Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-18+.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/node-18+.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-18+.yml:101: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/node-18+.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-18+.yml:102: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/node-18+.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-18+.yml:112: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/node-18+.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-minors.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/node-minors.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-minors.yml:97: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/node-minors.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-minors.yml:98: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/node-minors.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-minors.yml:110: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/node-minors.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-pretest.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/node-pretest.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-pretest.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/node-pretest.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-pretest.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/node-pretest.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-pretest.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/node-pretest.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/npm-publish.yml:100: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/npm-publish.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npm-publish.yml:110: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/npm-publish.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/npm-publish.yml:114: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/npm-publish.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/npm-publish.yml:125: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/npm-publish.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npm-publish.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/npm-publish.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/npm-publish.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/npm-publish.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npm-publish.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/npm-publish.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npm-publish.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/npm-publish.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/require-allow-edits.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/require-allow-edits.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/smoke-test.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/smoke-test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/smoke-test.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/smoke-test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/smoke-test.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/smoke-test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/type-check.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/type-check.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/type-check.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/jsx-eslint/eslint-plugin-react/type-check.yml/master?enable=pin
Warn: npmCommand not pinned by hash: .github/workflows/type-check.yml:61
Warn: npmCommand not pinned by hash: .github/workflows/type-check.yml:65
Info: 0 out of 11 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 20 third-party GitHubAction dependencies pinned
Info: 0 out of 2 npmCommand dependencies pinned