Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/coverage.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/coverage.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/coverage.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/coverage.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/fmt-and-generate.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/fmt-and-generate.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/fmt-and-generate.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/fmt-and-generate.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/lint.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/lint.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/lint.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/lint.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/report.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/report.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/report.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/report.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/security.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/security.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/security.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/security.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/security.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/security.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:97: update your workflow using https://app.stepsecurity.io/secureworkflow/99designs/gqlgen/test.yml/master?enable=pin
Warn: goCommand not pinned by hash: .github/workflows/check-coverage:4
Warn: npmCommand not pinned by hash: .github/workflows/integration.yml:51
Warn: goCommand not pinned by hash: .github/workflows/test.yml:38
Info: 0 out of 19 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 8 third-party GitHubAction dependencies pinned
Info: 0 out of 2 goCommand dependencies pinned
Info: 1 out of 2 npmCommand dependencies pinned