Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/benches.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/benches.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/benches.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/benches.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/benches.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/benches.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/benches.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/benches.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/benches.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/benches.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/benches.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/benches.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:133: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/changelog.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/changelog.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/changelog.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/changelog.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:387: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:388: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:393: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:396: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:397: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:514: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:515: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:518: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:671: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:672: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:675: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:684: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:690: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:701: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:702: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:705: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:709: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:730: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:479: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:480: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:486: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:490: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:494: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:500: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:143: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:144: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:149: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:153: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:432: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:433: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:436: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:439: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:453: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:454: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:457: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:460: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:464: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:467: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:596: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:597: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:600: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:603: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:410: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:411: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:414: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:417: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:420: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:561: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:562: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:565: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:569: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:573: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:585: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:620: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:621: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:624: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:627: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:630: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/coverage-pr-base.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/coverage-pr-base.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/coverage-pr-base.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/coverage-pr-base.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/gh-pages.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/gh-pages.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/gh-pages.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/gh-pages.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/gh-pages.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/gh-pages.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/gh-pages.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/gh-pages.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/gh-pages.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/PyO3/pyo3/gh-pages.yml/main?enable=pin
Warn: pipCommand not pinned by hash: .netlify/build.sh:71
Warn: pipCommand not pinned by hash: .netlify/build.sh:92
Warn: pipCommand not pinned by hash: .github/workflows/benches.yml:42
Warn: pipCommand not pinned by hash: .github/workflows/build.yml:40
Warn: pipCommand not pinned by hash: .github/workflows/build.yml:40
Warn: pipCommand not pinned by hash: .github/workflows/changelog.yml:17
Warn: pipCommand not pinned by hash: .github/workflows/changelog.yml:17
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:576
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:576
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:605
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:605
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:721
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:399
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:399
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:28
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:28
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:157
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:157
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:422
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:422
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:466
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:466
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:494
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:494
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:634
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:634
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:76
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:76
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:536
Warn: pipCommand not pinned by hash: .github/workflows/ci.yml:536
Warn: pipCommand not pinned by hash: .github/workflows/coverage-pr-base.yml:31
Warn: pipCommand not pinned by hash: .github/workflows/gh-pages.yml:44
Warn: pipCommand not pinned by hash: .github/workflows/gh-pages.yml:44
Info: 0 out of 44 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 46 third-party GitHubAction dependencies pinned
Info: 0 out of 33 pipCommand dependencies pinned