Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump actions/upload-artifact from 3.1.3 to 4.3.1 #103

Merged

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 6, 2024

Bumps actions/upload-artifact from 3.1.3 to 4.3.1.

Release notes

Sourced from actions/upload-artifact's releases.

v4.3.1

v4.3.0

What's Changed

Full Changelog: actions/upload-artifact@v4...v4.3.0

v4.2.0

What's Changed

Full Changelog: actions/upload-artifact@v4...v4.2.0

v4.1.0

What's Changed

New Contributors

Full Changelog: actions/upload-artifact@v4...v4.1.0

v4.0.0

What's Changed

The release of upload-artifact@v4 and download-artifact@v4 are major changes to the backend architecture of Artifacts. They have numerous performance and behavioral improvements.

ℹ️ However, this is a major update that includes breaking changes. Artifacts created with versions v3 and below are not compatible with the v4 actions. Uploads and downloads must use the same major actions versions. There are also key differences from previous versions that may require updates to your workflows.

For more information, please see:

  1. The changelog post.
  2. The README.
  3. The migration documentation.
  4. As well as the underlying npm package, @​actions/artifact documentation.

New Contributors

Full Changelog: actions/upload-artifact@v3...v4.0.0

Commits
  • 5d5d22a Merge pull request #515 from actions/eggyhead/update-artifact-v2.1.1
  • f1e993d update artifact license
  • 4881bfd updating dist:
  • a30777e @​eggyhead
  • 3a80482 Merge pull request #511 from actions/robherley/migration-docs-typo
  • 9d63e3f Merge branch 'main' into robherley/migration-docs-typo
  • dfa1ab2 fix typo with v3 artifact downloads in migration guide
  • d00351b Merge pull request #509 from markmssd/patch-1
  • 707f5a7 Update limitation of 10 artifacts upload to 500
  • 26f96df Merge pull request #505 from actions/robherley/merge-artifacts
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot bot requested a review from mauwii as a code owner February 6, 2024 15:09
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Feb 6, 2024
Copy link
Contributor

github-actions bot commented Feb 6, 2024

🦙 MegaLinter status: ✅ SUCCESS

Descriptor Linter Files Fixed Errors Elapsed time
✅ ACTION actionlint 1 0 0.02s
✅ COPYPASTE jscpd yes no 1.47s
✅ EDITORCONFIG editorconfig-checker 1 0 0.01s
✅ REPOSITORY checkov yes no 10.17s
✅ REPOSITORY gitleaks yes no 0.62s
✅ REPOSITORY git_diff yes no 0.02s
✅ REPOSITORY grype yes no 12.67s
✅ REPOSITORY kics yes no 4.85s
✅ REPOSITORY secretlint yes no 0.82s
✅ REPOSITORY trivy yes no 6.21s
✅ REPOSITORY trivy-sbom yes no 1.6s
✅ REPOSITORY trufflehog yes no 5.55s
✅ SPELL cspell 2 0 1.99s
✅ YAML prettier 1 0 0.64s
✅ YAML v8r 1 0 2.54s
✅ YAML yamllint 1 0 0.4s

See detailed report in MegaLinter reports
Set VALIDATE_ALL_CODEBASE: true in mega-linter.yml to validate all sources, not only the diff

MegaLinter is graciously provided by OX Security

Copy link
Contributor

github-actions bot commented Feb 6, 2024

🦙 MegaLinter status: ✅ SUCCESS

Descriptor Linter Files Fixed Errors Elapsed time
✅ ACTION actionlint 1 0 0.02s
✅ COPYPASTE jscpd yes no 1.67s
✅ EDITORCONFIG editorconfig-checker 1 0 0.01s
✅ REPOSITORY checkov yes no 11.85s
✅ REPOSITORY gitleaks yes no 0.27s
✅ REPOSITORY git_diff yes no 0.01s
✅ REPOSITORY grype yes no 10.85s
✅ REPOSITORY kics yes no 5.44s
✅ REPOSITORY secretlint yes no 1.19s
✅ REPOSITORY trivy yes no 7.95s
✅ REPOSITORY trivy-sbom yes no 3.88s
✅ REPOSITORY trufflehog yes no 6.12s
✅ SPELL cspell 2 0 3.03s
✅ YAML prettier 1 0 0.51s
✅ YAML v8r 1 0 2.32s
✅ YAML yamllint 1 0 0.36s

See detailed report in MegaLinter reports
Set VALIDATE_ALL_CODEBASE: true in mega-linter.yml to validate all sources, not only the diff

MegaLinter is graciously provided by OX Security

@mauwii
Copy link
Owner

mauwii commented Mar 27, 2024

@dependabot rebase

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.3 to 4.3.1.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@a8a3f3a...5d5d22a)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/github_actions/actions/upload-artifact-4.3.1 branch from 85e1210 to 6fc44d4 Compare March 27, 2024 18:07
@mergify mergify bot merged commit c722cd2 into main Mar 27, 2024
12 checks passed
@mergify mergify bot deleted the dependabot/github_actions/actions/upload-artifact-4.3.1 branch March 27, 2024 18:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant