Skip to content

Bump actions/upload-artifact from 7.0.0 to 7.0.1#2712

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/github_actions/actions/upload-artifact-5
Open

Bump actions/upload-artifact from 7.0.0 to 7.0.1#2712
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/github_actions/actions/upload-artifact-5

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github Oct 27, 2025
edited
Loading

Bumps actions/upload-artifact from 7.0.0 to 7.0.1.

Release notes

Sourced from actions/upload-artifact's releases.

v7.0.1

What's Changed

Full Changelog: actions/upload-artifact@v7...v7.0.1

Commits
  • 043fb46 Merge pull request #797 from actions/yacaovsnc/update-dependency
  • 634250c Include changes in typespec/ts-http-runtime 0.3.5
  • e454baa Readme: bump all the example versions to v7 (#796)
  • 74fad66 Update the readme with direct upload details (#795)
  • See full diff in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Oct 27, 2025
@dependabot dependabot Bot requested a review from a team as a code owner October 27, 2025 12:06
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Oct 27, 2025
@semgrep-managed-scans
Copy link
Copy Markdown

semgrep-managed-scans Bot commented Oct 27, 2025

Semgrep found 1 missing-explicit-permissions finding:

No explicit GITHUB_TOKEN permissions found at the workflow or job level. Add a permissions: block at the workflow root (applies to all jobs) or per job with least privilege (e.g., contents: read and only specific writes like pull-requests: write if needed).

@dependabot dependabot Bot force-pushed the dependabot/github_actions/actions/upload-artifact-5 branch from 508b6d6 to 2a6d980 Compare October 29, 2025 21:57
@mjameswh
Copy link
Copy Markdown
Contributor

mjameswh commented May 26, 2026

@dependabot rebase

@dependabot
Bump actions/upload-artifact from 7.0.0 to 7.0.1
9f06a21 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 7.0.0 to 7.0.1.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@bbbca2d...043fb46)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot Bot changed the title Bump actions/upload-artifact from 4 to 5 Bump actions/upload-artifact from 7.0.0 to 7.0.1 May 26, 2026
@dependabot dependabot Bot force-pushed the dependabot/github_actions/actions/upload-artifact-5 branch from 2a6d980 to 9f06a21 Compare May 26, 2026 13:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mjameswh