Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:116: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:123: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:130: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:160: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:163: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:175: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:182: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:235: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:246: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:249: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:261: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:268: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:320: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:331: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:403: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:434: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:440: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:446: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:452: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:458: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/buildimage.yml:464: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/buildimage.yml:473: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/buildimage.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/publish.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/test.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/test.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/test.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/test.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/test.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/test.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/test.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/test.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:123: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/test.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:129: update your workflow using https://app.stepsecurity.io/secureworkflow/turbot/steampipe-postgres-fdw/test.yml/develop?enable=pin
Warn: containerImage not pinned by hash: Dockerfile:12: pin your Docker image by updating ubuntu:focal to ubuntu:focal@sha256:8e5c4f0285ecbb4ead070431d29b576a530d3166df73ec44affc1cd27555141b
Warn: goCommand not pinned by hash: .github/workflows/test.yml:138
Info: 0 out of 33 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 4 third-party GitHubAction dependencies pinned
Info: 0 out of 1 containerImage dependencies pinned
Info: 0 out of 1 goCommand dependencies pinned