Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/after-release.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/after-release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/after-release.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/after-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:89: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:94: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:112: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:117: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:121: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:135: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:167: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:172: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:177: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:186: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:204: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:209: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:213: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:229: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:256: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:261: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:280: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:285: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:289: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:305: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:322: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:327: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:346: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:351: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:355: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:371: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:388: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:393: update your workflow using https://app.stepsecurity.io/secureworkflow/opsgenie/oec-scripts/release.yml/master?enable=pin
Warn: containerImage not pinned by hash: release/oec-builder/oec-deb/Dockerfile:3
Warn: containerImage not pinned by hash: release/oec-builder/oec-linux/Dockerfile:3
Warn: containerImage not pinned by hash: release/oec-builder/oec-rpm/Dockerfile:3
Warn: containerImage not pinned by hash: release/oec-builder/oec-win32/Dockerfile:3
Warn: containerImage not pinned by hash: release/oec-builder/oec-win64/Dockerfile:3
Warn: goCommand not pinned by hash: release/oec-builder/oec-deb/build:22
Warn: goCommand not pinned by hash: release/oec-builder/oec-linux/build:20
Warn: goCommand not pinned by hash: release/oec-builder/oec-rpm/build:22
Warn: goCommand not pinned by hash: release/oec-builder/oec-win32/build:21
Warn: goCommand not pinned by hash: release/oec-builder/oec-win64/build:21
Warn: goCommand not pinned by hash: .github/workflows/release.yml:81
Warn: goCommand not pinned by hash: .github/workflows/release.yml:144
Warn: goCommand not pinned by hash: .github/workflows/release.yml:238
Warn: goCommand not pinned by hash: .github/workflows/release.yml:314
Warn: goCommand not pinned by hash: .github/workflows/release.yml:380
Info: 0 out of 25 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 11 third-party GitHubAction dependencies pinned
Info: 0 out of 5 containerImage dependencies pinned
Info: 0 out of 10 goCommand dependencies pinned