Skip to content

Chore(deps): Bump actions/upload-artifact from 4.6.2 to 5.0.0#12

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/github_actions/actions/upload-artifact-5.0.0
Closed

Chore(deps): Bump actions/upload-artifact from 4.6.2 to 5.0.0#12
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/github_actions/actions/upload-artifact-5.0.0

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 27, 2025

Bumps actions/upload-artifact from 4.6.2 to 5.0.0.

Release notes

Sourced from actions/upload-artifact's releases.

v5.0.0

What's Changed

BREAKING CHANGE: this update supports Node v24.x. This is not a breaking change per-se but we're treating it as such.

New Contributors

Full Changelog: actions/upload-artifact@v4...v5.0.0

Commits
  • 330a01c Merge pull request #734 from actions/danwkennedy/prepare-5.0.0
  • 03f2824 Update github.dep.yml
  • 905a1ec Prepare v5.0.0
  • 2d9f9cd Merge pull request #725 from patrikpolyak/patch-1
  • 9687587 Merge branch 'main' into patch-1
  • 2848b2c Merge pull request #727 from danwkennedy/patch-1
  • 9b51177 Spell out the first use of GHES
  • cd231ca Update GHES guidance to include reference to Node 20 version
  • de65e23 Merge pull request #712 from actions/nebuk89-patch-1
  • 8747d8c Update README.md
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Oct 27, 2025
lfit-replication pushed a commit that referenced this pull request Oct 29, 2025
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.
Change-Id: I49a38ab7430ef2a3ca7977e071ac12c9930b381f

---

[//]: # (dependabot-end)

Bumps lfit/gerrit-review-action from 0.8 to 0.9.
## Release notes

Sourced from lfit/gerrit-review-action's releases.

v0.9

CI: Add basic config for validation @​tykeal (#2)
Feat: Initial try at gerrit-review action @​tykeal (#3)
Fix: quote all inputs @​tykeal (#4)
Feat: Make current jobs status an input @​tykeal (#5)
Fix: Use job.status @​tykeal (#6)
Fix: Correct job.status call @​tykeal (#7)
Refactor: reuse vote-type @​tykeal (#8)
Chore: Upgrade pre-commit hooks @​tykeal (#10)
Feat!: Switch to new ssh method @​tykeal (#11)
Fix: Add shell specifier to all run commands @​tykeal (#12)
Fix: Do a single line ssh command @​tykeal (#13)
Fix: Gerrit review options must be quoted @​tykeal (#14)
Feat: Allow non-voting status comments @​tykeal (#16)
Fix: Add missing '/' to GHA URL @​tykeal (#17)
Fix: Attempt to fix bad voting @​tykeal (#18)
CI: Build vote command up @​tykeal (#19)
CI: Add a debug statement @​tykeal (#20)
Fix: Remove unneeded single quotes @​tykeal (#21)
Chore: Update pre-commit hooks @​tykeal (#22)
Chore: Update deps and pre-commit @​tykeal (#26)
Chore: Update shimataro/ssh-key-action to v2.7.0 @​askb (#28)
Fix: Skip when jobs are run locally @​askb (#29)
Fix: Set ACT env for install SSH keys @​askb (#30)
[pre-commit.ci] pre-commit autoupdate @pre-commit-ci[bot] (#27)

Maintenance

Feat: Add README.md content, import updated template files @​ModeSevenIndustrialSolutions (#31)

Links

Submit bugs/feature requests

## Commits

537251e Merge pull request #31 from modeseven-lfreleng-actions/import-template
17c7024 Feat: Add README.md content, import updated template files
7cde442 Merge pull request #27 from lfit/pre-commit-ci-update-config
eed4e10 Chore: pre-commit autoupdate
ea252e6 [pre-commit.ci] pre-commit autoupdate
See full diff in compare view

![Dependabot compatibility score](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: lfit.gh2gerrit <releng+lfit-gh2gerrit@linuxfoundation.org>
Change-Id: I03b903a3a7a631a5352aab29e66aef6124020fe3
GitHub-PR: #1
GitHub-Hash: 137fd78ffec4615f
@tykeal
Copy link
Member

tykeal commented Oct 29, 2025

@dependabot recreate

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.6.2 to 5.0.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@ea165f8...330a01c)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: 5.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@github-actions
Copy link

PR: #12
Mode: squash
Topic: GH-releng-gerrit_to_platform-12
Change-Ids:
Ica9ca9701435c16a2b212789fa36c427b1a87aad
Digest: 838983624e47
GitHub-Hash: 5ba0103cc0fa1c65

@dependabot dependabot bot force-pushed the dependabot/github_actions/actions/upload-artifact-5.0.0 branch from e5e8798 to 2dab050 Compare October 29, 2025 12:47
@github-actions
Copy link

Change raised in Gerrit by GitHub2Gerrit: https://gerrit.linuxfoundation.org/infra/c/releng/gerrit_to_platform/+/73831

@github-actions
Copy link

Auto-closing pull request

@github-actions github-actions bot closed this Oct 29, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Oct 29, 2025

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot bot deleted the dependabot/github_actions/actions/upload-artifact-5.0.0 branch October 29, 2025 12:47
lfit-replication pushed a commit that referenced this pull request Oct 29, 2025
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.
Change-Id: I70b47b39a406f24490caf3aab04392be082c1e39

---

[//]: # (dependabot-end)

Bumps actions/upload-artifact from 4.6.2 to 5.0.0.
## Release notes

Sourced from actions/upload-artifact's releases.

v5.0.0
What's Changed
BREAKING CHANGE: this update supports Node v24.x. This is not a breaking change per-se but we're treating it as such.

Update README.md by @​GhadimiR in actions/upload-artifact#681
Update README.md by @​nebuk89 in actions/upload-artifact#712
Readme: spell out the first use of GHES by @​danwkennedy in actions/upload-artifact#727
Update GHES guidance to include reference to Node 20 version by @​patrikpolyak in actions/upload-artifact#725
Bump @actions/artifact to v4.0.0
Prepare v5.0.0 by @​danwkennedy in actions/upload-artifact#734

New Contributors

@​GhadimiR made their first contribution in actions/upload-artifact#681
@​nebuk89 made their first contribution in actions/upload-artifact#712
@​danwkennedy made their first contribution in actions/upload-artifact#727
@​patrikpolyak made their first contribution in actions/upload-artifact#725

Full Changelog: actions/upload-artifact@v4...v5.0.0

## Commits

330a01c Merge pull request #734 from actions/danwkennedy/prepare-5.0.0
03f2824 Update github.dep.yml
905a1ec Prepare v5.0.0
2d9f9cd Merge pull request #725 from patrikpolyak/patch-1
9687587 Merge branch 'main' into patch-1
2848b2c Merge pull request #727 from danwkennedy/patch-1
9b51177 Spell out the first use of GHES
cd231ca Update GHES guidance to include reference to Node 20 version
de65e23 Merge pull request #712 from actions/nebuk89-patch-1
8747d8c Update README.md
Additional commits viewable in compare view

![Dependabot compatibility score](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: lfit.gh2gerrit <releng+lfit-gh2gerrit@linuxfoundation.org>
Change-Id: Ica9ca9701435c16a2b212789fa36c427b1a87aad
GitHub-PR: #12
GitHub-Hash: 5ba0103cc0fa1c65
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant