Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:613: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:615: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:621: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:627: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:640: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:657: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:668: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:670: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:672: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:674: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:676: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:678: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:680: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:682: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:690: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:695: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:164: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:166: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:219: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:221: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:249: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:255: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:270: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:359: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:361: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:368: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:576: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:578: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:583: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:598: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:323: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:325: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:331: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:413: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:415: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:442: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:454: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:460: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:466: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:472: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:478: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:484: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:490: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:496: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:502: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:508: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:514: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:80: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:118: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:120: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:150: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:189: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:191: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:198: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:283: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:285: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:307: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:384: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:386: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:393: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:526: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:528: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:535: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:551: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:553: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:560: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:92: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:94: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests-breaking-esm.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/e2e-tests-breaking-esm.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests-breaking-esm.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/e2e-tests-breaking-esm.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests-breaking-esm.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/e2e-tests-breaking-esm.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests-breaking-esm.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/e2e-tests-breaking-esm.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests-breaking-esm.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/e2e-tests-breaking-esm.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests-breaking-esm.yml:79: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/e2e-tests-breaking-esm.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests-breaking-esm.yml:86: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/e2e-tests-breaking-esm.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests-breaking-esm.yml:96: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/e2e-tests-breaking-esm.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/e2e-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/e2e-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/e2e-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/e2e-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/e2e-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/e2e-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests.yml:79: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/e2e-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-tests.yml:89: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/e2e-tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-triage.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/issue-triage.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-triage.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/issue-triage.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-triage.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/issue-triage.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-triage.yml:90: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/issue-triage.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/lock.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/lock.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:110: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:155: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:186: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/release.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:192: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/release.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:202: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/release.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:220: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/release.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:229: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:252: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/release.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:265: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:298: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:304: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/release.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:317: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/release.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/reminders.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/reminders.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/repl.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/repl.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/repl.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/repl.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-compat-data.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/update-compat-data.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-compat-data.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/update-compat-data.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-compat-data.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/update-compat-data.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/update-compat-data.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/update-compat-data.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-parser-tests.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/update-parser-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-parser-tests.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/update-parser-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-parser-tests.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/update-parser-tests.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/update-parser-tests.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/update-parser-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-windows-fixtures.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/update-windows-fixtures.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-windows-fixtures.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/update-windows-fixtures.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-windows-fixtures.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/babel/babel/update-windows-fixtures.yml/main?enable=pin
Warn: npmCommand not pinned by hash: scripts/integration-tests/e2e-create-react-app.sh:22
Warn: npmCommand not pinned by hash: scripts/integration-tests/e2e-create-react-app.sh:60
Warn: npmCommand not pinned by hash: scripts/integration-tests/e2e-create-react-app.sh:63
Warn: npmCommand not pinned by hash: scripts/integration-tests/e2e-nextjs-10.sh:28
Warn: npmCommand not pinned by hash: scripts/integration-tests/e2e-react-native.sh:47
Info: 0 out of 108 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 15 third-party GitHubAction dependencies pinned
Info: 3 out of 8 npmCommand dependencies pinned