Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-workflow.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/ci-workflow.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-workflow.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/ci-workflow.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-workflow.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/ci-workflow.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-workflow.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/ci-workflow.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-workflow.yml:74: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/ci-workflow.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-workflow.yml:138: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/ci-workflow.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-workflow.yml:143: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/ci-workflow.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-workflow.yml:152: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/ci-workflow.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-workflow.yml:161: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/ci-workflow.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-workflow.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/ci-workflow.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-workflow.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/ci-workflow.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/codeql.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/codeql.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:91: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/codeql.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:177: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:180: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:87: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:89: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:92: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:101: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:111: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:112: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:116: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:122: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:143: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:145: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/create-release.yml:149: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/create-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/repolinter.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/repolinter.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/repolinter.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/repolinter.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/repolinter.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/repolinter.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/validate-pr.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/validate-pr.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/validate-pr.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/validate-pr.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/validate-pr.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/newrelic/node-native-metrics/validate-pr.yml/main?enable=pin
Warn: containerImage not pinned by hash: linux_arm.dockerfile:2
Warn: npmCommand not pinned by hash: .github/workflows/ci-workflow.yml:62
Warn: npmCommand not pinned by hash: .github/workflows/ci-workflow.yml:149
Warn: npmCommand not pinned by hash: .github/workflows/ci-workflow.yml:32
Warn: npmCommand not pinned by hash: .github/workflows/create-release.yml:36
Warn: npmCommand not pinned by hash: .github/workflows/create-release.yml:66
Warn: npmCommand not pinned by hash: .github/workflows/create-release.yml:98
Warn: npmCommand not pinned by hash: .github/workflows/create-release.yml:152
Info: 0 out of 33 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 8 third-party GitHubAction dependencies pinned
Info: 0 out of 1 containerImage dependencies pinned
Info: 0 out of 7 npmCommand dependencies pinned