search

calendulish / stlib

Async library that provides features related to Steam client and compatible stuffs
GNU General Public License v3.0
15 stars 2 forks source link

Bump actions/upload-artifact from 4.3.6 to 4.4.2 #163

Closed dependabot[bot] closed 3 weeks ago

dependabot[bot] commented 3 weeks ago

Bumps actions/upload-artifact from 4.3.6 to 4.4.2.

Release notes

Sourced from actions/upload-artifact's releases.

v4.4.2

What's Changed

Full Changelog: https://github.com/actions/upload-artifact/compare/v4...v4.4.2

v4.4.1

What's Changed

New Contributors

Full Changelog: https://github.com/actions/upload-artifact/compare/v4.4.0...v4.4.1

v4.4.0

Notice: Breaking Changes :warning:

We will no longer include hidden files and folders by default in the upload-artifact action of this version. This reduces the risk that credentials are accidentally uploaded into artifacts. Customers who need to continue to upload these files can use a new option, include-hidden-files, to continue to do so.

See "Notice of upcoming deprecations and breaking changes in GitHub Actions runners" changelog and this issue for more details.

What's Changed

Full Changelog: https://github.com/actions/upload-artifact/compare/v4.3.6...v4.4.0

Commits
  • 8448086 Merge pull request #627 from actions/robherley/v4.4.2
  • b1d4642 add explicit relative and absolute symlinks to workflow
  • d50e660 bump version
  • aabe6f8 build with @​actions/artifact v2.1.11
  • 604373d Merge pull request #625 from actions/robherley/artifact-2.1.10
  • 0150148 paste right core version
  • a009b25 update licenses
  • 9f6f6f4 update @​actions/core and @​actions/artifact to latest versions
  • 3eadd8b Merge pull request #621 from actions/Jcambass-patch-1
  • aeba9f7 Add workflow file for publishing releases to immutable action package
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Summary by Sourcery

Bump the actions/upload-artifact GitHub Action from version 4.3.6 to 4.4.2 in the CI workflows to incorporate the latest improvements and fixes, including changes to symlink handling and default file inclusion behavior.

CI:

sourcery-ai[bot] commented 3 weeks ago

Reviewer's Guide by Sourcery

This pull request updates the actions/upload-artifact GitHub Action from version 4.3.6 to 4.4.2 across multiple workflow files. The update includes improvements to symlink handling, timeout fixes, and changes to the default behavior of hidden file uploads.

No diagrams generated as the changes look simple and do not need a visual representation.

File-Level Changes

Change Details Files
Update actions/upload-artifact version from 4.3.6 to 4.4.2
  • Changed the version hash from 834a144ee995460fba8ed112a2fc961b36a5ec5a to 84480863f228bb9747b473957fcc9e309aa96097
  • Updated the version comment from v4.3.6 to v4.4.2
 .github/workflows/build.yml
.github/workflows/scorecards.yml
Introduce changes in artifact upload behavior
  • Fixed issues with relative symlinks not resolving properly
  • Improved handling of timeouts
  • Changed default behavior to exclude hidden files and folders from uploads
Tips and commands #### Interacting with Sourcery - **Trigger a new review:** Comment `@sourcery-ai review` on the pull request. - **Continue discussions:** Reply directly to Sourcery's review comments. - **Generate a GitHub issue from a review comment:** Ask Sourcery to create an issue from a review comment by replying to it. - **Generate a pull request title:** Write `@sourcery-ai` anywhere in the pull request title to generate a title at any time. - **Generate a pull request summary:** Write `@sourcery-ai summary` anywhere in the pull request body to generate a PR summary at any time. You can also use this command to specify where the summary should be inserted. #### Customizing Your Experience Access your [dashboard](https://app.sourcery.ai) to: - Enable or disable review features such as the Sourcery-generated pull request summary, the reviewer's guide, and others. - Change the review language. - Add, remove or edit custom review instructions. - Adjust other review settings. #### Getting Help - [Contact our support team](mailto:support@sourcery.ai) for questions or feedback. - Visit our [documentation](https://docs.sourcery.ai) for detailed guides and information. - Keep in touch with the Sourcery team by following us on [X/Twitter](https://x.com/SourceryAI), [LinkedIn](https://www.linkedin.com/company/sourcery-ai/) or [GitHub](https://github.com/sourcery-ai).
dependabot[bot] commented 3 weeks ago

Superseded by #164.