Skip to content

build(deps): bump @octokit/request and @actions/artifact#2

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/multi-151bdccc81
Closed

build(deps): bump @octokit/request and @actions/artifact#2
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/multi-151bdccc81

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Feb 27, 2026
edited
Loading

Bumps @octokit/request to 10.0.8 and updates ancestor dependency @actions/artifact. These dependencies need to be updated together.

Updates @octokit/request from 5.6.3 to 10.0.8

Release notes

Sourced from @​octokit/request's releases.

v10.0.8

10.0.8 (2026-02-20)

Bug Fixes

  • use json-with-bigint instead of built-in JSON methods in order to properly support int64's (#798) (f13f5d9)

v10.0.7

10.0.7 (2025-11-13)

Bug Fixes

  • readme: properly structure the options for custom agent (#786) (f17c1c1), closes #785

v10.0.6

10.0.6 (2025-10-30)

Bug Fixes

  • deps: update dependency @​octokit/types to v16 (#783) (1aeac56)

v10.0.5

10.0.5 (2025-09-29)

Bug Fixes

v10.0.4

10.0.4 (2025-09-29)

Bug Fixes

  • deps: update dependency @​octokit/types to v15 (#775) (ad78b4c)

v10.0.3

10.0.3 (2025-06-20)

Bug Fixes

  • pkg: unreplaced version number in dist-bundle/ (#765) (5b181af)

v10.0.2

10.0.2 (2025-05-20)

... (truncated)

Commits
  • f13f5d9 fix: use json-with-bigint instead of built-in JSON methods in order to prop...
  • 9ba6ae0 Document that unsuccessful HTTP status code result in an exception (#795)
  • 7160b82 chore(deps): replace glob with tinyglobby (#791)
  • ab8018b ci(action): update peter-evans/create-or-update-comment action to v5 (#776)
  • fb916e4 build(deps): bump vite from 6.3.4 to 6.4.1 (#780)
  • e1eb769 chore(deps): update dependency esbuild to ^0.27.0 (#784)
  • f17c1c1 fix(readme): properly structure the options for custom agent (#786)
  • ea46fa9 ci(action): update github/codeql-action action to v4 (#778)
  • 8166d28 chore(deps): update vitest monorepo to v4 (major) (#781)
  • 1aeac56 fix(deps): update dependency @​octokit/types to v16 (#783)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​octokit/request since your current version.


Updates @actions/artifact from 2.3.2 to 6.2.0

Changelog

Sourced from @​actions/artifact's changelog.

6.2.0

  • Support uploading single un-archived files (not zipped). Direct uploads are only supported for artifacts version 7+ (based on the major version of actions/upload-artifact). Callers must pass the skipArchive option to uploadArtifact. Only single files can be uploaded at a time right now. Default behavior should remain unchanged if skipArchive = false. When skipArchive = true, the name of the file is used as the name of the artifact for consistency with the downloads: you upload artifact.txt, you download artifact.txt.

6.1.0

  • Support downloading non-zip artifacts. Zipped artifacts will be decompressed automatically (with an optional override). Un-zipped artifacts will be downloaded as-is.

6.0.0

  • Breaking change: Package is now ESM-only
    • CommonJS consumers must use dynamic import() instead of require()

5.0.3

  • Bump @actions/http-client to 3.0.2

5.0.1

  • Fix Node.js 24 punycode deprecation warning by updating @azure/storage-blob from ^12.15.0 to ^12.29.1 #2211
  • Removed direct @azure/core-http dependency (now uses @azure/core-rest-pipeline via storage-blob)

5.0.0

  • Dependency updates for Node.js 24 runtime support
  • Update @actions/core to v2
  • Update @actions/http-client to v3

4.0.0

  • Add support for Node 24 #2110
  • Fix: artifact pagination bugs and configurable artifact count limits #2165
  • Fix: reject the promise on timeout #2124
  • Update dependency versions

2.3.3

  • Dependency updates #2049
Commits
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​actions/artifact since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Feb 27, 2026
@Piotr1215
Copy link
Contributor

Piotr1215 commented Feb 27, 2026

@dependabot rebase

@dependabot
build(deps): bump @octokit/request and @actions/artifact
e8b6102 
Bumps [@octokit/request](https://github.com/octokit/request.js) to 10.0.8 and updates ancestor dependency [@actions/artifact](https://github.com/actions/toolkit/tree/HEAD/packages/artifact). These dependencies need to be updated together.


Updates `@octokit/request` from 5.6.3 to 10.0.8
- [Release notes](https://github.com/octokit/request.js/releases)
- [Commits](octokit/request.js@v5.6.3...v10.0.8)

Updates `@actions/artifact` from 2.3.2 to 6.2.0
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/artifact/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/artifact)

---
updated-dependencies:
- dependency-name: "@octokit/request"
  dependency-version: 10.0.8
  dependency-type: indirect
- dependency-name: "@actions/artifact"
  dependency-version: 6.2.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/multi-151bdccc81 branch from 292c634 to e8b6102 Compare February 27, 2026 10:22
@Piotr1215
Copy link
Contributor

Piotr1215 commented Mar 2, 2026

Closing: @actions/artifact v6 is ESM-only, incompatible with this CJS project. The bundled @octokit bumps can be done separately if needed without the artifact upgrade.

@Piotr1215 Piotr1215 closed this Mar 2, 2026
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Mar 2, 2026

OK, I won't notify you again about this release, but will get in touch when a new version is available.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot bot deleted the dependabot/npm_and_yarn/multi-151bdccc81 branch March 2, 2026 09:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Piotr1215