search

step-security / harden-runner

Network egress filtering and runtime security for GitHub-hosted and self-hosted runners
https://www.stepsecurity.io
Apache License 2.0
597 stars 47 forks source link

Bump actions/upload-artifact from 3.1.3 to 4.1.0 #367

Closed dependabot[bot] closed 7 months ago

dependabot[bot] commented 7 months ago

Bumps actions/upload-artifact from 3.1.3 to 4.1.0.

Release notes

Sourced from actions/upload-artifact's releases.

v4.1.0

What's Changed

New Contributors

Full Changelog: https://github.com/actions/upload-artifact/compare/v4...v4.1.0

v4.0.0

What's Changed

The release of upload-artifact@v4 and download-artifact@v4 are major changes to the backend architecture of Artifacts. They have numerous performance and behavioral improvements.

ℹ️ However, this is a major update that includes breaking changes. Artifacts created with versions v3 and below are not compatible with the v4 actions. Uploads and downloads must use the same major actions versions. There are also key differences from previous versions that may require updates to your workflows.

For more information, please see:

  1. The changelog post.
  2. The README.
  3. The migration documentation.
  4. As well as the underlying npm package, @​actions/artifact documentation.

New Contributors

Full Changelog: https://github.com/actions/upload-artifact/compare/v3...v4.0.0

Commits
  • 1eb3cb2 Merge pull request #497 from actions/robherley/update-readme-limit
  • 8688a86 Update readme to reflect new artifact/job limit
  • 73d8b66 Support artifact-url output (#496)
  • c320f57 Update README.md (#492)
  • cf8714c Merge pull request #482 from actions/robherley/add-migration-docs
  • 7f16e37 add migrations docs
  • 3530730 Merge pull request #468 from actions/robherley/misc-updates
  • 6c139af update imports and old v4-beta references
  • c7d193f Merge pull request #466 from actions/v4-beta
  • 13131bb licensed cache
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
github-actions[bot] commented 7 months ago

Test Results

5 tests  ±0   5 :heavy_check_mark: ±0   13s :stopwatch: ±0s 3 suites ±0   0 :zzz: ±0  1 files   ±0   0 :x: ±0 

Results for commit 4fe4dbf5. ± Comparison against base commit ea8b7478.

codecov-commenter commented 7 months ago

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Comparison is base (ea8b747) 60.29% compared to head (4fe4dbf) 60.29%.

:exclamation: Your organization needs to install the Codecov GitHub app to enable full functionality.

Additional details and impacted files ```diff @@ Coverage Diff @@ ## main #367 +/- ## ======================================= Coverage 60.29% 60.29% ======================================= Files 3 3 Lines 136 136 Branches 32 32 ======================================= Hits 82 82 Misses 49 49 Partials 5 5 ```

:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.

dependabot[bot] commented 7 months ago

Superseded by #370.