Skip to content

chore(deps): bump GitHub Actions to latest major versions#20

Merged
ehsantg merged 1 commit into
mainfrom
chore/bump-actions
Jun 24, 2026
Merged

chore(deps): bump GitHub Actions to latest major versions#20
ehsantg merged 1 commit into
mainfrom
chore/bump-actions

Conversation

@ehsantg

@ehsantg ehsantg commented Jun 24, 2026

Copy link
Copy Markdown
Contributor

Consolidates the five open Dependabot PRs (#14, #15, #16, #17, #18) into one.

Each Dependabot PR was branched off the pre-PyPI main, so they all carried the old broken pyproject.toml ordering ([project.urls] before [project.optional-dependencies]) and failed CI with:

TypeError: URL dependencies of field project.urls must be a string

They were also mutually conflicting. This PR re-applies all the bumps on top of the current main (which has the pyproject.toml fix), so CI is green.

Bumps

Action From To
actions/checkout v4 v7
astral-sh/setup-uv v4 v7
codecov/codecov-action v4 v7
actions/upload-artifact v4 v7
actions/download-artifact v4 v7
softprops/action-gh-release v2 v3

download-artifact is bumped alongside upload-artifact (Dependabot didn't open a PR for it) since the two must share a major version to stay compatible.

Closes #14
Closes #15
Closes #16
Closes #17
Closes #18

Consolidates the five Dependabot bumps (#14#18), which were each
branched off the pre-PyPI main and failed CI on the now-fixed
pyproject.toml ordering.

- actions/checkout v4 -> v7
- astral-sh/setup-uv v4 -> v7
- codecov/codecov-action v4 -> v7
- actions/upload-artifact v4 -> v7
- actions/download-artifact v4 -> v7 (kept in lockstep with upload)
- softprops/action-gh-release v2 -> v3
@ehsantg ehsantg merged commit 92d7f79 into main Jun 24, 2026
3 checks passed
@ehsantg ehsantg deleted the chore/bump-actions branch June 24, 2026 10:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant