/interop-test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/interop-test.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/interop-test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/stale.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/libp2p/rust-libp2p/stale.yml/master?enable=pin
Warn: containerImage not pinned by hash: examples/autonatv2/Dockerfile:1
Warn: containerImage not pinned by hash: examples/autonatv2/Dockerfile:14: pin your Docker image by updating alpine:latest to alpine:latest@sha256:56fa17d2a7e7f168a043a2712e63aed1f8543aeafdcee47c58dcffe38ed51099
Warn: containerImage not pinned by hash: hole-punching-tests/Dockerfile:2
Warn: containerImage not pinned by hash: hole-punching-tests/Dockerfile:16: pin your Docker image by updating alpine:3 to alpine:3@sha256:56fa17d2a7e7f168a043a2712e63aed1f8543aeafdcee47c58dcffe38ed51099
Warn: containerImage not pinned by hash: interop-tests/Dockerfile.chromium:2
Warn: containerImage not pinned by hash: interop-tests/Dockerfile.chromium:9
Warn: containerImage not pinned by hash: interop-tests/Dockerfile.chromium:13
Warn: containerImage not pinned by hash: interop-tests/Dockerfile.chromium:23: pin your Docker image by updating selenium/standalone-chrome:125.0 to selenium/standalone-chrome:125.0@sha256:f0037767d53479c9c7c7126a84135a06ba38748e0d47b9efca865c82d4345c38
Warn: containerImage not pinned by hash: interop-tests/Dockerfile.native:2
Warn: containerImage not pinned by hash: interop-tests/Dockerfile.native:5
Warn: containerImage not pinned by hash: interop-tests/Dockerfile.native:9
Warn: containerImage not pinned by hash: interop-tests/Dockerfile.native:18: pin your Docker image by updating debian:bullseye to debian:bullseye@sha256:e5bfb7364038fd100c2faebdd674145bd1bc758a57f3c67023cced99d0eff0f7
Warn: containerImage not pinned by hash: misc/server/Dockerfile:2
Warn: containerImage not pinned by hash: misc/server/Dockerfile:6
Warn: containerImage not pinned by hash: misc/server/Dockerfile:10
Warn: containerImage not pinned by hash: misc/server/Dockerfile:18: pin your Docker image by updating gcr.io/distroless/cc to gcr.io/distroless/cc@sha256:b7550f0b15838de14c564337eef2b804ba593ae55d81ca855421bd52f19bb480
Warn: containerImage not pinned by hash: protocols/perf/Dockerfile:2
Warn: containerImage not pinned by hash: protocols/perf/Dockerfile:14: pin your Docker image by updating debian:bullseye-slim to debian:bullseye-slim@sha256:6344a6747740d465bff88e833e43ef881a8c4dd51950dba5b30664c93f74cbef
Warn: containerImage not pinned by hash: wasm-tests/webtransport-tests/echo-server/Dockerfile:2
Info: 0 out of 25 GitHub-owned GitHubAction dependencies pinned
Info: 22 out of 50 third-party GitHubAction dependencies pinned
Info: 0 out of 19 containerImage dependencies pinned