5656 matrix : ${{ steps.extension-matrix.outputs.matrix }}
5757 steps :
5858 - name : Checkout repository
59- uses : actions/checkout@v4
59+ uses : actions/checkout@v4 # not pinning to commit since this is a GitHub action, which we trust
6060 with :
6161 ref : ${{ needs.check-trigger.outputs.tag_name }}
6262
7070
7171 - name : Generate extension build matrix
7272 id : extension-matrix
73- uses : php/php-windows-builder/extension-matrix@v1
73+ uses : php/php-windows-builder/extension-matrix@473a9676298287032e657ee9658002a893df4eb9 # pinned to 1.2.0 commit hash
7474 with :
7575 arch-list : ' x64'
7676 php-version-list : " 8.1, 8.2, 8.3, 8.4" # reading from composer.json doesn't seem to work?
8383 matrix : ${{ fromJson(needs.get-extension-matrix.outputs.matrix) }}
8484 steps :
8585 - name : Checkout repository
86- uses : actions/checkout@v4
86+ uses : actions/checkout@v4 # not pinning to commit since this is a GitHub action, which we trust
8787 with :
8888 ref : ${{ needs.check-trigger.outputs.tag_name }}
8989
@@ -218,7 +218,7 @@ jobs:
218218 echo "All required library files verified successfully"
219219
220220 - name : Build extension with php-windows-builder
221- uses : php/php-windows-builder/extension@v1
221+ uses : php/php-windows-builder/extension@473a9676298287032e657ee9658002a893df4eb9 # pinned to 1.2.0 commit hash
222222 with :
223223 php-version : ${{ matrix.php-version }}
224224 arch : ${{ matrix.arch }}
@@ -232,7 +232,7 @@ jobs:
232232 if : needs.check-trigger.outputs.should_run == 'true'
233233 steps :
234234 - name : Create draft release with artifacts
235- uses : php/php-windows-builder/release@v1
235+ uses : php/php-windows-builder/release@473a9676298287032e657ee9658002a893df4eb9 # pinned to 1.2.0 commit hash
236236 with :
237237 release : ${{ needs.check-trigger.outputs.tag_name }}
238238 token : ${{ secrets.GITHUB_TOKEN }}
0 commit comments