Info: Possibly incomplete results: error parsing shell code: a command can only contain words and redirects; encountered (: Dockerfile.windows:182-272
Info: Possibly incomplete results: error parsing shell code: a command can only contain words and redirects; encountered (: Dockerfile.windows:274-288
Info: Possibly incomplete results: error parsing shell code: a command can only contain words and redirects; encountered (: Dockerfile.windows:290-304
Info: Possibly incomplete results: error parsing shell code: (( can only be used to open an arithmetic cmd: contrib/busybox/Dockerfile:22-25
Info: Possibly incomplete results: error parsing job operating system: .github/workflows/.test.yml:309
Info: Possibly incomplete results: error parsing job operating system: .github/workflows/.test.yml:339
Info: Possibly incomplete results: error parsing job operating system: .github/workflows/.test.yml:346
Info: Possibly incomplete results: error parsing job operating system: .github/workflows/.test.yml:372
Info: Possibly incomplete results: error parsing shell code: "foo(" must be followed by ): .github/workflows/.windows.yml:322
Info: Possibly incomplete results: error parsing shell code: statements must be separated by &, ; or a newline: .github/workflows/.windows.yml:338
Info: Possibly incomplete results: error parsing shell code: "foo(" must be followed by ): .github/workflows/.windows.yml:354
Info: Possibly incomplete results: error parsing shell code: "foo(" must be followed by ): .github/workflows/.windows.yml:379
Info: Possibly incomplete results: error parsing shell code: & can only immediately follow a statement: .github/workflows/.windows.yml:412
Info: Possibly incomplete results: error parsing shell code: & can only immediately follow a statement: .github/workflows/.windows.yml:418
Info: Possibly incomplete results: error parsing shell code: & can only immediately follow a statement: .github/workflows/.windows.yml:427
Info: Possibly incomplete results: error parsing shell code: & can only immediately follow a statement: .github/workflows/.windows.yml:468
Info: Possibly incomplete results: error parsing shell code: invalid func name: .github/workflows/.windows.yml:484
Info: Possibly incomplete results: error parsing shell code: "foo(" must be followed by ): .github/workflows/.windows.yml:65
Info: Possibly incomplete results: error parsing shell code: & can only immediately follow a statement: .github/workflows/.windows.yml:91
Info: Possibly incomplete results: error parsing shell code: & can only immediately follow a statement: .github/workflows/.windows.yml:100
Info: Possibly incomplete results: error parsing shell code: "foo(" must be followed by ): .github/workflows/.windows.yml:144
Info: Possibly incomplete results: error parsing shell code: & can only immediately follow a statement: .github/workflows/.windows.yml:171
Info: Possibly incomplete results: error parsing shell code: & can only immediately follow a statement: .github/workflows/.windows.yml:180
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.dco.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.dco.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.dco.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.dco.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.dco.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.dco.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test-prepare.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test-prepare.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test-prepare.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test-prepare.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:171: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/.test.yml:180: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/.test.yml:187: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:215: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:301: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/.test.yml:326: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/.test.yml:333: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/.test.yml:365: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:379: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:424: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:427: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:450: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:584: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:590: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:78: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/.test.yml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/.test.yml:100: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/.test.yml:120: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:129: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:145: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:151: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:228: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/.test.yml:234: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/.test.yml:241: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:263: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:395: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:401: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:498: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/.test.yml:516: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/.test.yml:523: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/.test.yml:554: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:568: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.test.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.windows.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.windows.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.windows.yml:116: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.windows.yml:135: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.windows.yml:155: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/.windows.yml:189: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.windows.yml:199: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.windows.yml:214: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.windows.yml:220: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.windows.yml:241: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.windows.yml:244: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.windows.yml:297: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.windows.yml:316: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.windows.yml:433: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/.windows.yml:459: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.windows.yml:500: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.windows.yml:527: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/.windows.yml:533: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/.windows.