Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:94: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:100: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:109: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:137: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:143: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:157: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:351: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:358: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:360: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:507: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:514: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:534: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:73: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:180: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:205: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:212: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:219: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:227: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:265: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:328: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:404: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:409: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/CI.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/bench.yml:87: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/bench.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/bench.yml:90: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/bench.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/bench.yml:97: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/bench.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/bench.yml:105: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/bench.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ecosystem-ci.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/ecosystem-ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ecosystem-ci.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/ecosystem-ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/lock.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/lock.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/nissuer.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/nissuer.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-crates.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-crates.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-crates.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-crates.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-crates.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-crates.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-crates.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-crates.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:203: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:211: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:221: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:226: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:231: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:236: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:260: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:266: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:283: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:307: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:314: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:322: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:347: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:354: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:361: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:384: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:391: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:401: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:511: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:529: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:603: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:619: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-npm-package.yml:624: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish-npm-package.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:180: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:80: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish.yml:84: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish.yml:90: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish.yml:96: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:118: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:132: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/publish.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/stale.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/swc-project/swc/stale.yml/main?enable=pin
Warn: downloadThenRun not pinned by hash: .github/workflows/CI.yml:381
Warn: downloadThenRun not pinned by hash: .github/workflows/CI.yml:422
Warn: npmCommand not pinned by hash: .github/workflows/CI.yml:442
Warn: npmCommand not pinned by hash: .github/workflows/CI.yml:444
Warn: npmCommand not pinned by hash: .github/workflows/CI.yml:489
Warn: downloadThenRun not pinned by hash: .github/workflows/CI.yml:156
Warn: downloadThenRun not pinned by hash: .github/workflows/publish-npm-package.yml:257
Warn: npmCommand not pinned by hash: .github/workflows/publish-npm-package.yml:373
Warn: npmCommand not pinned by hash: .github/workflows/publish-npm-package.yml:413
Warn: downloadThenRun not pinned by hash: .github/workflows/publish-npm-package.yml:636
Info: 0 out of 48 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 28 third-party GitHubAction dependencies pinned
Info: 0 out of 5 downloadThenRun dependencies pinned
Info: 0 out of 5 npmCommand dependencies pinned