Skip to content

chore(deps): bump actions/download-artifact from 4 to 8#3

Open
dependabot[bot] wants to merge 2 commits into
mainfrom
dependabot/github_actions/actions/download-artifact-8
Open

chore(deps): bump actions/download-artifact from 4 to 8#3
dependabot[bot] wants to merge 2 commits into
mainfrom
dependabot/github_actions/actions/download-artifact-8

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 9, 2026

Copy link
Copy Markdown
Contributor

Bumps actions/download-artifact from 4 to 8.

Release notes

Sourced from actions/download-artifact's releases.

v8.0.0

v8 - What's new

[!IMPORTANT] actions/download-artifact@v8 has been migrated to an ESM module. This should be transparent to the caller but forks might need to make significant changes.

[!IMPORTANT] Hash mismatches will now error by default. Users can override this behavior with a setting change (see below).

Direct downloads

To support direct uploads in actions/upload-artifact, the action will no longer attempt to unzip all downloaded files. Instead, the action checks the Content-Type header ahead of unzipping and skips non-zipped files. Callers wishing to download a zipped file as-is can also set the new skip-decompress parameter to true.

Enforced checks (breaking)

A previous release introduced digest checks on the download. If a download hash didn't match the expected hash from the server, the action would log a warning. Callers can now configure the behavior on mismatch with the digest-mismatch parameter. To be secure by default, we are now defaulting the behavior to error which will fail the workflow run.

ESM

To support new versions of the @actions/* packages, we've upgraded the package to ESM.

What's Changed

Full Changelog: actions/download-artifact@v7...v8.0.0

v7.0.0

v7 - What's new

[!IMPORTANT] actions/download-artifact@v7 now runs on Node.js 24 (runs.using: node24) and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.

Node.js 24

This release updates the runtime to Node.js 24. v6 had preliminary support for Node 24, however this action was by default still running on Node.js 20. Now this action by default will run on Node.js 24.

What's Changed

New Contributors

Full Changelog: actions/download-artifact@v6.0.0...v7.0.0

v6.0.0

... (truncated)

Commits
  • 3e5f45b Add regression tests for CJK characters (#471)
  • e6d03f6 Add a regression test for artifact name + content-type mismatches (#472)
  • 70fc10c Merge pull request #461 from actions/danwkennedy/digest-mismatch-behavior
  • f258da9 Add change docs
  • ccc058e Fix linting issues
  • bd7976b Add a setting to specify what to do on hash mismatch and default it to error
  • ac21fcf Merge pull request #460 from actions/danwkennedy/download-no-unzip
  • 15999bf Add note about package bumps
  • 974686e Bump the version to v8 and add release notes
  • fbe48b1 Update test names to make it clearer what they do
  • Additional commits viewable in compare view

@dependabot @github

dependabot Bot commented on behalf of github May 9, 2026

Copy link
Copy Markdown
Contributor Author

Labels

The following labels could not be found: actions, dependencies. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

cp-yu and others added 2 commits May 27, 2026 19:18
## Why

[业务背景]
GitHub Actions 需要在发布前稳定完成前端检查、Tauri 后端检查和 Web runtime release 构建,本地必须先复现并消除会阻断 CI 的格式与 lint 问题。

[技术决策]
保留当前 Web/桌面共用代码和条件入口,不为通过 Clippy 大面积删除保留逻辑;CI 仍对其它 Clippy warning 保持失败,只放行当前架构下已知的 dead_code 与 unused_imports。

[问题描述]
前端 Prettier 与 Rust rustfmt 存在格式漂移;原 Clippy 命令使用 `-D warnings` 会把现有保留模块的 dead code 和 unused imports 升级为错误,导致 GitHub Actions 后端检查无法通过。

## Changes

- `.github/workflows/ci.yml`: CI 后端检查需要匹配当前 fork 的 Web/桌面共用架构,避免保留入口的 dead code 和 unused imports 阻断 Clippy。
- `src-tauri/src/commands/usage.rs`: Rust 格式检查要求 import 顺序与 rustfmt 输出一致,否则 backend format step 会失败。
- `src-tauri/src/lib.rs`: Rust 格式检查要求 re-export 顺序与 rustfmt 输出一致,否则 backend format step 会失败。
- `src-tauri/src/proxy/providers/claude.rs`: Rust 格式检查要求短 tuple 表达式按 rustfmt 规则压缩,否则 backend format step 会失败。
- `src/components/providers/forms/ProviderForm.tsx`: 前端 CI 使用 Prettier 校验,该组件必须符合当前格式规则。
- `src/components/providers/forms/hooks/useModelState.ts`: 前端 CI 使用 Prettier 校验,该 hook 必须符合当前函数参数换行规则。
- `src/components/usage/UsageSummaryCards.tsx`: 前端 CI 使用 Prettier 校验,该组件的 hook 解构必须符合当前格式规则。
- `src/components/usage/UsageTrendChart.tsx`: 前端 CI 使用 Prettier 校验,该组件的 hook 解构必须符合当前格式规则。
- `src/config/claudeProviderPresets.ts`: 前端 CI 使用 Prettier 校验,预设配置的泛型和长字符串必须符合当前格式规则。
- `src/config/openclawProviderPresets.ts`: 前端 CI 使用 Prettier 校验,预设默认值转换逻辑必须符合当前换行规则。
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 4 to 8.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](actions/download-artifact@v4...v8)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-version: '8'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/github_actions/actions/download-artifact-8 branch from 8e537e3 to 863ed56 Compare May 27, 2026 11:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant