Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/do-release.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/do-release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/do-release.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/do-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/issue-label.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/issue-label.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-label.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/issue-label.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/on-release.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/on-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/on-release.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/on-release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/on-release.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/on-release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/on-release.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/on-release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/on-release.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/on-release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/on-release.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/on-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/on-release.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/on-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/on-release.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/on-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pr-target.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/pr-target.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-target.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/pr-target.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:8: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/findy-network/findy-agent-auth/test.yml/master?enable=pin
Warn: containerImage not pinned by hash: Dockerfile:1: pin your Docker image by updating golang:1.21-alpine3.18 to golang:1.21-alpine3.18@sha256:d390d5f2006c4c9cf19709d449a8463e7188643f444d06fcaa96f45b6c29363d
Warn: containerImage not pinned by hash: Dockerfile:14: pin your Docker image by updating alpine:3.18 to alpine:3.18@sha256:dd60c75fba961ecc5e918961c713f3c42dd5665171c58f9b2ef5aafe081ad5a0
Info: 0 out of 13 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 10 third-party GitHubAction dependencies pinned
Info: 0 out of 2 containerImage dependencies pinned