Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-containerlab.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/build-containerlab.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build-containerlab.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/build-containerlab.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-containerlab.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/build-containerlab.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-containerlab.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/build-containerlab.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-devcontainer.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/build-devcontainer.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build-devcontainer.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/build-devcontainer.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build-devcontainer.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/build-devcontainer.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build-devcontainer.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/build-devcontainer.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build-devcontainer.yml:87: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/build-devcontainer.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build-devcontainer.yml:107: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/build-devcontainer.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:433: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:437: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:441: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:452: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:584: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:589: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:47: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:239: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:242: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:249: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:255: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:273: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:284: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:293: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:506: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:511: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:516: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:529: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:536: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:539: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:553: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:558: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:169: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:172: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:179: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:185: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:203: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:213: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:222: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:120: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:121: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:126: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:143: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:92: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:98: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:319: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:322: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:328: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:334: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:355: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:364: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:461: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:464: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cicd.yml:473: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cicd.yml:485: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cicd.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cisco_iol-tests.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cisco_iol-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cisco_iol-tests.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cisco_iol-tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cisco_iol-tests.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cisco_iol-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cisco_iol-tests.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cisco_iol-tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cisco_iol-tests.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cisco_iol-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cisco_iol-tests.yml:74: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cisco_iol-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cisco_iol-tests.yml:83: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/cisco_iol-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:81: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/force-build.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/force-build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/force-build.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/force-build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/force-build.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/force-build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/force-build.yml:47: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/force-build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/force-build.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/force-build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/force-build.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/force-build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/force-build.yml:73: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/force-build.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/fortigate-tests.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/fortigate-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/fortigate-tests.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/fortigate-tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/fortigate-tests.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/fortigate-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/fortigate-tests.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/fortigate-tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/fortigate-tests.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/fortigate-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/fortigate-tests.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/fortigate-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/fortigate-tests.yml:80: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/fortigate-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/golangci-lint.yml:9: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/golangci-lint.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/golangci-lint.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/golangci-lint.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/kind-tests.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/kind-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/kind-tests.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/kind-tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/kind-tests.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/kind-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/kind-tests.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/kind-tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/kind-tests.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/kind-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/kind-tests.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/kind-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/kind-tests.yml:80: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/kind-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/smoke-tests.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/smoke-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/smoke-tests.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/smoke-tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/smoke-tests.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/smoke-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/smoke-tests.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/smoke-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/smoke-tests.yml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/smoke-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/smoke-tests.yml:102: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/smoke-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/srlinux-tests.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/srlinux-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/srlinux-tests.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/srlinux-tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/srlinux-tests.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/srlinux-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/srlinux-tests.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/srlinux-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/srlinux-tests.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/srlinux-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/srlinux-tests.yml:84: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/srlinux-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sros-tests.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/sros-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sros-tests.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/sros-tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/sros-tests.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/sros-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sros-tests.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/sros-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sros-tests.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/sros-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sros-tests.yml:74: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/sros-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/vxlan-tests.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/vxlan-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/vxlan-tests.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/vxlan-tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/vxlan-tests.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/vxlan-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/vxlan-tests.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/vxlan-tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/vxlan-tests.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/vxlan-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/vxlan-tests.yml:73: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/vxlan-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/vxlan-tests.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/srl-labs/containerlab/vxlan-tests.yml/main?enable=pin
Warn: containerImage not pinned by hash: .devcontainer/Dockerfile:1: pin your Docker image by updating mcr.microsoft.com/devcontainers/python:3.11-bookworm to mcr.microsoft.com/devcontainers/python:3.11-bookworm@sha256:138c451b17c1c5930f77e71a6510a0bae1d7b77feff5e0a714a22fa3d757a51f
Warn: containerImage not pinned by hash: .devcontainer/slim.Dockerfile:1: pin your Docker image by updating mcr.microsoft.com/devcontainers/python:3.11-bookworm to mcr.microsoft.com/devcontainers/python:3.11-bookworm@sha256:138c451b17c1c5930f77e71a6510a0bae1d7b77feff5e0a714a22fa3d757a51f
Warn: containerImage not pinned by hash: goreleaser.dockerfile:1: pin your Docker image by updating alpine:3 to alpine:3@sha256:a8560b36e8b8210634f77d9f7f9efd7ffa463e380b75e2e74aff4511df3ef88c
Warn: pipCommand not pinned by hash: .devcontainer/Dockerfile:75-77
Warn: downloadThenRun not pinned by hash: .devcontainer/zsh/install-zsh-plugins.sh:4
Warn: goCommand not pinned by hash: .github/workflows/cicd.yml:112
Info: 0 out of 78 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 39 third-party GitHubAction dependencies pinned
Info: 0 out of 3 containerImage dependencies pinned
Info: 0 out of 1 pipCommand dependencies pinned
Info: 0 out of 1 downloadThenRun dependencies pinned
Info: 0 out of 1 goCommand dependencies pinned