From b3ea5dbb5d0e1c56fd42dca8ff5f8125e04c832c Mon Sep 17 00:00:00 2001 From: Ricardo Accioly Date: Wed, 10 Jun 2026 16:20:09 -0400 Subject: [PATCH] =?UTF-8?q?ci:=20bump=20download-artifact=20v5=20=E2=86=92?= =?UTF-8?q?=20v8.0.1=20(Node=2024)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Clears the GitHub Actions Node 20 deprecation warning seen on the v0.4.2 publish run. download-artifact@v5 ran on Node 20; v8.0.1 runs on Node 24 (verified action.yml `using: node24`). The other actions are already Node 24 (checkout@v5, setup-python@v6, upload-artifact@v7.0.1); pypa/gh-action-pypi-publish is a container action and unaffected. SHA-pinned per the repo's convention. Exercised on the next release tag (publish.yml is tag-triggered). Co-Authored-By: Claude Opus 4.8 --- .github/workflows/publish.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml index 38bfd2a..fa88527 100644 --- a/.github/workflows/publish.yml +++ b/.github/workflows/publish.yml @@ -67,7 +67,7 @@ jobs: permissions: id-token: write # OIDC — this is what authenticates to PyPI, no token needed steps: - - uses: actions/download-artifact@634f93cb2916e3fdff6788551b99b062d0335ce0 # v5 + - uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 (node24; v5 was node20) with: name: dist path: dist/