Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-10-11.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-10-11.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-10-11.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-10-11.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-10-11.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-10-11.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-10-11.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-10-11.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-10-11.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-10-11.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-10-11.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-10-11.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-10-11.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-10-11.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-12-13.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-12-13.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-12-13.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-12-13.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-12-13.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-12-13.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-12-13.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-12-13.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-12-13.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-12-13.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-12-13.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-12-13.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-12-13.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-12-13.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-14-15.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-14-15.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-14-15.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-14-15.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-14-15.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-14-15.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-14-15.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-14-15.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-14-15.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-14-15.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-14-15.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-14-15.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-14-15.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-14-15.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-16-17.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-16-17.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-16-17.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-16-17.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-16-17.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-16-17.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-16-17.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-16-17.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-16-17.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-16-17.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-16-17.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-16-17.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-16-17.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-16-17.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-18-19.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-18-19.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-18-19.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-18-19.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-18-19.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-18-19.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-18-19.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-18-19.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-18-19.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-18-19.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-18-19.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-18-19.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-18-19.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-18-19.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-20-21.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-20-21.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-20-21.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-20-21.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-20-21.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-20-21.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-20-21.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-20-21.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-20-21.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-20-21.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-20-21.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-20-21.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-20-21.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-20-21.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-22+.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-22+.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-22+.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-22+.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-22+.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-22+.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-22+.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-22+.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-22+.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-22+.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-22+.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-22+.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-22+.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-22+.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-4-6.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-4-6.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-4-6.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-4-6.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-4-6.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-4-6.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-4-6.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-4-6.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-4-6.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-4-6.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-4-6.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-4-6.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-4-6.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-4-6.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-7-9.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-7-9.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-7-9.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-7-9.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-7-9.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-7-9.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-7-9.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-7-9.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-7-9.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-7-9.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-7-9.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-7-9.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-7-9.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-7-9.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-iojs.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-iojs.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-iojs.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-iojs.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-iojs.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-iojs.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-iojs.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-iojs.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-iojs.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-iojs.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-iojs.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-iojs.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-iojs.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-iojs.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-zero.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-zero.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-zero.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-zero.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-zero.yml:73: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-zero.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-zero.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-zero.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-zero.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-zero.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-zero.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-zero.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-zero.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/node-zero.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/require-allow-edits.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/has-tostringtag/require-allow-edits.yml/main?enable=pin
Info: 0 out of 22 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 56 third-party GitHubAction dependencies pinned