Bump the actions group with 2 updates#252

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to ourterms of service andprivacy statement. We’ll occasionally send you account related emails.

Already on GitHub?Sign in to your account

Jump to bottom

Merged

hugovk merged 1 commit intomainfromdependabot/github_actions/actions-7921bc0373

Sep 2, 2025

Merged

Bump the actions group with 2 updates#252

hugovk merged 1 commit intomainfromdependabot/github_actions/actions-7921bc0373

Sep 2, 2025

Conversation

Copy link

Contributor

dependabotbot commented on behalf ofgithubSep 2, 2025•
edited by github-actionsbot
Loading

Bumps the actions group with 2 updates:actions/checkout andactions/download-artifact.

Updatesactions/checkout from 4 to 5

Release notes

Sourced fromactions/checkout's releases.

v5.0.0
What's Changed
Update actions checkout to use node 24 by@salmanmkc inactions/checkout#2226
Prepare v5.0.0 release by@salmanmkc inactions/checkout#2238
⚠️ Minimum Compatible Runner Version
v2.327.1
Release Notes
Make sure your runner is updated to this version or newer to use this release.
Full Changelog:actions/checkout@v4...v5.0.0
v4.3.0
What's Changed
docs: update README.md by@motss inactions/checkout#1971
Add internal repos for checking out multiple repositories by@mouismail inactions/checkout#1977
Documentation update - add recommended permissions to Readme by@benwells inactions/checkout#2043
Adjust positioning of user email note and permissions heading by@joshmgross inactions/checkout#2044
Update README.md by@nebuk89 inactions/checkout#2194
Update CODEOWNERS for actions by@TingluoHuang inactions/checkout#2224
Update package dependencies by@salmanmkc inactions/checkout#2236
Prepare release v4.3.0 by@salmanmkc inactions/checkout#2237
New Contributors
@motss made their first contribution inactions/checkout#1971
@mouismail made their first contribution inactions/checkout#1977
@benwells made their first contribution inactions/checkout#2043
@nebuk89 made their first contribution inactions/checkout#2194
@salmanmkc made their first contribution inactions/checkout#2236
Full Changelog:actions/checkout@v4...v4.3.0
v4.2.2
What's Changed
url-helper.ts now leverages well-known environment variables by@jww3 inactions/checkout#1941
Expand unit test coverage forisGhes by@jww3 inactions/checkout#1946
Full Changelog:actions/checkout@v4.2.1...v4.2.2
v4.2.1
What's Changed
Check out other refs/* by commit if provided, fall back to ref by@orhantoy inactions/checkout#1924
New Contributors
@Jcambass made their first contribution inactions/checkout#1919
Full Changelog:actions/checkout@v4.2.0...v4.2.1

... (truncated)

Changelog

Sourced fromactions/checkout's changelog.

Changelog
V5.0.0
Update actions checkout to use node 24 by@salmanmkc inactions/checkout#2226
V4.3.0
docs: update README.md by@motss inactions/checkout#1971
Add internal repos for checking out multiple repositories by@mouismail inactions/checkout#1977
Documentation update - add recommended permissions to Readme by@benwells inactions/checkout#2043
Adjust positioning of user email note and permissions heading by@joshmgross inactions/checkout#2044
Update README.md by@nebuk89 inactions/checkout#2194
Update CODEOWNERS for actions by@TingluoHuang inactions/checkout#2224
Update package dependencies by@salmanmkc inactions/checkout#2236
v4.2.2
url-helper.ts now leverages well-known environment variables by@jww3 inactions/checkout#1941
Expand unit test coverage forisGhes by@jww3 inactions/checkout#1946
v4.2.1
Check out other refs/* by commit if provided, fall back to ref by@orhantoy inactions/checkout#1924
v4.2.0
Add Ref and Commit outputs by@lucacome inactions/checkout#1180
Dependency updates by@dependabot-actions/checkout#1777,actions/checkout#1872
v4.1.7
Bump the minor-npm-dependencies group across 1 directory with 4 updates by@dependabot inactions/checkout#1739
Bump actions/checkout from 3 to 4 by@dependabot inactions/checkout#1697
Check out other refs/* by commit by@orhantoy inactions/checkout#1774
Pin actions/checkout's own workflows to a known, good, stable version. by@jww3 inactions/checkout#1776
v4.1.6
Check platform to set archive extension appropriately by@cory-miller inactions/checkout#1732
v4.1.5
Update NPM dependencies by@cory-miller inactions/checkout#1703
Bump github/codeql-action from 2 to 3 by@dependabot inactions/checkout#1694
Bump actions/setup-node from 1 to 4 by@dependabot inactions/checkout#1696
Bump actions/upload-artifact from 2 to 4 by@dependabot inactions/checkout#1695
README: Suggestuser.email to be41898282+github-actions[bot]@users.noreply.github.com by@cory-miller inactions/checkout#1707
v4.1.4
Disableextensions.worktreeConfig when disablingsparse-checkout by@jww3 inactions/checkout#1692
Add dependabot config by@cory-miller inactions/checkout#1688
Bump the minor-actions-dependencies group with 2 updates by@dependabot inactions/checkout#1693
Bump word-wrap from 1.2.3 to 1.2.5 by@dependabot inactions/checkout#1643
v4.1.3

... (truncated)

Commits

08c6903 Prepare v5.0.0 release (#2238)
9f26565 Update actions checkout to use node 24 (#2226)
See full diff incompare view

Updatesactions/download-artifact from 4 to 5

Release notes

Sourced fromactions/download-artifact's releases.

v5.0.0
What's Changed
Update README.md by@nebuk89 inactions/download-artifact#407
BREAKING fix: inconsistent path behavior for single artifact downloads by ID by@GrantBirki inactions/download-artifact#416
v5.0.0
🚨 Breaking Change
This release fixes an inconsistency in path behavior for single artifact downloads by ID.If you're downloading single artifacts by ID, the output path may change.
What Changed
Previously,single artifact downloads behaved differently depending on how you specified the artifact:
By name:name: my-artifact → extracted topath/ (direct)
By ID:artifact-ids: 12345 → extracted topath/my-artifact/ (nested)
Now both methods are consistent:
By name:name: my-artifact → extracted topath/ (unchanged)
By ID:artifact-ids: 12345 → extracted topath/ (fixed - now direct)
Migration Guide
✅ No Action Needed If:
You download artifacts byname
You downloadmultiple artifacts by ID
You already usemerge-multiple: true as a workaround
⚠️ Action Required If:
You downloadsingle artifacts by ID and your workflows expect the nested directory structure.
Before v5 (nested structure):
-uses:actions/download-artifact@v4with:artifact-ids:12345path:dist# Files were in: dist/my-artifact/
Wheremy-artifact is the name of the artifact you previously uploaded
To maintain old behavior (if needed):
</tr></table>

... (truncated)

Commits

634f93c Merge pull request#416 from actions/single-artifact-id-download-path
b19ff43 refactor: resolve download path correctly in artifact download tests (mainly ...
e262cbe bundle dist
bff23f9 update docs
fff8c14 fix download path logic when downloading a single artifact by id
448e3f8 Merge pull request#407 from actions/nebuk89-patch-1
47225c4 Update README.md
See full diff incompare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting@dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

📚 Documentation preview 📚:https://python-docs-theme-previews--252.org.readthedocs.build/

Bump the actions group with 2 updates

18b7d00

Bumps the actions group with 2 updates: [actions/checkout](https://github.com/actions/checkout) and [actions/download-artifact](https://github.com/actions/download-artifact).Updates `actions/checkout` from 4 to 5- [Release notes](https://github.com/actions/checkout/releases)- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)- [Commits](actions/checkout@v4...v5)Updates `actions/download-artifact` from 4 to 5- [Release notes](https://github.com/actions/download-artifact/releases)- [Commits](actions/download-artifact@v4...v5)---updated-dependencies:- dependency-name: actions/checkout  dependency-version: '5'  dependency-type: direct:production  update-type: version-update:semver-major  dependency-group: actions- dependency-name: actions/download-artifact  dependency-version: '5'  dependency-type: direct:production  update-type: version-update:semver-major  dependency-group: actions...Signed-off-by: dependabot[bot] <support@github.com>