Bump actions/upload-artifact from 2 to 4
Created by: dependabot[bot]
Bumps actions/upload-artifact from 2 to 4.
Release notes
Sourced from actions/upload-artifact's releases.
v4.0.0
What's Changed
The release of upload-artifact@v4 and download-artifact@v4 are major changes to the backend architecture of Artifacts. They have numerous performance and behavioral improvements.
ℹ ️ However, this is a major update that includes breaking changes. Artifacts created with versions v3 and below are not compatible with the v4 actions. Uploads and downloads must use the same major actions versions. There are also key differences from previous versions that may require updates to your workflows.For more information, please see:
- The changelog post.
- The README.
- The migration documentation.
- As well as the underlying npm package,
@actions/artifact
documentation.New Contributors
@vmjoseph
made their first contribution in actions/upload-artifact#464Full Changelog: https://github.com/actions/upload-artifact/compare/v3...v4.0.0
v3.2.1
What's Changed
This fixes the
include-hidden-files
input introduced in https://github.com/actions/upload-artifact/releases/tag/v3.2.0
- Ensure hidden files input is used by
@joshmgross
in actions/upload-artifact#609Full Changelog: https://github.com/actions/upload-artifact/compare/v3.2.0...v3.2.1
v3.2.1-node20
What's Changed
This fixes the
include-hidden-files
input introduced in https://github.com/actions/upload-artifact/releases/tag/v3.2.0-node20
- Ensure hidden files input is used by
@joshmgross
in actions/upload-artifact#608Full Changelog: https://github.com/actions/upload-artifact/compare/v3.2.0-node20...v3.2.1-node20
v3.2.0
Notice: Breaking Changes
⚠ We will no longer include hidden files and folders by default in the
upload-artifact
action of this version. This reduces the risk that credentials are accidentally uploaded into artifacts. Customers who need to continue to upload these files can use a new option,include-hidden-files
, to continue to do so.See "Notice of upcoming deprecations and breaking changes in GitHub Actions runners" changelog and this issue for more details.
What's Changed
- V3 backport: Exclude hidden files by default by
@SrRyan
in actions/upload-artifact#604
... (truncated)
Commits
-
5076954
Merge pull request #598 from actions/joshmgross/exclude-hidden-files -
d52396a
Add a warning about enablinginclude-hidden-files
-
710f362
Remove "merged" frominclude-hidden-files
input description -
3b315f2
npm run release
again🙂 -
3be2180
Remove another trailing comma -
453e8d0
Update glob license -
0a398c1
npm run release
-
a0c40cf
Update to latest@actions/glob
and fix tests -
acb59e4
lint
-
cb6558b
Exclude hidden files by default - Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebase
will rebase this PR -
@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it -
@dependabot merge
will merge this PR after your CI passes on it -
@dependabot squash and merge
will squash and merge this PR after your CI passes on it -
@dependabot cancel merge
will cancel a previously requested merge and block automerging -
@dependabot reopen
will reopen this PR if it is closed -
@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency -
@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)