Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/black_box_tests.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/black_box_tests.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/black_box_tests.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/black_box_tests.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/black_box_tests.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/black_box_tests.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/black_box_tests.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/black_box_tests.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/black_box_tests.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/black_box_tests.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:141: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:145: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:152: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:103: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:106: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:112: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:120: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:127: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:165: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:168: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:188: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:191: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:207: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:210: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:212: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:219: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:233: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:234: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:238: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:246: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:259: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:262: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:269: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:275: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:293: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:318: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/build.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/canary_release.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/canary_release.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/canary_release.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/canary_release.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/deploy-docs.yaml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/deploy-docs.yaml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/deploy-docs.yaml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/deploy-docs.yaml/4.x?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/deploy-docs.yaml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/deploy-docs.yaml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e_network_tests.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/e2e_network_tests.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e_network_tests.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/e2e_network_tests.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e_network_tests.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/e2e_network_tests.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e_network_tests.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/e2e_network_tests.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e_network_tests.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/e2e_network_tests.yml/4.x?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/stale.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/web3/web3.js/stale.yml/4.x?enable=pin
Warn: npmCommand not pinned by hash: .github/workflows/build.yml:218
Warn: npmCommand not pinned by hash: .github/workflows/build.yml:268
Info: 0 out of 45 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 7 third-party GitHubAction dependencies pinned
Info: 0 out of 2 npmCommand dependencies pinned