build(deps): bump actions/upload-artifact from 4 to 5 #2509
Conversation
dependabot
bot
added
dependencies
dependabot
bot
added
dependencies
dependabot
bot
force-pushed
the
dependabot/github_actions/actions/upload-artifact-5
branch
from
3847632 to
3a2745b
Compare
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4 to 5. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@v4...v5) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
force-pushed
the
dependabot/github_actions/actions/upload-artifact-5
branch
from
3a2745b to
e0ae7e0
Compare
![codacy-production[bot]](https://avatars.githubusercontent.com/in/56611?s=60&v=4){kind=small}
There was a problem hiding this comment.
This is a small dependency bump in a GitHub Actions workflow: actions/upload-artifact v4 → v5. Codacy shows no new issues. Main risk is compatibility change noted in upstream release (Node v24 mention). Validate CI runners and any self-hosted/enterprise runners for Node compatibility and @actions/artifact peer changes.
Upgrading actions/upload-artifact to v5 includes upstream notes about Node runtime guidance (v24) and bumping @actions/artifact to v4. Confirm your CI environment (especially self-hosted or GHES runners) supports the required Node version or the action's runtime expectations.
Run CI (workflow) after merging and check artifact upload/download steps on all runner types you use (GitHub-hosted, self-hosted, GHES). If you have downstream workflows that consume these artifacts, verify they are unaffected.
| - name: Upload meta descriptions artifact | ||
| uses: actions/upload-artifact@v4 | ||
| uses: actions/upload-artifact@v5 |
There was a problem hiding this comment.
If you rely on older GHES or self-hosted runners pinned to older Node versions, consider keeping v4 or adding a conditional to use v4 for those runners to avoid runtime failures. Alternatively, test on a representative self-hosted runner before promoting widely.
Bumps actions/upload-artifact from 4 to 5.
Release notes
Sourced from actions/upload-artifact's releases.
... (truncated)
Commits
330a01cMerge pull request #734 from actions/danwkennedy/prepare-5.0.003f2824Updategithub.dep.yml905a1ecPreparev5.0.02d9f9cdMerge pull request #725 from patrikpolyak/patch-19687587Merge branch 'main' into patch-12848b2cMerge pull request #727 from danwkennedy/patch-19b51177Spell out the first use of GHEScd231caUpdate GHES guidance to include reference to Node 20 versionde65e23Merge pull request #712 from actions/nebuk89-patch-18747d8cUpdate README.mdDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)