{"id":36878754,"url":"https://github.com/allinbits/cosmos-sdk","last_synced_at":"2026-01-12T15:17:42.155Z","repository":{"id":38274237,"uuid":"265047211","full_name":"allinbits/cosmos-sdk","owner":"allinbits","description":"Experimental, friendly fork of the Cosmos SDK","archived":false,"fork":false,"pushed_at":"2025-06-13T00:38:08.000Z","size":218083,"stargazers_count":5,"open_issues_count":80,"forks_count":1,"subscribers_count":0,"default_branch":"main","last_synced_at":"2025-06-13T01:36:26.017Z","etag":null,"topics":["cosmos-sdk","go","golang","ibc","starport","tendermint"],"latest_commit_sha":null,"homepage":"https://cosmos.network/","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/allinbits.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":"SECURITY.md","support":null,"governance":null,"roadmap":"ROADMAP.md","authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2020-05-18T19:56:36.000Z","updated_at":"2025-03-15T06:21:44.000Z","dependencies_parsed_at":"2025-05-08T01:36:15.541Z","dependency_job_id":null,"html_url":"https://github.com/allinbits/cosmos-sdk","commit_stats":{"total_commits":10445,"total_committers":508,"mean_commits":"20.561023622047244","dds":0.9281953087601723,"last_synced_commit":"cb5b8cf1d3d90da22402b117c815839602bb82a4"},"previous_names":[],"tags_count":143,"template":false,"template_full_name":null,"purl":"pkg:github/allinbits/cosmos-sdk","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/allinbits%2Fcosmos-sdk","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/allinbits%2Fcosmos-sdk/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/allinbits%2Fcosmos-sdk/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/allinbits%2Fcosmos-sdk/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/allinbits","download_url":"https://codeload.github.com/allinbits/cosmos-sdk/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/allinbits%2Fcosmos-sdk/sbom","scorecard":{"id":185726,"data":{"date":"2025-08-11","repo":{"name":"github.com/allinbits/cosmos-sdk","commit":"cb5b8cf1d3d90da22402b117c815839602bb82a4"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":3,"checks":[{"name":"Code-Review","score":0,"reason":"Found 0/30 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: SECURITY.md:1","Info: Found linked content: SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: SECURITY.md:1","Info: Found text in security policy: SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Dangerous-Workflow","score":0,"reason":"dangerous workflow patterns detected","details":["Warn: script injection with untrusted input ' github.event.pull_request.title ': .github/workflows/dependabot-update-all.yml:24","Warn: script injection with untrusted input ' github.event.pull_request.title ': .github/workflows/dependabot-update-all.yml:24","Warn: script injection with untrusted input ' github.event.pull_request.title ': .github/workflows/fork-cherry-pick.yml:38"],"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Info: jobLevel 'contents' permission set to 'read': .github/workflows/codeql-analysis.yml:20","Info: jobLevel 'actions' permission set to 'read': .github/workflows/codeql-analysis.yml:19","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/deploy-docs.yml:21","Info: jobLevel 'pull-requests' permission set to 'read': .github/workflows/lint-pr.yml:16","Warn: jobLevel 'statuses' permission set to 'write': .github/workflows/lint-pr.yml:17","Info: jobLevel 'contents' permission set to 'read': .github/workflows/pr_labeler.yml:11","Info: jobLevel 'contents' permission set to 'read': .github/workflows/proto-docker.yml:31","Info: found token with 'none' permissions: .github/workflows/sims-045.yml:130","Info: found token with 'none' permissions: .github/workflows/sims-045.yml:30","Info: found token with 'none' permissions: .github/workflows/sims-046.yml:130","Info: found token with 'none' permissions: .github/workflows/sims-046.yml:30","Info: found token with 'none' permissions: .github/workflows/sims-047.yml:130","Info: found token with 'none' permissions: .github/workflows/sims-047.yml:30","Info: found token with 'none' permissions: .github/workflows/sims-050.yml:30","Info: found token with 'none' permissions: .github/workflows/sims-050.yml:130","Info: found token with 'none' permissions: .github/workflows/sims-nightly.yml:20","Info: found token with 'none' permissions: .github/workflows/sims-nightly.yml:77","Info: found token with 'none' permissions: .github/workflows/sims.yml:115","Info: jobLevel 'contents' permission set to 'read': .github/workflows/sims.yml:17","Info: topLevel 'contents' permission set to 'read': .github/workflows/build-docs.yml:16","Info: topLevel 'contents' permission set to 'read': .github/workflows/build.yml:11","Warn: no topLevel permission defined: .github/workflows/clean-action-artifacts.yml:1","Warn: no topLevel permission defined: .github/workflows/codeql-analysis.yml:1","Warn: no topLevel permission defined: .github/workflows/consensuswarn.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/dependencies-review.yml:7","Info: topLevel 'contents' permission set to 'read': .github/workflows/deploy-docs.yml:16","Info: topLevel 'contents' permission set to 'read': .github/workflows/docker.yml:22","Warn: topLevel 'packages' permission set to 'write': .github/workflows/docker.yml:23","Warn: no topLevel permission defined: .github/workflows/fork-cherry-pick.yml:1","Warn: no topLevel permission defined: .github/workflows/gosec.yml:1","Warn: no topLevel permission defined: .github/workflows/issue_labeler.yml:1","Warn: no topLevel permission defined: .github/workflows/issues.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/lint-pr.yml:11","Info: topLevel 'contents' permission set to 'read': .github/workflows/lint.yml:10","Warn: no topLevel permission defined: .github/workflows/md-link-checker.yml:1","Warn: no topLevel permission defined: .github/workflows/pr-reviews.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/pr_labeler.yml:6","Warn: no topLevel permission defined: .github/workflows/proto-docker.yml:1","Warn: no topLevel permission defined: .github/workflows/proto-registry.