Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/dependabot-auto-merge.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/dependabot-auto-merge.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:449: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:455: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:481: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:491: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:500: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:515: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:123: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:131: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:163: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:171: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:179: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:186: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:209: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:218: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:221: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:225: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:233: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:239: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:254: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:274: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:309: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:317: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:327: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:339: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:346: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:410: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:415: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:423: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-extension-ci.yml:435: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-extension-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-ghcr-cleanup.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-ghcr-cleanup.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/reusable-snyk-scan.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-snyk-scan.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-snyk-scan.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-snyk-scan.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reusable-snyk-scan.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/steadybit/extension-kit/reusable-snyk-scan.yml/main?enable=pin
Warn: npmCommand not pinned by hash: .github/workflows/reusable-extension-ci.yml:463
Info: 0 out of 14 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 23 third-party GitHubAction dependencies pinned
Info: 0 out of 1 npmCommand dependencies pinned