Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/bump-version-on-merge-next.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/bump-version-on-merge-next.yml/next?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/bump-version-on-merge-next.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/bump-version-on-merge-next.yml/next?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/bump-version-on-merge-next.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/bump-version-on-merge-next.yml/next?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/bump-version-on-merge-next.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/bump-version-on-merge-next.yml/next?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/bump-version-on-merge-next.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/bump-version-on-merge-next.yml/next?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/bump-version-on-merge-next.yml:76: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/bump-version-on-merge-next.yml/next?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/bump-version-on-merge-next.yml:80: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/bump-version-on-merge-next.yml/next?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-a-release-draft.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/create-a-release-draft.yml/next?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-a-release-draft.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/create-a-release-draft.yml/next?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/create-a-release-draft.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/create-a-release-draft.yml/next?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/create-a-release-draft.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/create-a-release-draft.yml/next?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-a-release-draft.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/create-a-release-draft.yml/next?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-a-release-draft.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/create-a-release-draft.yml/next?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/create-a-release-draft.yml:86: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/create-a-release-draft.yml/next?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-a-release-draft.yml:90: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/create-a-release-draft.yml/next?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-a-release-draft.yml:108: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/create-a-release-draft.yml/next?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-a-release-draft.yml:119: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/create-a-release-draft.yml/next?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/create-a-release-draft.yml:130: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/create-a-release-draft.yml/next?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cypress.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/cypress.yml/next?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cypress.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/cypress.yml/next?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cypress.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/cypress.yml/next?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/eslint.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/eslint.yml/next?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/eslint.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/eslint.yml/next?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-package-to-npm.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/publish-package-to-npm.yml/next?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-package-to-npm.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/publish-package-to-npm.yml/next?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-package-to-npm.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/publish-package-to-npm.yml/next?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-package-to-npm.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/publish-package-to-npm.yml/next?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-package-to-npm.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/publish-package-to-npm.yml/next?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-package-to-npm.yml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/codex-team/editor.js/publish-package-to-npm.yml/next?enable=pin
Info: 0 out of 17 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 12 third-party GitHubAction dependencies pinned