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/proto.yml:10","Info: topLevel 'contents' permission set to 'read': .github/workflows/release-confix.yml:8","Info: topLevel 'contents' permission set to 'read': .github/workflows/release-cosmovisor.yml:8","Info: topLevel 'contents' permission set to 'read': .github/workflows/release.yml:11","Warn: no topLevel permission defined: .github/workflows/sims-045.yml:1","Warn: no topLevel permission defined: .github/workflows/sims-046.yml:1","Warn: no topLevel permission defined: .github/workflows/sims-047.yml:1","Warn: no topLevel permission defined: .github/workflows/sims-050.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/sims-nightly.yml:11","Warn: no topLevel permission defined: .github/workflows/sims.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/stale.yml:7","Warn: no topLevel permission defined: .github/workflows/staticmajor.yml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/test.yml:10"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Binary-Artifacts","score":9,"reason":"binaries present in source code","details":["Warn: binary detected: store/streaming/abci/examples/stdout/stdout:1"],"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'main'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Fuzzing","score":10,"reason":"project is fuzzed","details":["Info: GoBuiltInFuzzer integration found: client/fuzz_test.go:55","Info: GoBuiltInFuzzer integration found: fuzz/tests/crypto_hd_deriveprivatekeyforpath_test.go:18","Info: GoBuiltInFuzzer integration found: fuzz/tests/crypto_hd_newparamsfrompath_test.go:11","Info: GoBuiltInFuzzer integration found: fuzz/tests/crypto_types_compactbitarray_marshalunmarshal_test.go:11","Info: GoBuiltInFuzzer integration found: fuzz/tests/tendermint_amino_decodetime_test.go:12","Info: GoBuiltInFuzzer integration found: fuzz/tests/types_dec_setstring_test.go:12","Info: GoBuiltInFuzzer integration found: fuzz/tests/types_parsecoin_test.go:11","Info: GoBuiltInFuzzer integration found: fuzz/tests/types_parsedeccoin_test.go:11","Info: GoBuiltInFuzzer integration found: fuzz/tests/types_parsetimebytes_test.go:13","Info: GoBuiltInFuzzer integration found: fuzz/tests/types_verifyaddressformat_test.go:11","Info: GoBuiltInFuzzer integration found: fuzz/tests/unknownproto_test.go:12","Info: GoBuiltInFuzzer integration found: math/fuzz_test.go:7","Info: GoBuiltInFuzzer integration found: types/bech32/bech32_test.go:27","Info: GoBuiltInFuzzer integration found: types/bech32/fuzz_test.go:14","Info: GoBuiltInFuzzer integration found: types/fuzz_test.go:9","Info: GoBuiltInFuzzer integration found: types/query/fuzz_test.go:23","Info: GoBuiltInFuzzer integration found: x/tx/decode/fuzz_test.go:80","Info: GoBuiltInFuzzer integration found: x/tx/decode/fuzz_test.go:95","Info: GoBuiltInFuzzer integration found: x/tx/signing/aminojson/fuzz_test.go:16","Info: GoBuiltInFuzzer integration found: x/tx/signing/textual/fuzz_test.go:21","Info: GoBuiltInFuzzer integration found: x/tx/signing/textual/fuzz_test.go:43","Info: GoBuiltInFuzzer integration found: x/tx/signing/textual/fuzz_test.go:62","Info: GoBuiltInFuzzer integration found: x/tx/signing/textual/fuzz_test.go:111","Info: GoBuiltInFuzzer integration found: x/tx/signing/textual/fuzz_test.go:162","Info: GoBuiltInFuzzer integration found: x/tx/signing/textual/fuzz_test.go:224"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"SAST","score":10,"reason":"SAST tool detected: CodeQL","details":["Info: SAST configuration detected: CodeQL","Warn: no pull requests merged into dev branch"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Info: Possibly incomplete results: error parsing shell code: invalid parameter name: .github/workflows/dependabot-update-all.yml:31","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-docs.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/build-docs.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-docs.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/build-docs.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/build.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/build.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/build.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/changelog-reminder.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/changelog-reminder.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/changelog-reminder.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/changelog-reminder.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/clean-action-artifacts.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/clean-action-artifacts.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/codeql-analysis.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/codeql-analysis.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/codeql-analysis.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/codeql-analysis.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/codeql-analysis.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/consensuswarn.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/consensuswarn.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/consensuswarn.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/consensuswarn.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/dependabot-update-all.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/dependabot-update-all.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/dependabot-update-all.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/dependabot-update-all.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/dependabot-update-all.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/dependabot-update-all.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/dependencies-review.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/dependencies-review.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/dependencies-review.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/dependencies-review.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/dependencies-review.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/dependencies-review.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/deploy-docs.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/deploy-docs.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/deploy-docs.