Info: Possibly incomplete results: error parsing shell code: > must be followed by a word: man/Dockerfile.5.md:87
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/build.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/build.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:73: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:95: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:107: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/build.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:110: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/build.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:113: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/build.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:117: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/build.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:128: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/build.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:134: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:152: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:174: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/build.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:177: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/build.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:180: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/codeql.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/codeql.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/codeql.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:73: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/codeql.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:76: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/codeql.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/e2e.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/e2e.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e.yml:78: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/e2e.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:81: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/validate.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/validate.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/validate.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/validate.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/validate.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/validate.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/validate.yml:79: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/cli/validate.yml/master?enable=pin
Warn: containerImage not pinned by hash: Dockerfile:14
Warn: containerImage not pinned by hash: Dockerfile:16
Warn: containerImage not pinned by hash: Dockerfile:22
Warn: containerImage not pinned by hash: Dockerfile:27
Warn: containerImage not pinned by hash: Dockerfile:33
Warn: containerImage not pinned by hash: Dockerfile:37
Warn: containerImage not pinned by hash: Dockerfile:43
Warn: containerImage not pinned by hash: Dockerfile:50
Warn: containerImage not pinned by hash: Dockerfile:73
Warn: containerImage not pinned by hash: Dockerfile:84
Warn: containerImage not pinned by hash: Dockerfile:94
Warn: containerImage not pinned by hash: Dockerfile:97
Warn: containerImage not pinned by hash: Dockerfile:100
Warn: containerImage not pinned by hash: Dockerfile:101
Warn: containerImage not pinned by hash: Dockerfile:103
Warn: containerImage not pinned by hash: Dockerfile:118
Warn: containerImage not pinned by hash: Dockerfile:131
Warn: containerImage not pinned by hash: dockerfiles/Dockerfile.authors:5
Warn: containerImage not pinned by hash: dockerfiles/Dockerfile.authors:14
Warn: containerImage not pinned by hash: dockerfiles/Dockerfile.dev:7
Warn: containerImage not pinned by hash: dockerfiles/Dockerfile.dev:9
Warn: containerImage not pinned by hash: dockerfiles/Dockerfile.dev:13
Warn: containerImage not pinned by hash: dockerfiles/Dockerfile.dev:21
Warn: containerImage not pinned by hash: dockerfiles/Dockerfile.dev:28
Warn: containerImage not pinned by hash: dockerfiles/Dockerfile.dev:35
Warn: containerImage not pinned by hash: dockerfiles/Dockerfile.lint:7
Warn: containerImage not pinned by hash: dockerfiles/Dockerfile.lint:9
Warn: containerImage not pinned by hash: dockerfiles/Dockerfile.shellcheck:3
Warn: containerImage not pinned by hash: dockerfiles/Dockerfile.vendor:7
Warn: containerImage not pinned by hash: dockerfiles/Dockerfile.vendor:12
Warn: containerImage not pinned by hash: dockerfiles/Dockerfile.vendor:27
Warn: containerImage not pinned by hash: dockerfiles/Dockerfile.vendor:38
Warn: containerImage not pinned by hash: dockerfiles/Dockerfile.vendor:39
Warn: containerImage not pinned by hash: man/Dockerfile.5.md:24
Warn: containerImage not pinned by hash: man/Dockerfile.5.md:135: pin your Docker image by updating ubuntu to ubuntu@sha256:80dd3c3b9c6cecb9f1667e9290b3bc61b78c2678c02cbdae5f0fea92cc6734ab
Warn: containerImage not pinned by hash: man/Dockerfile.5.md:145: pin your Docker image by updating ubuntu to ubuntu@sha256:80dd3c3b9c6cecb9f1667e9290b3bc61b78c2678c02cbdae5f0fea92cc6734ab
Warn: containerImage not pinned by hash: man/Dockerfile.5.md:286: pin your Docker image by updating ubuntu to ubuntu@sha256:80dd3c3b9c6cecb9f1667e9290b3bc61b78c2678c02cbdae5f0fea92cc6734ab
Warn: containerImage not pinned by hash: man/Dockerfile.5.md:295: pin your Docker image by updating ubuntu to ubuntu@sha256:80dd3c3b9c6cecb9f1667e9290b3bc61b78c2678c02cbdae5f0fea92cc6734ab
Warn: containerImage not pinned by hash: man/Dockerfile.5.md:350: pin your Docker image by updating busybox to busybox@sha256:2919d0172f7524b2d8df9e50066a682669e6d170ac0f6a49676d54358fe970b5
Warn: containerImage not pinned by hash: man/Dockerfile.5.md:359: pin your Docker image by updating busybox to busybox@sha256:2919d0172f7524b2d8df9e50066a682669e6d170ac0f6a49676d54358fe970b5
Info: 0 out of 18 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 16 third-party GitHubAction dependencies pinned
Info: 0 out of 40 containerImage dependencies pinned