)]}' { "commit": "4f937afbd2d5090d68319daaf330d7cc3d6960a4", "tree": "51a3ac727965f572335c16ece2843efd090bf987", "parents": [ "1ea0aa63dc77993f52cfaf4f80f7ae007ac4d546" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Aug 05 09:08:17 2024 +0000" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Aug 05 09:08:17 2024 +0000" }, "message": "Bump actions/upload-artifact from 4.3.4 to 4.3.5 (#882)\n\nBumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.4 to 4.3.5.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href\u003d\"https://github.com/actions/upload-artifact/releases\"\u003eactions/upload-artifact\u0027s releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.3.5\u003c/h2\u003e\n\u003ch2\u003eWhat\u0027s Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump \u003ccode\u003e@​actions/artifact\u003c/code\u003e to v2.1.9 by \u003ca href\u003d\"https://github.com/robherley\"\u003e\u003ccode\u003e@​robherley\u003c/code\u003e\u003c/a\u003e in \u003ca href\u003d\"https://redirect.github.com/actions/upload-artifact/pull/588\"\u003eactions/upload-artifact#588\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eFixed artifact upload chunk timeout logic \u003ca href\u003d\"https://redirect.github.com/actions/toolkit/pull/1774\"\u003e#1774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse lazy stream to prevent issues with open file limits \u003ca href\u003d\"https://redirect.github.com/actions/toolkit/pull/1771\"\u003e#1771\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href\u003d\"https://github.com/actions/upload-artifact/compare/v4.3.4...v4.3.5\"\u003ehttps://github.com/actions/upload-artifact/compare/v4.3.4...v4.3.5\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/actions/upload-artifact/commit/89ef406dd8d7e03cfd12d9e0a4a378f454709029\"\u003e\u003ccode\u003e89ef406\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href\u003d\"https://redirect.github.com/actions/upload-artifact/issues/588\"\u003e#588\u003c/a\u003e from actions/robherley/4.3.5\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/actions/upload-artifact/commit/23d796df36a979af3abdb7f632f5391e4f15fa07\"\u003e\u003ccode\u003e23d796d\u003c/code\u003e\u003c/a\u003e license updates\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/actions/upload-artifact/commit/e445c64bc2a4ebc990affbc00aa66b845f05600a\"\u003e\u003ccode\u003ee445c64\u003c/code\u003e\u003c/a\u003e bump \u003ccode\u003e@​actions/artifact\u003c/code\u003e to v2.1.9\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href\u003d\"https://github.com/actions/upload-artifact/compare/0b2256b8c012f0828dc542b3febcab082c67f72b...89ef406dd8d7e03cfd12d9e0a4a378f454709029\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dactions/upload-artifact\u0026package-manager\u003dgithub_actions\u0026previous-version\u003d4.3.4\u0026new-version\u003d4.3.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\u003c/details\u003e", "tree_diff": [ { "type": "modify", "old_id": "43e5b27b6c9af95f9550f8a7d762c169efbbfee7", "old_mode": 33188, "old_path": ".github/workflows/scorecards-analysis.yml", "new_id": "43cfd8453904eb9b887273a8eb14782dc3d588c8", "new_mode": 33188, "new_path": ".github/workflows/scorecards-analysis.yml" } ] }