Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/build.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/build.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/clang-format-lint.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/clang-format-lint.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/clang-format-lint.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/clang-format-lint.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/codeql.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/codeql.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/codeql.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/codeql.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/codeql.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/codeql.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/codeql.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/infer.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/infer.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/infer.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/infer.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/infer.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/infer.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/infer.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/infer.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/project_structure.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/project_structure.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/project_structure.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/project_structure.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/stale.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/stale.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-directorymd.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/update-directorymd.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/update-directorymd.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/update-directorymd.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/update-directorymd.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/TheAlgorithms/Java/update-directorymd.yml/master?enable=pin
Warn: containerImage not pinned by hash: .devcontainer/Dockerfile:5
Warn: containerImage not pinned by hash: .gitpod.dockerfile:1: pin your Docker image by updating gitpod/workspace-java-21:2025-06-18-16-47-14 to gitpod/workspace-java-21:2025-06-18-16-47-14@sha256:504bf8bba9382dca717f53c24a099b17ed6dfa619af9ba175c846dbe01bdce95
Info: 0 out of 17 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 6 third-party GitHubAction dependencies pinned
Info: 0 out of 2 containerImage dependencies pinned