Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:137: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:140: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:146: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:152: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:180: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:183: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:189: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:288: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:291: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:297: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:313: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:102: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:105: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:111: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:120: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:233: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:236: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:242: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:248: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:337: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:340: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:410: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:413: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:419: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:425: update your workflow using https://app.stepsecurity.io/secureworkflow/kbst/terraform-provider-kustomization/main.yml/master?enable=pin
Warn: containerImage not pinned by hash: tests/kubestack-starter-kind/Dockerfile:1: pin your Docker image by updating kubestack/framework:v0.18.2-beta.0-kind to kubestack/framework:v0.18.2-beta.0-kind@sha256:93e7143f4722af9b9999fa15abdac148f35c3df2d2bb84f66c70c6ad4318420f
Info: 0 out of 19 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 15 third-party GitHubAction dependencies pinned
Info: 0 out of 1 containerImage dependencies pinned