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/deploy-docs.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/deploy-docs.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/deploy-docs.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docker.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/docker.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/docker.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/docker.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/docker.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/docker.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/fork-cherry-pick.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/fork-cherry-pick.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/gosec.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/gosec.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/gosec.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/gosec.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/gosec.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/gosec.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/issue_labeler.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/issue_labeler.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/issues.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/issues.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint-pr.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/lint-pr.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint-pr.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/lint-pr.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint-pr.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/lint-pr.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/lint.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/lint.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/lint.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/lint.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/md-link-checker.yml:9: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/md-link-checker.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/md-link-checker.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/md-link-checker.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pr_labeler.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/pr_labeler.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/proto-docker.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/proto-docker.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/proto-docker.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/proto-docker.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/proto-docker.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/proto-docker.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/proto-docker.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/proto-docker.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/proto-docker.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/proto-docker.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/proto-registry.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/proto-registry.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/proto-registry.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/proto-registry.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/proto-registry.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/proto-registry.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/proto.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/proto.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/proto.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/proto.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/proto.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/proto.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/proto.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/proto.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/proto.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/proto.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/proto.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/proto.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-confix.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/release-confix.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-confix.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/release-confix.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-confix.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/release-confix.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-cosmovisor.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/release-cosmovisor.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-cosmovisor.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/release-cosmovisor.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-cosmovisor.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/release-cosmovisor.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-045.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-045.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-045.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-045.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-045.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-045.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-045.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-045.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-045.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-045.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-045.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-045.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-045.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-045.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-045.yml:91: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-045.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-045.yml:95: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-045.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-045.yml:109: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-045.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims-045.yml:118: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-045.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims-045.yml:137: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-045.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-045.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-045.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-045.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-045.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-045.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-045.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-045.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-045.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-046.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-046.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-046.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-046.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-046.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-046.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-046.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-046.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-046.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-046.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-046.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-046.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-046.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-046.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-046.yml:76: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-046.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-046.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-046.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-046.yml:91: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-046.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-046.yml:95: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-046.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-046.yml:109: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-046.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims-046.yml:118: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-046.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims-046.yml:137: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-046.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-046.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-046.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-046.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-046.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-047.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-047.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-047.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-047.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-047.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-047.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-047.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-047.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-047.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-047.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-047.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-047.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-047.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-047.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-047.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-047.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-047.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-047.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-047.yml:76: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-047.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-047.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-047.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-047.yml:91: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-047.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-047.yml:95: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-047.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-047.yml:109: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-047.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims-047.yml:118: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-047.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims-047.yml:137: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-047.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims-050.yml:137: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-050.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-050.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-050.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-050.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-050.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-050.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-050.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-050.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-050.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-050.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-050.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-050.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-050.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-050.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-050.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-050.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-050.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-050.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-050.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-050.yml:76: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-050.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-050.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-050.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-050.yml:91: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-050.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-050.yml:95: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-050.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-050.yml:109: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-050.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims-050.yml:118: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-050.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-nightly.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-nightly.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-nightly.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-nightly.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-nightly.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-nightly.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-nightly.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-nightly.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-nightly.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-nightly.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims-nightly.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-nightly.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims-nightly.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-nightly.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims-nightly.yml:83: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims-nightly.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:74: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:79: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sims.yml:94: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims.yml:103: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/sims.yml:122: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/sims.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/stale.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/stale.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/staticmajor.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/staticmajor.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/staticmajor.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/staticmajor.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:79: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:89: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:95: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:110: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:119: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:120: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:126: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:141: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:260: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:261: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:267: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:281: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:542: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:543: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:549: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:563: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:704: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:705: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:711: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:725: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:766: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:767: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:773: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:787: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:797: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:798: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:804: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:818: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:227: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:228: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:234: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:413: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:414: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:420: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:439: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:480: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:481: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:487: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:501: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:604: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:605: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:611: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:625: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:673: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:674: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:680: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:694: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:151: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:152: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:161: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:165: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:169: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:173: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:177: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:181: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:188: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:322: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:323: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:329: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:343: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:735: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:736: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:742: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:756: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:827: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:828: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:834: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:848: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:197: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:198: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:204: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:291: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:292: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:298: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:312: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:351: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:352: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:358: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:372: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:382: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:383: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:389: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:403: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:449: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:450: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:456: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:470: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:511: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:512: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:518: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:532: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:573: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:574: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:580: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:594: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:635: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:636: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:642: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:656: update your workflow using https://app.stepsecurity.io/secureworkflow/allinbits/cosmos-sdk/test.yml/main?enable=pin","Warn: containerImage not pinned by hash: Dockerfile:15","Warn: containerImage not pinned by hash: Dockerfile:43: pin your Docker image by updating alpine:3 to alpine:3@sha256:4bcff63911fcb4448bd4fdacec207030997caf25e9bea4045fa6c8c44de311d1","Warn: containerImage not pinned by hash: contrib/devtools/Dockerfile:5","Warn: containerImage not pinned by hash: contrib/devtools/Dockerfile:6: pin your Docker image by updating golang:1.20-alpine to golang:1.20-alpine@sha256:e47f121850f4e276b2b210c56df3fda9191278dd84a3a442bfe0b09934462a8f","Warn: containerImage not pinned by hash: contrib/images/simd-dlv/Dockerfile:1","Warn: containerImage not pinned by hash: contrib/images/simd-dlv/Dockerfile:23","Warn: containerImage not pinned by hash: contrib/images/simd-env/Dockerfile:1","Warn: containerImage not pinned by hash: contrib/images/simd-env/Dockerfile:22","Warn: npmCommand not pinned by hash: contrib/devtools/Dockerfile:17","Warn: goCommand not pinned by hash: contrib/devtools/Dockerfile:27-32","Warn: goCommand not pinned by hash: contrib/devtools/Dockerfile:27-32","Warn: goCommand not pinned by hash: contrib/images/simd-dlv/Dockerfile:4","Warn: npmCommand not pinned by hash: docs/build-all.sh:24","Warn: goCommand not pinned by hash: fuzz/oss-fuzz-build.sh:17","Warn: goCommand not pinned by hash: fuzz/oss-fuzz-build.sh:21","Warn: npmCommand not pinned by hash: .github/workflows/build-docs.yml:37","Warn: npmCommand not pinned by hash: .github/workflows/deploy-docs.yml:39","Info:   0 out of 180 GitHub-owned GitHubAction dependencies pinned","Info:   1 out of  90 third-party GitHubAction dependencies pinned","Info:   0 out of   8 containerImage dependencies pinned","Info:   2 out of   6 npmCommand dependencies pinned","Info:   8 out of  13 goCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Vulnerabilities","score":0,"reason":"65 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GO-2023-1988 / GHSA-2wrh-6pvc-2jm9","Warn: Project is vulnerable to: GO-2023-2102 / GHSA-4374-p667-p6c8","Warn: Project is vulnerable to: GO-2023-2153 / GHSA-m425-mq94-257g / GHSA-qppj-fm5r-hxr3","Warn: Project is vulnerable to: GO-2024-2687 / GHSA-4v7x-pqxf-cx7m","Warn: Project is vulnerable to: GO-2024-3333","Warn: Project is vulnerable to: GO-2025-3503 / GHSA-qxp5-gwg8-xv66","Warn: Project is vulnerable to: GO-2025-3595 / GHSA-vvgc-356p-c3xw","Warn: Project is vulnerable to: GO-2024-2611 / GHSA-8r3f-844c-mc37","Warn: Project is vulnerable to: GO-2024-3279 / GHSA-7225-m954-23v7","Warn: Project is vulnerable to: GO-2024-3339 / GHSA-8wcc-m6j2-qxvm","Warn: Project is vulnerable to: GO-2025-3442 / GHSA-22qq-3xwm-r5x4","Warn: Project is vulnerable to: GO-2025-3443 / GHSA-r3r4-g7hq-pq4f","Warn: Project is vulnerable to: GHSA-555p-m4v6-cqxv","Warn: Project is vulnerable to: GHSA-23px-mw2p-46qm","Warn: Project is vulnerable to: GO-2023-1861","Warn: Project is vulnerable to: GO-2024-2571 / GHSA-2557-x9mg-76w8","Warn: Project is vulnerable to: GO-2024-2572 / GHSA-4j93-fm92-rp4m","Warn: Project is vulnerable to: GO-2024-2584 / GHSA-86h5-xcpx-cfqc","Warn: Project is vulnerable to: GO-2025-3476 / GHSA-x5vx-95h7-rv4p","Warn: Project is vulnerable to: GO-2025-3516 / GHSA-47ww-ff84-4jrg","Warn: Project is vulnerable to: GO-2025-3803 / GHSA-p22h-3m2v-cmgh","Warn: Project is vulnerable to: GO-2023-1821 / GHSA-qfc5-6r3j-jj22","Warn: Project is vulnerable to: GO-2023-1881 / GHSA-w5w5-2882-47pc","Warn: Project is vulnerable to: GO-2023-2409 / GHSA-6294-6rgp-fr7r / GHSA-mhpq-9638-x6pw","Warn: Project is vulnerable to: GO-2025-3372 / GHSA-6wxm-mpqj-6jpf","Warn: Project is vulnerable to: GO-2023-2402 / GHSA-45x7-px36-x8w8","Warn: Project is vulnerable to: GO-2024-3321 / GHSA-v778-237x-gjrc","Warn: Project is vulnerable to: GO-2025-3487 / GHSA-hcg3-q754-cr77","Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8","Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92","Warn: Project is vulnerable to: GHSA-wf5p-g6vw-rhxx","Warn: Project is vulnerable to: GHSA-jr5f-v2jv-69x6","Warn: Project is vulnerable to: GHSA-qwcr-r2fm-qrc7","Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw","Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg","Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x","Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275","Warn: Project is vulnerable to: GHSA-rv95-896h-c2vc","Warn: Project is vulnerable to: GHSA-qw6h-vgh9-j6wx","Warn: Project is vulnerable to: GHSA-jchw-25xp-jwwc","Warn: Project is vulnerable to: GHSA-cxjh-pqwp-8mfp","Warn: Project is vulnerable to: GHSA-pfrx-2q88-qq97","Warn: Project is vulnerable to: GHSA-c7qv-q95q-8v27","Warn: Project is vulnerable to: GHSA-4www-5p9h-95mh","Warn: Project is vulnerable to: GHSA-9gqv-wp59-fq42","Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv","Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55","Warn: Project is vulnerable to: GHSA-76c9-3jph-rj3q","Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j","Warn: Project is vulnerable to: GHSA-rhx6-c78j-4q9w","Warn: Project is vulnerable to: GHSA-7fh5-64p2-3v2j","Warn: Project is vulnerable to: GHSA-x7hr-w5r2-h6wg","Warn: Project is vulnerable to: GHSA-m6fv-jmcg-4jfg","Warn: Project is vulnerable to: GHSA-76p7-773f-r4q5","Warn: Project is vulnerable to: GHSA-cm22-4g7w-348p","Warn: Project is vulnerable to: GHSA-4vvj-4cpr-p986","Warn: Project is vulnerable to: GHSA-wr3j-pwj9-hqq6","Warn: Project is vulnerable to: GHSA-4v9v-hfq4-rm2v","Warn: Project is vulnerable to: GHSA-9jgg-88mc-972h","Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q","Warn: Project is vulnerable to: GO-2022-0635","Warn: Project is vulnerable to: GO-2022-0646","Warn: Project is vulnerable to: GO-2024-2800 / GHSA-q64h-39hv-4cf7","Warn: Project is vulnerable to: GO-2024-2948 / GHSA-xfhp-jf8p-mh5w","Warn: Project is vulnerable to: GO-2025-3488 / GHSA-6v2p-p543-phr9"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-16T19:46:07.806Z","repository_id":38274237,"created_at":"2025-08-16T19:46:07.806Z","updated_at":"2025-08-16T19:46:07.806Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28340446,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-12T12:22:26.515Z","status":"ssl_error","status_checked_at":"2026-01-12T12:22:10.856Z","response_time":98,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.6:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cosmos-sdk","go","golang","ibc","starport","tendermint"],"created_at":"2026-01-12T15:17:41.030Z","updated_at":"2026-01-12T15:17:42.148Z","avatar_url":"https://github.com/allinbits.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"\u003cdiv align=\"center\"\u003e\n  \u003ch1\u003e Cosmos SDK \u003c/h1\u003e\n\u003c/div\u003e\n\n![banner](docs/static/img/banner.jpg)\n\n\u003cdiv align=\"center\"\u003e\n  \u003ca href=\"https://github.com/cosmos/cosmos-sdk/blob/main/LICENSE\"\u003e\n    \u003cimg alt=\"License: Apache-2.0\" src=\"https://img.shields.io/github/license/cosmos/cosmos-sdk.svg\" /\u003e\n  \u003c/a\u003e\n  \u003ca href=\"https://pkg.go.dev/github.com/cosmos/cosmos-sdk\"\u003e\n    \u003cimg src=\"https://pkg.go.dev/badge/github.com/cosmos/cosmos-sdk.svg\" alt=\"Go Reference\"\u003e\n  \u003c/a\u003e\n  \u003ca href=\"https://goreportcard.com/report/github.com/cosmos/cosmos-sdk\"\u003e\n    \u003cimg alt=\"Go report card\" src=\"https://goreportcard.com/badge/github.com/cosmos/cosmos-sdk\" /\u003e\n  \u003c/a\u003e\n  \u003ca href=\"https://sonarcloud.io/summary/overall?id=cosmos_cosmos-sdk\"\u003e\n    \u003cimg alt=\"Code Coverage\" src=\"https://sonarcloud.io/api/project_badges/measure?project=cosmos_cosmos-sdk\u0026metric=coverage\" /\u003e\n  \u003c/a\u003e\n  \u003ca href=\"https://sonarcloud.io/summary/overall?id=cosmos_cosmos-sdk\"\u003e\n    \u003cimg alt=\"SonarCloud Analysis\" src=\"https://sonarcloud.io/api/project_badges/measure?project=cosmos_cosmos-sdk\u0026metric=alert_status\"\u003e\n  \u003c/a\u003e\n\u003c/div\u003e\n\u003cdiv align=\"center\"\u003e\n  \u003ca href=\"https://discord.gg/cosmosnetwork\"\u003e\n    \u003cimg alt=\"Discord\" src=\"https://img.shields.io/discord/669268347736686612.svg\" /\u003e\n  \u003c/a\u003e\n  \u003ca href=\"https://sourcegraph.com/github.com/cosmos/cosmos-sdk?badge\"\u003e\n    \u003cimg alt=\"Imported by\" src=\"https://sourcegraph.com/github.com/cosmos/cosmos-sdk/-/badge.svg\" /\u003e\n  \u003c/a\u003e\n    \u003cimg alt=\"Sims\" src=\"https://github.com/cosmos/cosmos-sdk/workflows/Sims/badge.svg\" /\u003e\n    \u003cimg alt=\"Lint Satus\" src=\"https://github.com/cosmos/cosmos-sdk/workflows/Lint/badge.svg\" /\u003e\n\u003c/div\u003e\n\nThe Cosmos SDK is a framework for building blockchain applications. [CometBFT (BFT Consensus)](https://github.com/cometbft/cometbft) and the Cosmos SDK are written in the Go programming language. Cosmos SDK is used to build [Gaia](https://github.com/cosmos/gaia), the implementation of the Cosmos Hub.\n\n**WARNING**: The Cosmos SDK has mostly stabilized, but we are still making some breaking changes.\n\n**Note**: Requires [Go 1.20+](https://go.dev/dl)\n\n## Quick Start\n\nTo learn how the Cosmos SDK works from a high-level perspective, see the Cosmos SDK [High-Level Intro](https://docs.cosmos.network/main/intro/overview.html).\n\nIf you want to get started quickly and learn how to build on top of Cosmos SDK, visit [Cosmos SDK Tutorials](https://tutorials.cosmos.network). You can also fork the tutorial's repository to get started building your own Cosmos SDK application.\n\nFor more information, see the [Cosmos SDK Documentation](https://docs.cosmos.network).\n\n## Contributing\n\nSee [CONTRIBUTING.md](./CONTRIBUTING.md) for details on how to contribute and participate in our [dev calls](./CONTRIBUTING.md#teams-dev-calls).\nIf you want to follow the updates or learn more about the latest design then join our [Discord](https://discord.gg/cosmosnetwork).\n\n## Tools and Frameworks\n\nThe Cosmos ecosystem is vast.\n[Awesome Cosmos](https://github.com/cosmos/awesome-cosmos) is a community-curated list of notable frameworks, modules and tools.\n\n### Cosmos Hub Mainnet\n\nThe Cosmos Hub application, `gaia`, has its own [cosmos/gaia repository](https://github.com/cosmos/gaia). Go there to join the Cosmos Hub mainnet and more.\n\n### Inter-Blockchain Communication (IBC)\n\nThe IBC module for the Cosmos SDK has its own [cosmos/ibc-go repository](https://github.com/cosmos/ibc-go). Go there to build and integrate with the IBC module.\n\n## Disambiguation\n\nThis Cosmos SDK project is not related to the [React-Cosmos](https://github.com/react-cosmos/react-cosmos) project (yet). Many thanks to Evan Coury and Ovidiu (@skidding) for this Github organization name. As per our agreement, this disambiguation notice will stay here.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fallinbits%2Fcosmos-sdk","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fallinbits%2Fcosmos-sdk","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fallinbits%2Fcosmos-sdk/lists"}