Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/FabEdge/fabedge/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/FabEdge/fabedge/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/FabEdge/fabedge/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/FabEdge/fabedge/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/FabEdge/fabedge/main.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/FabEdge/fabedge/main.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/FabEdge/fabedge/main.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/FabEdge/fabedge/main.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/stale.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/FabEdge/fabedge/stale.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sync2gitee.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/FabEdge/fabedge/sync2gitee.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/sync2gitee.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/FabEdge/fabedge/sync2gitee.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/unittest.yaml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/FabEdge/fabedge/unittest.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/unittest.yaml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/FabEdge/fabedge/unittest.yaml/main?enable=pin
Warn: containerImage not pinned by hash: build/agent/Dockerfile:1
Warn: containerImage not pinned by hash: build/agent/Dockerfile:5
Warn: containerImage not pinned by hash: build/agent/Dockerfile:7: pin your Docker image by updating fabedge/base-image:0.1.0 to fabedge/base-image:0.1.0@sha256:b845ef9b7a0ff237aca6eb698dc5c6d50323e83fe2cf7bef88b33a0da33324e2
Warn: containerImage not pinned by hash: build/base-image/Dockerfile:1
Warn: containerImage not pinned by hash: build/base-image/Dockerfile:7: pin your Docker image by updating alpine:3.15 to alpine:3.15@sha256:19b4bcc4f60e99dd5ebdca0cbce22c503bbcff197549d7e19dab4f22254dc864
Warn: containerImage not pinned by hash: build/cert/Dockerfile:1
Warn: containerImage not pinned by hash: build/cert/Dockerfile:5: pin your Docker image by updating alpine:3.15 to alpine:3.15@sha256:19b4bcc4f60e99dd5ebdca0cbce22c503bbcff197549d7e19dab4f22254dc864
Warn: containerImage not pinned by hash: build/cloud-agent/Dockerfile:1
Warn: containerImage not pinned by hash: build/cloud-agent/Dockerfile:5: pin your Docker image by updating fabedge/base-image:0.1.0 to fabedge/base-image:0.1.0@sha256:b845ef9b7a0ff237aca6eb698dc5c6d50323e83fe2cf7bef88b33a0da33324e2
Warn: containerImage not pinned by hash: build/connector/Dockerfile:1
Warn: containerImage not pinned by hash: build/connector/Dockerfile:5: pin your Docker image by updating fabedge/base-image:0.1.0 to fabedge/base-image:0.1.0@sha256:b845ef9b7a0ff237aca6eb698dc5c6d50323e83fe2cf7bef88b33a0da33324e2
Warn: containerImage not pinned by hash: build/node/Dockerfile:1
Warn: containerImage not pinned by hash: build/node/Dockerfile:5
Warn: containerImage not pinned by hash: build/node/Dockerfile:6: pin your Docker image by updating fabedge/base-image:0.1.0 to fabedge/base-image:0.1.0@sha256:b845ef9b7a0ff237aca6eb698dc5c6d50323e83fe2cf7bef88b33a0da33324e2
Warn: containerImage not pinned by hash: build/operator/Dockerfile:1
Warn: containerImage not pinned by hash: build/operator/Dockerfile:5: pin your Docker image by updating alpine:3.15 to alpine:3.15@sha256:19b4bcc4f60e99dd5ebdca0cbce22c503bbcff197549d7e19dab4f22254dc864
Warn: containerImage not pinned by hash: build/strongswan/Dockerfile:1: pin your Docker image by updating alpine:3.15 to alpine:3.15@sha256:19b4bcc4f60e99dd5ebdca0cbce22c503bbcff197549d7e19dab4f22254dc864
Info: 0 out of 9 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 4 third-party GitHubAction dependencies pinned
Info: 1 out of 1 goCommand dependencies pinned
Info: 0 out of 17 containerImage dependencies pinned