Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/debug.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/debug.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/debug.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/debug.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/debug.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/debug.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/dependencies-review.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/dependencies-review.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/dependencies-review.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/dependencies-review.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/govulncheck.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/govulncheck.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/govulncheck.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/govulncheck.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/govulncheck.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/govulncheck.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/linkchecker.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/linkchecker.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/linkchecker.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/linkchecker.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint-pr.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/lint-pr.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/lint.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/lint.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/lint.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/lint.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/lint.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/lint.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/lint.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/lint.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/lint.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/lint.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/lint.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/proto.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/proto.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-umee-docker.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/release-umee-docker.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-umee-docker.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/release-umee-docker.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-umee-docker.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/release-umee-docker.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-umee-docker.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/release-umee-docker.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-umee-docker.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/release-umee-docker.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-umee.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/release-umee.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-umee.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/release-umee.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-umee.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/release-umee.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-umee.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/release-umee.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/simulations.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/simulations.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/simulations.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/simulations.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/simulations.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/simulations.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/simulations.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/simulations.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/simulations.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/simulations.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/simulations.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/simulations.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/simulations.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/simulations.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/simulations.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/simulations.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/simulations.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/simulations.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/simulations.yml:87: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/simulations.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/simulations.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/simulations.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/simulations.yml:95: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/simulations.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/simulations.yml:100: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/simulations.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/simulations.yml:116: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/simulations.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/simulations.yml:117: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/simulations.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/simulations.yml:124: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/simulations.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/simulations.yml:129: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/simulations.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:78: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:87: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:102: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:103: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:110: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:127: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/tests.yml:128: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:139: update your workflow using https://app.stepsecurity.io/secureworkflow/umee-network/umee/tests.yml/main?enable=pin
Warn: containerImage not pinned by hash: contrib/images/umee.e2e-static.dockerfile:5
Warn: containerImage not pinned by hash: contrib/images/umee.e2e-static.dockerfile:28: pin your Docker image by updating alpine:3.19 to alpine:3.19@sha256:e5d0aea7f7d2954678a9a6269ca2d06e06591881161961ea59e974dff3f12377
Warn: containerImage not pinned by hash: contrib/images/umee.e2e.dockerfile:4
Warn: containerImage not pinned by hash: contrib/images/umee.e2e.dockerfile:21: pin your Docker image by updating ubuntu:24.04 to ubuntu:24.04@sha256:72297848456d5d37d1262630108ab308d3e9ec7ed1c3286a32fe09856619a782
Warn: containerImage not pinned by hash: contrib/images/umeed.dockerfile:4
Warn: containerImage not pinned by hash: contrib/images/umeed.dockerfile:17: pin your Docker image by updating ubuntu:24.04 to ubuntu:24.04@sha256:72297848456d5d37d1262630108ab308d3e9ec7ed1c3286a32fe09856619a782
Warn: containerImage not pinned by hash: tests/e2e/docker/gaia.Dockerfile:1: pin your Docker image by updating golang:1.20 to golang:1.20@sha256:8f9af7094d0cb27cc783c697ac5ba25efdc4da35f8526db21f7aebb0b0b4f18a
Warn: containerImage not pinned by hash: tests/e2e/docker/hermes.Dockerfile:1
Warn: containerImage not pinned by hash: tests/e2e/docker/hermes.Dockerfile:3: pin your Docker image by updating debian:buster-slim to debian:buster-slim@sha256:bb3dc79fddbca7e8903248ab916bb775c96ec61014b3d02b4f06043b604726dc
Warn: pipCommand not pinned by hash: contrib/scripts/process_genesis.sh:15
Warn: goCommand not pinned by hash: contrib/scripts/protoc-update-swagger-docs.sh:45
Info: 0 out of 42 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 27 third-party GitHubAction dependencies pinned
Info: 0 out of 9 containerImage dependencies pinned
Info: 0 out of 1 pipCommand dependencies pinned
Info: 2 out of 3 goCommand dependencies pinned