From ba1156d8564ef4eae58433221654442387d04278 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 18 May 2026 00:31:27 +0000
Subject: [PATCH] ci(deps): bump actions/upload-artifact from 4 to 7

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4 to 7.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v4...v7)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: '7'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/benchmarks.yml                   | 2 +-
 .github/workflows/credential-rotation-reminder.yml | 2 +-
 .github/workflows/deep-qa-block.yml                | 2 +-
 .github/workflows/e2e-golden-path.yml              | 2 +-
 .github/workflows/embedded-pg-bench.yml            | 2 +-
 .github/workflows/go-list-updates-monthly.yml      | 2 +-
 .github/workflows/govulncheck-nightly.yml          | 2 +-
 .github/workflows/perf.yml                         | 2 +-
 .github/workflows/quarterly-doc-audit.yml          | 2 +-
 .github/workflows/release.yml                      | 6 +++---
 .github/workflows/sbom.yml                         | 2 +-
 .github/workflows/windows-smoke.yml                | 2 +-
 12 files changed, 14 insertions(+), 14 deletions(-)

diff --git a/.github/workflows/benchmarks.yml b/.github/workflows/benchmarks.yml
index eea30b21..14714088 100644
--- a/.github/workflows/benchmarks.yml
+++ b/.github/workflows/benchmarks.yml
@@ -45,7 +45,7 @@ jobs:
           CI: "true"
 
       - name: Archive results
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: benchmark-results-${{ github.run_id }}
           path: .github/benchmarks/results/
diff --git a/.github/workflows/credential-rotation-reminder.yml b/.github/workflows/credential-rotation-reminder.yml
index c8e4ef8d..d6ad98f7 100644
--- a/.github/workflows/credential-rotation-reminder.yml
+++ b/.github/workflows/credential-rotation-reminder.yml
@@ -110,7 +110,7 @@ jobs:
 
       - name: Upload PCI artifacts
         if: always()
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: rotation-pci-${{ github.run_id }}
           path: |
diff --git a/.github/workflows/deep-qa-block.yml b/.github/workflows/deep-qa-block.yml
index 5aa73b44..0ec44d37 100644
--- a/.github/workflows/deep-qa-block.yml
+++ b/.github/workflows/deep-qa-block.yml
@@ -71,7 +71,7 @@ jobs:
           EOF
 
       - name: Upload report
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: "deep-qa-block-${{ inputs.block }}"
           path: "deep-qa-block-${{ inputs.block }}.md"
diff --git a/.github/workflows/e2e-golden-path.yml b/.github/workflows/e2e-golden-path.yml
index 2adc93a1..c336b337 100644
--- a/.github/workflows/e2e-golden-path.yml
+++ b/.github/workflows/e2e-golden-path.yml
@@ -72,7 +72,7 @@ jobs:
 
       - name: Upload JSON report
         if: always()
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: golden-path-report-${{ github.run_id }}
           path: /tmp/golden-path-report.json
diff --git a/.github/workflows/embedded-pg-bench.yml b/.github/workflows/embedded-pg-bench.yml
index fefb47a2..72b03a97 100644
--- a/.github/workflows/embedded-pg-bench.yml
+++ b/.github/workflows/embedded-pg-bench.yml
@@ -74,7 +74,7 @@ jobs:
             | tee bench-results-${{ matrix.os }}.txt
 
       - name: Upload benchmark results
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         if: always()
         with:
           name: bench-results-${{ matrix.os }}
diff --git a/.github/workflows/go-list-updates-monthly.yml b/.github/workflows/go-list-updates-monthly.yml
index af18f380..3743fb32 100644
--- a/.github/workflows/go-list-updates-monthly.yml
+++ b/.github/workflows/go-list-updates-monthly.yml
@@ -80,7 +80,7 @@ jobs:
           cat report.md
 
       - name: Upload report
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: go-updates-${{ github.run_id }}
           path: |
diff --git a/.github/workflows/govulncheck-nightly.yml b/.github/workflows/govulncheck-nightly.yml
index c05cd5ce..2e094563 100644
--- a/.github/workflows/govulncheck-nightly.yml
+++ b/.github/workflows/govulncheck-nightly.yml
@@ -75,7 +75,7 @@ jobs:
 
       - name: Upload scan artifact
         if: always()
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: govuln-${{ github.run_id }}
           path: govuln.json
diff --git a/.github/workflows/perf.yml b/.github/workflows/perf.yml
index ddb3b490..42b1d74f 100644
--- a/.github/workflows/perf.yml
+++ b/.github/workflows/perf.yml
@@ -240,7 +240,7 @@ jobs:
             | tee bench-output.txt
 
       - name: Upload benchmark results
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: cli-bench-output
           path: bench-output.txt
diff --git a/.github/workflows/quarterly-doc-audit.yml b/.github/workflows/quarterly-doc-audit.yml
index d5a37d0b..b1006fa7 100644
--- a/.github/workflows/quarterly-doc-audit.yml
+++ b/.github/workflows/quarterly-doc-audit.yml
@@ -105,7 +105,7 @@ jobs:
             .claude/qa/findings/*.json
 
       - name: Upload JSON report
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: doc-audit-${{ steps.quarter.outputs.label }}
           path: .claude/qa/findings/${{ steps.quarter.outputs.label }}-doc-audit.json
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index d3702f75..9d1c3ff3 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -109,7 +109,7 @@ jobs:
           echo "hashes=$HASHES" >> "$GITHUB_OUTPUT"
 
       - name: Upload build artifacts
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: release-binaries
           path: |
@@ -118,7 +118,7 @@ jobs:
           retention-days: 1
 
       - name: Upload checksums
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: release-checksums
           path: dist/checksums.txt
@@ -170,7 +170,7 @@ jobs:
           done
 
       - name: Upload SBOMs
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: release-sboms
           path: |
diff --git a/.github/workflows/sbom.yml b/.github/workflows/sbom.yml
index d875cea7..cd38d399 100644
--- a/.github/workflows/sbom.yml
+++ b/.github/workflows/sbom.yml
@@ -156,7 +156,7 @@ jobs:
 
       # ── Upload as workflow artifact (not a release asset) ────────────────
       - name: Upload SBOMs as workflow artifact
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: sbom-dryrun-${{ github.sha }}
           path: |
diff --git a/.github/workflows/windows-smoke.yml b/.github/workflows/windows-smoke.yml
index 71909fc8..b0132684 100644
--- a/.github/workflows/windows-smoke.yml
+++ b/.github/workflows/windows-smoke.yml
@@ -100,7 +100,7 @@ jobs:
 
       - name: Upload artifact
         if: ${{ inputs.arch == 'both' || inputs.arch == matrix.goarch }}
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: nself-windows-${{ matrix.goarch }}-smoke
           path: dist/nself.exe