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/arm64.yml:159: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/arm64.yml:165: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/arm64.yml:187: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/arm64.yml:196: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/arm64.yml:203: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/arm64.yml:228: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/arm64.yml:242: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/arm64.yml:258: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/arm64.yml:264: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/arm64.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/arm64.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/arm64.yml:78: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/arm64.yml:85: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/arm64.yml:101: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/arm64.yml:107: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/arm64.yml:114: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/arm64.yml:134: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/arm64.yml:143: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/arm64.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/bin-image.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/bin-image.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/bin-image.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/bin-image.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/bin-image.yml:83: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/bin-image.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/bin-image.yml:109: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/bin-image.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/bin-image.yml:119: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/bin-image.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/bin-image.yml:125: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/bin-image.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/bin-image.yml:128: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/bin-image.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/bin-image.yml:136: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/bin-image.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/bin-image.yml:143: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/bin-image.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/bin-image.yml:164: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/bin-image.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/bin-image.yml:180: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/bin-image.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/bin-image.yml:186: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/bin-image.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/bin-image.yml:193: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/bin-image.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/bin-image.yml:200: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/bin-image.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/buildkit.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/buildkit.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/buildkit.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/buildkit.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildkit.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/buildkit.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/buildkit.yml:98: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/buildkit.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildkit.yml:101: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/buildkit.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildkit.yml:106: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/buildkit.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildkit.yml:117: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/buildkit.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/buildkit.yml:124: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/buildkit.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/buildkit.yml:127: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/buildkit.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildkit.yml:134: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/buildkit.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/buildkit.yml:147: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/buildkit.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:107: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:114: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:139: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:146: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:154: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/codeql.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/codeql.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/codeql.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/codeql.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/codeql.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:121: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:129: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:136: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:156: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:185: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:188: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:195: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:96: update your workflow using https://app.stepsecurity.io/secureworkflow/moby/moby/test.yml/master?enable=pin
Warn: containerImage not pinned by hash: Dockerfile:35
Warn: containerImage not pinned by hash: Dockerfile:39
Warn: containerImage not pinned by hash: Dockerfile:45
Warn: containerImage not pinned by hash: Dockerfile:52
Warn: containerImage not pinned by hash: Dockerfile:63
Warn: containerImage not pinned by hash: Dockerfile:67
Warn: containerImage not pinned by hash: Dockerfile:96
Warn: containerImage not pinned by hash: Dockerfile:100
Warn: containerImage not pinned by hash: Dockerfile:110
Warn: containerImage not pinned by hash: Dockerfile:125
Warn: containerImage not pinned by hash: Dockerfile:146
Warn: containerImage not pinned by hash: Dockerfile:156
Warn: containerImage not pinned by hash: Dockerfile:167
Warn: containerImage not pinned by hash: Dockerfile:168
Warn: containerImage not pinned by hash: Dockerfile:170
Warn: containerImage not pinned by hash: Dockerfile:183
Warn: containerImage not pinned by hash: Dockerfile:192
Warn: containerImage not pinned by hash: Dockerfile:205
Warn: containerImage not pinned by hash: Dockerfile:228
Warn: containerImage not pinned by hash: Dockerfile:229
Warn: containerImage not pinned by hash: Dockerfile:230
Warn: containerImage not pinned by hash: Dockerfile:232
Warn: containerImage not pinned by hash: Dockerfile:239
Warn: containerImage not pinned by hash: Dockerfile:246
Warn: containerImage not pinned by hash: Dockerfile:253
Warn: containerImage not pinned by hash: Dockerfile:259
Warn: containerImage not pinned by hash: Dockerfile:272
Warn: containerImage not pinned by hash: Dockerfile:285
Warn: containerImage not pinned by hash: Dockerfile:295
Warn: containerImage not pinned by hash: Dockerfile:316
Warn: containerImage not pinned by hash: Dockerfile:317
Warn: containerImage not pinned by hash: Dockerfile:318
Warn: containerImage not pinned by hash: Dockerfile:321
Warn: containerImage not pinned by hash: Dockerfile:329
Warn: containerImage not pinned by hash: Dockerfile:351
Warn: containerImage not pinned by hash: Dockerfile:352
Warn: containerImage not pinned by hash: Dockerfile:353
Warn: containerImage not pinned by hash: Dockerfile:356
Warn: containerImage not pinned by hash: Dockerfile:363
Warn: containerImage not pinned by hash: Dockerfile:385
Warn: containerImage not pinned by hash: Dockerfile:386
Warn: containerImage not pinned by hash: Dockerfile:387
Warn: containerImage not pinned by hash: Dockerfile:389
Warn: containerImage not pinned by hash: Dockerfile:421
Warn: containerImage not pinned by hash: Dockerfile:422
Warn: containerImage not pinned by hash: Dockerfile:423
Warn: containerImage not pinned by hash: Dockerfile:424
Warn: containerImage not pinned by hash: Dockerfile:427
Warn: containerImage not pinned by hash: Dockerfile:433
Warn: containerImage not pinned by hash: Dockerfile:450
Warn: containerImage not pinned by hash: Dockerfile:451
Warn: containerImage not pinned by hash: Dockerfile:452
Warn: containerImage not pinned by hash: Dockerfile:453
Warn: containerImage not pinned by hash: Dockerfile:454
Warn: containerImage not pinned by hash: Dockerfile:455
Warn: containerImage not pinned by hash: Dockerfile:457
Warn: containerImage not pinned by hash: Dockerfile:495
Warn: containerImage not pinned by hash: Dockerfile:505
Warn: containerImage not pinned by hash: Dockerfile:507
Warn: containerImage not pinned by hash: Dockerfile:514
Warn: containerImage not pinned by hash: Dockerfile:575
Warn: containerImage not pinned by hash: Dockerfile:650
Warn: containerImage not pinned by hash: Dockerfile:662
Warn: containerImage not pinned by hash: Dockerfile:669
Warn: containerImage not pinned by hash: Dockerfile.simple:13
Warn: containerImage not pinned by hash: Dockerfile.windows:159
Warn: containerImage not pinned by hash: contrib/busybox/Dockerfile:18
Warn: containerImage not pinned by hash: contrib/httpserver/Dockerfile:1: pin your Docker image by updating busybox to busybox@sha256:a5d0ce49aa801d475da48f8cb163c354ab95cab073cd3c138bd458fc8257fbf1
Warn: containerImage not pinned by hash: contrib/nnp-test/Dockerfile:1: pin your Docker image by updating debian:bookworm-slim to debian:bookworm-slim@sha256:40b107342c492725bc7aacbe93a49945445191ae364184a6d24fedb28172f6f7
Warn: containerImage not pinned by hash: contrib/syscall-test/Dockerfile:1: pin your Docker image by updating debian:bookworm-slim to debian:bookworm-slim@sha256:40b107342c492725bc7aacbe93a49945445191ae364184a6d24fedb28172f6f7
Warn: containerImage not pinned by hash: hack/dockerfiles/generate-files.Dockerfile:8
Warn: containerImage not pinned by hash: hack/dockerfiles/generate-files.Dockerfile:22
Warn: containerImage not pinned by hash: hack/dockerfiles/generate-files.Dockerfile:34
Warn: containerImage not pinned by hash: hack/dockerfiles/generate-files.Dockerfile:48
Warn: containerImage not pinned by hash: hack/dockerfiles/generate-files.Dockerfile:60
Warn: containerImage not pinned by hash: hack/dockerfiles/govulncheck.Dockerfile:7
Warn: containerImage not pinned by hash: hack/dockerfiles/govulncheck.Dockerfile:15
Warn: containerImage not pinned by hash: libnetwork/cmd/diagnostic/Dockerfile.client:1: pin your Docker image by updating alpine to alpine@sha256:56fa17d2a7e7f168a043a2712e63aed1f8543aeafdcee47c58dcffe38ed51099
Warn: containerImage not pinned by hash: libnetwork/cmd/diagnostic/Dockerfile.dind:1: pin your Docker image by updating docker:17.12-dind to docker:17.12-dind@sha256:015f2060ca189adb658d2aa16fbc9acb9a6ce902d0914affcf22c7d2edef3ad8
Warn: containerImage not pinned by hash: libnetwork/cmd/networkdb-test/Dockerfile:1: pin your Docker image by updating alpine to alpine@sha256:56fa17d2a7e7f168a043a2712e63aed1f8543aeafdcee47c58dcffe38ed51099
Warn: containerImage not pinned by hash: libnetwork/cmd/ssd/Dockerfile:1: pin your Docker image by updating alpine:3.7 to alpine:3.7@sha256:8421d9a84432575381bfabd248f1eb56f3aa21d9d7cd2511583c68c9b7511d10
Warn: containerImage not pinned by hash: libnetwork/support/Dockerfile:1: pin your Docker image by updating docker:18-dind to docker:18-dind@sha256:86df3c3573065f2c6f24cd925fd5bc3a0aff899bdf664ff4d2e3ebab26d96bed
Warn: goCommand not pinned by hash: Dockerfile:254-257
Warn: pipCommand not pinned by hash: libnetwork/cmd/ssd/Dockerfile:22-30
Warn: pipCommand not pinned by hash: libnetwork/cmd/ssd/Dockerfile:33
Warn: goCommand not pinned by hash: vendor/github.com/agext/levenshtein/test.sh:5
Warn: goCommand not pinned by hash: vendor/github.com/pelletier/go-toml/benchmark.sh:10
Info: 0 out of 71 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 51 third-party GitHubAction dependencies pinned
Info: 0 out of 3 goCommand dependencies pinned
Info: 0 out of 2 pipCommand dependencies pinned
Info: 0 out of 82 containerImage dependencies pinned