Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-test.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/build-test.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-test.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/build-test.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-test.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/build-test.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-test.yml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/build-test.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-test.yml:95: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/build-test.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-test.yml:100: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/build-test.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/codeql-analysis.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/codeql-analysis.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/codeql-analysis.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/codeql-analysis.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/dep-auto-merge.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/dep-auto-merge.yml/dev?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/dep-auto-merge.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/dep-auto-merge.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/dockerhub-push.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/dockerhub-push.yml/dev?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/dockerhub-push.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/dockerhub-push.yml/dev?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/dockerhub-push.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/dockerhub-push.yml/dev?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/dockerhub-push.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/dockerhub-push.yml/dev?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/dockerhub-push.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/dockerhub-push.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/functional-test.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/functional-test.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/functional-test.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/functional-test.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint-test.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/lint-test.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint-test.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/lint-test.yml/dev?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint-test.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/lint-test.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-binary.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-binary.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-binary.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-binary.yml/dev?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-binary.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-binary.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-binary.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-binary.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-binary.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-binary.yml/dev?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-binary.yml:47: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-binary.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-binary.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-binary.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-binary.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-binary.yml/dev?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-binary.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-binary.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-test.yml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-test.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-test.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-test.yml/dev?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-test.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-test.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-test.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-test.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-test.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-test.yml/dev?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-test.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-test.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-test.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-test.yml/dev?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-test.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-test.yml/dev?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-test.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/projectdiscovery/naabu/release-test.yml/dev?enable=pin
Warn: containerImage not pinned by hash: Dockerfile:2
Warn: containerImage not pinned by hash: Dockerfile:10: pin your Docker image by updating alpine:3.21.0 to alpine:3.21.0@sha256:21dc6063fd678b478f57c0e13f47560d0ea4eeba26dfc947b2a4f81f686b9f45
Info: 0 out of 28 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 12 third-party GitHubAction dependencies pinned
Info: 0 out of 2 containerImage dependencies pinned
Info: 1 out of 1 goCommand dependencies pinned