Thanks to visit codestin.com
Credit goes to github.com

Skip to content

build(deps): bump actions/upload-artifact from 4 to 7#574

Merged
ErikBjare merged 1 commit intomasterfrom
dependabot/github_actions/actions/upload-artifact-7
Mar 2, 2026
Merged

build(deps): bump actions/upload-artifact from 4 to 7#574
ErikBjare merged 1 commit intomasterfrom
dependabot/github_actions/actions/upload-artifact-7

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 1, 2026
edited by ellipsis-dev bot
Loading

Bumps actions/upload-artifact from 4 to 7.

Release notes

Sourced from actions/upload-artifact's releases.

v7.0.0

v7 What's new

Direct Uploads

Adds support for uploading single files directly (unzipped). Callers can set the new archive parameter to false to skip zipping the file during upload. Right now, we only support single files. The action will fail if the glob passed resolves to multiple files. The name parameter is also ignored with this setting. Instead, the name of the artifact will be the name of the uploaded file.

ESM

To support new versions of the @actions/* packages, we've upgraded the package to ESM.

What's Changed

New Contributors

Full Changelog: actions/upload-artifact@v6...v7.0.0

v6.0.0

v6 - What's new

[!IMPORTANT] actions/upload-artifact@v6 now runs on Node.js 24 (runs.using: node24) and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.

Node.js 24

This release updates the runtime to Node.js 24. v5 had preliminary support for Node.js 24, however this action was by default still running on Node.js 20. Now this action by default will run on Node.js 24.

What's Changed

Full Changelog: actions/upload-artifact@v5.0.0...v6.0.0

v5.0.0

What's Changed

BREAKING CHANGE: this update supports Node v24.x. This is not a breaking change per-se but we're treating it as such.

... (truncated)

Commits
  • bbbca2d Support direct file uploads (#764)
  • 589182c Upgrade the module to ESM and bump dependencies (#762)
  • 47309c9 Merge pull request #754 from actions/Link-/add-proxy-integration-tests
  • 02a8460 Add proxy integration test
  • b7c566a Merge pull request #745 from actions/upload-artifact-v6-release
  • e516bc8 docs: correct description of Node.js 24 support in README
  • ddc45ed docs: update README to correct action name for Node.js 24 support
  • 615b319 chore: release v6.0.0 for Node.js 24 support
  • 017748b Merge pull request #744 from actions/fix-storage-blob
  • 38d4c79 chore: rebuild dist
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Important

Bump actions/upload-artifact from v4 to v7 in build.yml, adding direct file upload support and Node.js 24 compatibility.

  • Dependency Update:
    • Bump actions/upload-artifact from v4 to v7 in build.yml.
  • New Features:
    • Supports direct file uploads without zipping by setting archive to false.
    • Upgraded to ESM to support new @actions/* packages.
  • Compatibility:
    • Now runs on Node.js 24, requiring Actions Runner version 2.327.1 or higher.

This description was created by Ellipsis for de1126c. You can customize this summary. It will automatically update as commits are pushed.

@dependabot
build(deps): bump actions/upload-artifact from 4 to 7
de1126c 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4 to 7.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@v4...v7)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: '7'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Mar 1, 2026
@dependabot dependabot bot mentioned this pull request Mar 1, 2026
Closed
ellipsis-dev[bot]
ellipsis-dev bot reviewed Mar 1, 2026
View reviewed changes
Copy link

@ellipsis-dev ellipsis-dev bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Important

Looks good to me! 👍

Reviewed everything up to de1126c in 7 seconds. Click for details.
  • Reviewed 22 lines of code in 1 files
  • Skipped 0 files when reviewing.
  • Skipped posting 0 draft comments. View those below.
  • Modify your settings and rules to customize what types of comments Ellipsis leaves. And don't forget to react with 👍 or 👎 to teach Ellipsis.

Workflow ID: wflow_0rtJPRfjCig7kghh

You can customize Ellipsis by changing your verbosity settings, reacting with 👍 or 👎, replying to comments, or adding code review rules.

@greptile-apps
Copy link

greptile-apps bot commented Mar 1, 2026

Greptile Summary

This PR bumps actions/upload-artifact from v4 to v7, introducing Node.js 24 runtime and ESM support. The upgrade is safe and straightforward:

  • Breaking changes handled: v6+ requires Node.js 24 and Actions Runner 2.327.1+, but since this workflow uses GitHub-hosted runners (ubuntu-latest, windows-latest, macOS-latest), these requirements are automatically satisfied
  • Current usage unaffected: The workflow uploads multiple files using glob patterns with default settings, which continues to work as expected in v7
  • New features not used: v7 adds direct file upload support (archive: false), but this workflow doesn't use it
  • Consistent upgrade: Both instances of upload-artifact in the workflow (lines 38 and 68) are updated to v7

Note: Other GitHub Actions in this workflow are also outdated (actions/checkout@v3, actions/cache@v3), but addressing those is outside the scope of this PR.

Confidence Score: 5/5

  • This PR is safe to merge with minimal risk
  • Score reflects that this is a straightforward dependency update with no breaking changes affecting the current usage, and runtime requirements are automatically satisfied by GitHub-hosted runners
  • No files require special attention

Important Files Changed

Filename Overview
.github/workflows/build.yml Straightforward version bump from v4 to v7, no breaking changes affecting current usage

Last reviewed commit: de1126c

greptile-apps[bot]
greptile-apps bot reviewed Mar 1, 2026
View reviewed changes
Copy link

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

1 file reviewed, no comments

Edit Code Review Agent Settings | Greptile

@ErikBjare ErikBjare merged commit 5747056 into master Mar 2, 2026
7 checks passed
@dependabot dependabot bot deleted the dependabot/github_actions/actions/upload-artifact-7 branch March 2, 2026 12:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ellipsis-dev ellipsis-dev[bot] ellipsis-dev[bot] left review comments

+1 more reviewer

@greptile-apps greptile-apps[bot] greptile-apps[bot] left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ErikBjare