Skip to content

ci(deps): bump actions/upload-artifact from 4 to 7#1

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions/upload-artifact-7
Open

ci(deps): bump actions/upload-artifact from 4 to 7#1
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions/upload-artifact-7

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 24, 2026
edited
Loading

Copy link
Copy Markdown

Bumps actions/upload-artifact from 4 to 7.

Release notes

Sourced from actions/upload-artifact's releases.

v7.0.0

v7 What's new

Direct Uploads

Adds support for uploading single files directly (unzipped). Callers can set the new archive parameter to false to skip zipping the file during upload. Right now, we only support single files. The action will fail if the glob passed resolves to multiple files. The name parameter is also ignored with this setting. Instead, the name of the artifact will be the name of the uploaded file.

ESM

To support new versions of the @actions/* packages, we've upgraded the package to ESM.

What's Changed

New Contributors

Full Changelog: actions/upload-artifact@v6...v7.0.0

v6.0.0

v6 - What's new

[!IMPORTANT] actions/upload-artifact@v6 now runs on Node.js 24 (runs.using: node24) and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.

Node.js 24

This release updates the runtime to Node.js 24. v5 had preliminary support for Node.js 24, however this action was by default still running on Node.js 20. Now this action by default will run on Node.js 24.

What's Changed

Full Changelog: actions/upload-artifact@v5.0.0...v6.0.0

v5.0.0

What's Changed

BREAKING CHANGE: this update supports Node v24.x. This is not a breaking change per-se but we're treating it as such.

... (truncated)

Commits
  • 043fb46 Merge pull request #797 from actions/yacaovsnc/update-dependency
  • 634250c Include changes in typespec/ts-http-runtime 0.3.5
  • e454baa Readme: bump all the example versions to v7 (#796)
  • 74fad66 Update the readme with direct upload details (#795)
  • bbbca2d Support direct file uploads (#764)
  • 589182c Upgrade the module to ESM and bump dependencies (#762)
  • 47309c9 Merge pull request #754 from actions/Link-/add-proxy-integration-tests
  • 02a8460 Add proxy integration test
  • b7c566a Merge pull request #745 from actions/upload-artifact-v6-release
  • e516bc8 docs: correct description of Node.js 24 support in README
  • Additional commits viewable in compare view

@dependabot @github

dependabot Bot commented on behalf of github May 24, 2026

Copy link
Copy Markdown
Author

Labels

The following labels could not be found: supply-chain, w763. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

sneaky-hippo added a commit that referenced this pull request May 29, 2026
@sneaky-hippo @claude
feat(web): homepage 10x — remove cruft, fix the black-brick receipt, …
3808c3d 
…mobile-first, kill jargon

Per detailed user feedback on the homepage:
- Removed the 'Privilege means...' testimonial + 'How kolm compares / case study' link
  cluster ('this part makes no sense').
- Receipt 'massive black brick' FIXED: .kolm-receipt-strip pre used color:var(--ink-1)
  (DARK in the light theme) on a #0e1116 dark bg = dark-on-dark. Set explicit light text
  (#d4d9e0) + max-height/scroll + mobile font. Now a clean readable terminal card.
- Connectors: wrapping text-boxes -> clean non-wrapping pill chips (flex-wrap, nowrap).
- Mobile-first: 4-step 'Pick the path' grid (repeat(4,1fr)) + connectors now collapse to
  1-2 cols under 760/520px (w922-home-mobile style block); ks-race 'same prompt' comparison
  gets taller auto-height panes + larger type under 640px (was tiny/cramped).
- Jargon: 'Three surfaces' -> 'Route, distill, run' / 'What kolm does' (you: 'wtf is a surface').
- Repetition: removed the prose spec-sheet dl (the SVG file-tree already shows all 7 entries).
- Deleted the 'Six numbers that describe the system' strip.
- claude-opus-4-7 -> claude-opus-4-8 in the receipt.
Tests updated (W410 #1 numbers-strip removed; W921 #5 rail no longer requires the removed
compare/case-study cluster). Verified via desktop+mobile screenshots. sw v167.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
sneaky-hippo added a commit that referenced this pull request May 30, 2026
@sneaky-hippo @claude
feat(distill): function-calling recipe + data prep/eval (the #1 in-de…
478bb28 
…mand distill)

Research (Grok via our xAI proxy + GitHub/HF Spring-2026): agentic tool/function-calling on a
small model is the most-requested distill right now (all top releases are agent frameworks —
Google ADK, smolagents, goose, codex-cli). So we train exactly that.

- scripts/prep-function-calling.py: glaiveai/glaive-function-calling-v2 -> Qwen2.5-native
  <tool_call> SFT pairs (glaive single-quotes its arguments; parsed with regex). 3000 pairs.
- scripts/eval-function-calling.py: checks valid <tool_call> on in-scope + no hallucinated call on out-of-scope.
- recipes/function-calling-qwen2.5-3b.json: the recipe (Qwen2.5-3B, bf16 LoRA r32, 2 ep).

Trains locally on the RTX 5090 (~29 min); same recipe runs on RunPod via the Vercel-key proxy.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
sneaky-hippo added a commit that referenced this pull request May 30, 2026
@sneaky-hippo @claude
feat(distill): ship Qwen2.5-3B function-calling LoRA (the #1 in-deman…
ea3873a 
…d distill) — eval 4/4

Trained locally on the RTX 5090 from glaiveai/glaive-function-calling-v2 (3000 Qwen-native pairs).
Held-out eval (scripts/eval-function-calling.py) 4/4: emits valid <tool_call> for weather/email/stock
(extracting all params), and correctly declines an out-of-scope poem request with no hallucinated call.
Model card + training-summary + adapter_config committed (29.5MB adapter binary kept local; reproducible
via recipes/function-calling-qwen2.5-3b.json + scripts/prep+train+eval).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
sneaky-hippo added a commit that referenced this pull request May 31, 2026
@sneaky-hippo @claude
feat(nav): elevate Proof into the canonical nav — surface the moat on…
24908d8 
… every page

The signed-receipt provenance layer is kolm's #1 differentiator (Grok-validated
whitespace), but it was absent from the nav and /proof was unreachable from it.

Swap the "Models" top item -> "Proof" across the canonical 5 (About · Proof · Docs
· Pricing · Enterprise); fold the model catalog into Product's mega so nothing is
lost; add a Proof mega (Proof overview / Benchmarks / Compare / Leaderboard /
K-score · Verify / Trust / Security). /compare added to satisfy the site.test
benchmarks-requires-compare nav invariant.

- scripts/inject-nav.cjs: NAV_ITEMS Models->Proof, MEGA.proof, /models into product mega
- public/nav.js: proofRe + /proof path-active wiring (kept /models wiring for W221 #5/#8)
- 4 lock tests updated in lockstep (wave221/wave230/wave322-325/wave409z label arrays)
- public/foundations.html: hidden W230 anchor block Models->Proof, /about label fix
- 336 pages re-injected (idempotent: 2nd run 0 touched); sw.js v168->v169

Verified: 14 nav-coupled families, 0 failures (wave221 13/13, wave230 19/19,
wave322-325 18/18, wave409z 16/16, wave886 9/9, wave410 10/10, wave921-seo 26/26,
wave220 12/12, wave271 25/25, wave260 28/28, wave373 15/15, site 7/7, wave538 6/6,
wave205 22/22).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
sneaky-hippo added a commit that referenced this pull request May 31, 2026
@sneaky-hippo @claude
feat(brand): site-wide nav de-jargon — kill Wrapper/Studio/evidence-t…
69235f0 
…o-artifact

The #1 SOTA-audit finding: internal-noun jargon (Wrapper/Studio/surface/evidence-to-
artifact) was hard-coded into the nav/footer/meta on ~170+ pages + nav.js. Standardize
on the canonical positioning everywhere.

- scripts/codemod-nav-dejargon-w923.cjs: surgical, label-bound replacement of the nav
  anchors (href="/wrapper">Wrapper< -> /product>Product<, /studio>Studio< -> /proof>Proof<)
  + footer column headers. 837 files, 2863 replacements. Never touches editorial body
  copy ("wrapper tax") or /wrapper links with other labels; the wrapper/studio PAGES stay
  (locked by 15 ship-gate tests) and remain reachable.
- public/nav.js: fallback chrome + footer tagline -> "Own your AI. Run it anywhere."
- public/index.html: meta description + twitter + keywords drop "evidence-to-artifact"
  for the canonical "The AI compiler / Own your AI" language (em-dash budget held at 0,
  desc 210 chars).
- sw.js v169 -> v170.

Verified 0 residual evidence-to-artifact + 0 residual Wrapper/Studio nav anchors. Green:
site 7/7, wave538 6/6, wave221 13/13, wave230 19/19, wave206 20/20, wave169 20/20,
wave274 77/77, wave196 14/14, wave921-seo 26/26, wave373 15/15, wave220 12/12, wave271
25/25, wave225 14/14, wave272 18/18, wave889-8-12 12/12.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
@dependabot
ci(deps): bump actions/upload-artifact from 4 to 7
bd88b30 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4 to 7.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@v4...v7)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: '7'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/github_actions/actions/upload-artifact-7 branch from ebed5f8 to bd88b30 Compare June 20, 2026 00:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants