Skip to content

Commit 4e5e932

Browse files
Bump actions/download-artifact version in GH workflow
Bumps actions/download-artifact from v3 to v4, addressing CVE-2024-42471. Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
1 parent 172745d commit 4e5e932

File tree

1 file changed

+3
-2
lines changed

1 file changed

+3
-2
lines changed

.github/workflows/tests.yaml

+3-2
Original file line numberDiff line numberDiff line change
@@ -41,11 +41,12 @@ jobs:
4141
rm -f Neo4j-Bolt-*
4242
make distdir
4343
mv -v Neo4j-Bolt-* build_dir
44-
- uses: actions/upload-artifact@v3
44+
- uses: actions/upload-artifact@v4
4545
with:
4646
name: build_dir
4747
path: build_dir
4848
retention-days: 1
49+
include-hidden-files: true # .sample.cypher
4950

5051
test-job:
5152
needs: dist-job
@@ -77,7 +78,7 @@ jobs:
7778
install-modules: ExtUtils::MakeMaker~6.78
7879
enable-modules-cache: false
7980
- name: Get distribution
80-
uses: actions/download-artifact@v3
81+
uses: actions/download-artifact@v4
8182
with:
8283
name: build_dir
8384
path: .

0 commit comments

Comments
 (0)