Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/add-guidelines.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/add-guidelines.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/add-guidelines.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/add-guidelines.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/add-guidelines.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/add-guidelines.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/backport.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/backport.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/backport.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/backport.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/backport.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/backport.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/backport.yml:94: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/backport.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/backport.yml:162: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/backport.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/branch-status-checks.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/branch-status-checks.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/branch-status-checks.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/branch-status-checks.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/code-checks.yaml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/code-checks.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/code-checks.yaml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/code-checks.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/community.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/community.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/community.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/community.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/docs-build.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/docs-build.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/docs-cleanup.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/docs-cleanup.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/get-target-branches.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/get-target-branches.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/get-target-branches.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/get-target-branches.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/kibana-mitre-update.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/kibana-mitre-update.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lock-versions.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/lock-versions.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lock-versions.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/lock-versions.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lock-versions.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/lock-versions.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/lock-versions.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/lock-versions.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lock-versions.yml:81: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/lock-versions.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/manual-backport.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/manual-backport.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/manual-backport.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/manual-backport.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/manual-backport.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/manual-backport.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pythonpackage.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/pythonpackage.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pythonpackage.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/pythonpackage.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pythonpackage.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/pythonpackage.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-docs.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/release-docs.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-docs.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/release-docs.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-docs.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/release-docs.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-fleet.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/release-fleet.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-fleet.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/release-fleet.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-fleet.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/release-fleet.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-fleet.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/release-fleet.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-fleet.yml:126: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/release-fleet.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-fleet.yml:152: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/release-fleet.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/version-code-and-release.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/version-code-and-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/version-code-and-release.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/version-code-and-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/version-code-and-release.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/elastic/detection-rules/version-code-and-release.yml/main?enable=pin
Warn: pipCommand not pinned by hash: .github/workflows/backport.yml:100
Warn: pipCommand not pinned by hash: .github/workflows/backport.yml:102
Warn: pipCommand not pinned by hash: .github/workflows/code-checks.yaml:29
Warn: pipCommand not pinned by hash: .github/workflows/code-checks.yaml:31
Warn: pipCommand not pinned by hash: .github/workflows/get-target-branches.yml:26
Warn: pipCommand not pinned by hash: .github/workflows/get-target-branches.yml:28
Warn: pipCommand not pinned by hash: .github/workflows/lock-versions.yml:36
Warn: pipCommand not pinned by hash: .github/workflows/lock-versions.yml:38
Warn: pipCommand not pinned by hash: .github/workflows/manual-backport.yml:55
Warn: pipCommand not pinned by hash: .github/workflows/manual-backport.yml:57
Warn: pipCommand not pinned by hash: .github/workflows/pythonpackage.yml:30
Warn: pipCommand not pinned by hash: .github/workflows/pythonpackage.yml:32
Warn: pipCommand not pinned by hash: .github/workflows/release-docs.yml:48
Warn: pipCommand not pinned by hash: .github/workflows/release-docs.yml:50
Warn: pipCommand not pinned by hash: .github/workflows/release-fleet.yml:84
Warn: pipCommand not pinned by hash: .github/workflows/release-fleet.yml:86
Warn: goCommand not pinned by hash: .github/workflows/release-fleet.yml:133
Info: 0 out of 35 GitHub-owned GitHubAction dependencies pinned
Info: 2 out of 9 third-party GitHubAction dependencies pinned
Info: 0 out of 16 pipCommand dependencies pinned
Info: 0 out of 1 goCommand dependencies pinned