Skip to content

Bump actions/upload-artifact from 4 to 5#9

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions/upload-artifact-5
Closed

Bump actions/upload-artifact from 4 to 5#9
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions/upload-artifact-5

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Oct 27, 2025

Copy link
Copy Markdown

Bumps actions/upload-artifact from 4 to 5.

Release notes

Sourced from actions/upload-artifact's releases.

v5.0.0

What's Changed

BREAKING CHANGE: this update supports Node v24.x. This is not a breaking change per-se but we're treating it as such.

New Contributors

Full Changelog: actions/upload-artifact@v4...v5.0.0

v4.6.2

What's Changed

New Contributors

Full Changelog: actions/upload-artifact@v4...v4.6.2

v4.6.1

What's Changed

Full Changelog: actions/upload-artifact@v4...v4.6.1

v4.6.0

What's Changed

Full Changelog: actions/upload-artifact@v4...v4.6.0

v4.5.0

What's Changed

New Contributors

... (truncated)

Commits
  • 330a01c Merge pull request #734 from actions/danwkennedy/prepare-5.0.0
  • 03f2824 Update github.dep.yml
  • 905a1ec Prepare v5.0.0
  • 2d9f9cd Merge pull request #725 from patrikpolyak/patch-1
  • 9687587 Merge branch 'main' into patch-1
  • 2848b2c Merge pull request #727 from danwkennedy/patch-1
  • 9b51177 Spell out the first use of GHES
  • cd231ca Update GHES guidance to include reference to Node 20 version
  • de65e23 Merge pull request #712 from actions/nebuk89-patch-1
  • 8747d8c Update README.md
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4 to 5.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@v4...v5)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Oct 27, 2025
@dependabot @github

dependabot Bot commented on behalf of github Dec 15, 2025

Copy link
Copy Markdown
Author

Superseded by #32.

@dependabot dependabot Bot closed this Dec 15, 2025
@dependabot
dependabot Bot deleted the dependabot/github_actions/actions/upload-artifact-5 branch December 15, 2025 18:32
dkam added a commit that referenced this pull request Jun 21, 2026
…orrectness

Address review items #5#9 (silent wrong data in dashboards and MCP):

- #5 nil project_id percentiles: histogram_percentile bound `project_id = ?`
  directly, so a nil ("all projects") caller matched zero rows and reported
  0ms. MCP get_transaction_stats / get_endpoint_summary call
  percentiles_for_endpoint with no project_id. Bind project_id only when
  present (same conditional treatment as environment).
- #16/#5 global_percentile: replace non-sargable COALESCE(?, project_id) with
  the same conditional bind.
- #9 name-filtered header percentiles: the endpoints index header used
  Transaction.percentiles (no name filter) while the table below honored
  ?name=. Add a name_query LIKE filter threaded through percentiles ->
  global_percentile (transaction_histograms already carries transaction_name).
- #7 dropped endpoint-stats keys: stats_by_endpoint_with_impact and
  endpoints_by_n_plus_one no longer returned the p50/p95/p99_duration,
  avg_queries, max_queries, n_plus_one_count, total_count, n_plus_one_pct keys
  that the dashboard views and MCP formatters read (rendered blank/0). Restore
  them — query stats from the grouped scan, histogram-backed percentiles
  computed only for the returned top-N via a shared endpoint_percentiles helper.
- #6 MCP get_endpoint_timeseries crash: format_endpoint_timeseries read symbol
  keys (b[:count], b[:bucket_start], b[:avg_duration]) but
  time_series_for_endpoint returns string-keyed buckets with an integer index
  and p50/p95/p99 (no avg/bucket_start). Rewrite the formatter to the real
  shape; derive each bucket's wall-clock start from the window origin.
- #8 MCP search_slow_transactions: http_method was parsed but never passed
  through, and endpoint matched transaction_name by exact equality despite the
  schema advertising a substring match. Add http_method to Transaction.slow and
  switch the name filter to LIKE %…%.

Also fixes a latent collision found while verifying #8: `scope :slow` (no-arg,
duration > 1000) was defined after `include TransactionAnalytics`, silently
overriding the slow(time_range:, …) method MCP search_slow_transactions calls —
so that tool would have raised ArgumentError at runtime. The scope had no app
callers; remove it and point its one test at the analytics method.

Verified end-to-end against seeded data (percentiles non-zero for nil project,
name filter scopes correctly, all consumer keys present, substring + method
filtering, timeseries shape). Suite green apart from the 4 pre-existing
main-branch failures.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants