We have seen yet another supply chain attack in the NPM world, so I would like to better secure myself against such attacks. How can Guix help me with that?

Is it possible to pin all my packages to their current version in Guix?