Info: Possibly incomplete results: error parsing shell code: not a valid test operator: ~=: .github/workflows/main.yml:94
Info: Possibly incomplete results: error parsing shell code: not a valid test operator: ~=: .github/workflows/main.yml:262
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:81: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:183: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:189: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:197: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:225: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:227: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:231: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:233: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:238: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:249: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:317: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pr.yaml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/pr.yaml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr.yaml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/pr.yaml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr.yaml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/pr.yaml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr.yaml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/pr.yaml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr.yaml:97: update your workflow using https://app.stepsecurity.io/secureworkflow/node-red/node-red-docker/pr.yaml/master?enable=pin
Warn: containerImage not pinned by hash: .docker/Dockerfile.alpine:5
Warn: containerImage not pinned by hash: .docker/Dockerfile.alpine:46
Warn: containerImage not pinned by hash: .docker/Dockerfile.alpine:55
Warn: containerImage not pinned by hash: .docker/Dockerfile.debian:5
Warn: containerImage not pinned by hash: .docker/Dockerfile.debian:47
Warn: containerImage not pinned by hash: .docker/Dockerfile.debian:56
Warn: containerImage not pinned by hash: docker-custom/Dockerfile.custom:6
Warn: containerImage not pinned by hash: docker-custom/Dockerfile.custom:46
Warn: containerImage not pinned by hash: docker-custom/Dockerfile.custom:55
Warn: containerImage not pinned by hash: docker-custom/Dockerfile.debian:6
Warn: containerImage not pinned by hash: docker-custom/Dockerfile.debian:48
Warn: containerImage not pinned by hash: docker-custom/Dockerfile.debian:57
Warn: npmCommand not pinned by hash: .docker/Dockerfile.alpine:49-52
Warn: npmCommand not pinned by hash: .docker/Dockerfile.debian:50-53
Warn: npmCommand not pinned by hash: docker-custom/Dockerfile.custom:49-52
Warn: npmCommand not pinned by hash: docker-custom/Dockerfile.debian:51-54
Info: 0 out of 3 GitHub-owned GitHubAction dependencies pinned
Info: 2 out of 18 third-party GitHubAction dependencies pinned
Info: 0 out of 12 containerImage dependencies pinned
Info: 0 out of 4 npmCommand dependencies pinned