Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:219: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:220: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:223: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:247: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:520: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:523: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:525: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:527: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:529: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:541: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:257: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:258: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:262: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:362: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:363: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:366: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:370: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:390: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:400: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:401: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:404: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:423: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:433: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:434: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:437: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:506: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:132: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:142: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:143: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:151: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:160: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:161: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:164: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:167: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:174: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:209: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/release.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/test.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/test.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:73: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:101: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:102: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/test.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:105: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:118: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:133: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:134: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/test.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:137: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:153: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:154: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/test.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:157: update your workflow using https://app.stepsecurity.io/secureworkflow/GopeedLab/gopeed/test.yml/main?enable=pin
Warn: containerImage not pinned by hash: Dockerfile:1
Warn: containerImage not pinned by hash: Dockerfile:11: pin your Docker image by updating alpine:3.18 to alpine:3.18@sha256:dd60c75fba961ecc5e918961c713f3c42dd5665171c58f9b2ef5aafe081ad5a0
Warn: goCommand not pinned by hash: .github/workflows/build.yml:411
Warn: goCommand not pinned by hash: .github/workflows/build.yml:412
Warn: pipCommand not pinned by hash: .github/workflows/build.yml:172
Warn: npmCommand not pinned by hash: .github/workflows/build.yml:173
Warn: goCommand not pinned by hash: .github/workflows/build.yml:380
Warn: goCommand not pinned by hash: .github/workflows/build.yml:381
Warn: goCommand not pinned by hash: .github/workflows/test.yml:109
Warn: goCommand not pinned by hash: .github/workflows/test.yml:110
Info: 0 out of 34 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 25 third-party GitHubAction dependencies pinned
Info: 0 out of 2 containerImage dependencies pinned
Info: 0 out of 6 goCommand dependencies pinned
Info: 0 out of 1 pipCommand dependencies pinned
Info: 0 out of 1 npmCommand dependencies pinned