Warn: third-party GitHubAction not pinned by hash: .github/workflows/automerge.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/automerge.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/ci.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/ci.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/ci.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/codeql-analysis.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/codeql-analysis.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:91: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/codeql-analysis.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/deploy.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/deploy.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/fast-forward.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/fast-forward.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/install.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/install.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/install.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/install.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/install.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/install.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/install.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/install.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/install.yml:73: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/install.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/install.yml:96: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/install.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/install.yml:114: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/install.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/install.yml:118: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/install.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/mirror-image.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/mirror-image.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/mirror-image.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/mirror-image.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/mirror-image.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/mirror-image.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/mirror-image.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/mirror-image.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/mirror.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/mirror.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/mirror.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/mirror.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pg-prove.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/pg-prove.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pg-prove.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/pg-prove.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pg-prove.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/pg-prove.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pg-prove.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/pg-prove.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pg-prove.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/pg-prove.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pg-prove.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/pg-prove.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pg-prove.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/pg-prove.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-migra.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/publish-migra.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-migra.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/publish-migra.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-migra.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/publish-migra.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-migra.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/publish-migra.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-migra.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/publish-migra.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-migra.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/publish-migra.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-migra.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/publish-migra.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-beta.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release-beta.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-beta.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release-beta.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-beta.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release-beta.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-beta.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release-beta.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-beta.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release-beta.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-beta.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release-beta.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-beta.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release-beta.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-beta.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release-beta.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-beta.yml:83: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release-beta.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:84: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:85: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/release.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tag-npm.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/tag-npm.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tag-npm.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/supabase/cli/tag-npm.yml/develop?enable=pin
Warn: npmCommand not pinned by hash: .github/workflows/install.yml:47
Warn: npmCommand not pinned by hash: .github/workflows/install.yml:101
Info: 0 out of 40 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 25 third-party GitHubAction dependencies pinned
Info: 0 out of 2 npmCommand dependencies pinned