Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:83: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:86: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/integration.yml:87: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/integration.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:104: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:105: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:120: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:121: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:280: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:281: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:135: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:136: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:137: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:144: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:217: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:218: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:221: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:291: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:294: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:298: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:308: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:319: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:322: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:326: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:336: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:345: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:348: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:352: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:179: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:180: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:184: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:188: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:192: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:197: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:253: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:256: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:257: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:269: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:155: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:156: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:157: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:164: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:206: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:207: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:240: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:241: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/verify.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify.yml:85: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/verify.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify.yml:86: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/verify.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify.yml:89: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/verify.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/verify.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/verify.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/verify.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/verify.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/verify.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/verify.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/verify.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/verify.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify.yml:47: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/verify.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/verify.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/verify.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/verify.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/verify.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/sjug/cri-o/verify.yml/master?enable=pin
Warn: containerImage not pinned by hash: .gitpod.Dockerfile:1: pin your Docker image by updating gitpod/workspace-full to gitpod/workspace-full@sha256:bec45ebdcc9b9c5ec28d5c61c16bf599200aa0d2dc1e69e2ed8ab0a424bae6db
Warn: containerImage not pinned by hash: images/os/Dockerfile:1
Warn: goCommand not pinned by hash: vendor/github.com/json-iterator/go/build.sh:10
Warn: goCommand not pinned by hash: vendor/google.golang.org/grpc/regenerate.sh:35
Warn: goCommand not pinned by hash: vendor/google.golang.org/grpc/vet.sh:39
Warn: goCommand not pinned by hash: vendor/google.golang.org/grpc/vet.sh:49
Info: 0 out of 75 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 6 third-party GitHubAction dependencies pinned
Info: 0 out of 2 containerImage dependencies pinned
Info: 1 out of 5 goCommand dependencies pinned