Update README.md #407
Merged
Update README.md #407
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Contributor
There was a problem hiding this comment.
Pull Request Overview
This PR adds a “Note” section to clarify that the repository is not accepting contributions and directs users to appropriate support channels.
- Introduces a “Note” header with contribution status.
- Lists steps for directing questions, bug reports, and security issues.
- Reiterates ongoing security updates and bug reporting.
Comments suppressed due to low confidence (2)
README.md:55
- Wrap the support URL in markdown link syntax for consistency, e.g.,
[support team](https://support.github.com/contact/bug-report).
2. High Priority bugs can be reported through Community Discussions or you can report these to our support team https://support.github.com/contact/bug-report.
README.md:57
- Verify that
SECURITY.mdis located at the repository root; if it's in a subfolder (e.g.,docs/), update the link path to avoid broken references.
3. Security Issues should be handled as per our [security.md](SECURITY.md).
MrG9090
approved these changes
Aug 6, 2025
mergify bot
added a commit
to ArcadeData/arcadedb
that referenced
this pull request
Aug 10, 2025
… ci] Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 4.3.0 to 5.0.0. Release notes *Sourced from [actions/download-artifact's releases](https://github.com/actions/download-artifact/releases).* > v5.0.0 > ------ > > What's Changed > -------------- > > * Update README.md by [`@nebuk89`](https://github.com/nebuk89) in [actions/download-artifact#407](https://redirect.github.com/actions/download-artifact/pull/407) > * BREAKING fix: inconsistent path behavior for single artifact downloads by ID by [`@GrantBirki`](https://github.com/GrantBirki) in [actions/download-artifact#416](https://redirect.github.com/actions/download-artifact/pull/416) > > v5.0.0 > ------ > > ### 🚨 Breaking Change > > This release fixes an inconsistency in path behavior for single artifact downloads by ID. **If you're downloading single artifacts by ID, the output path may change.** > > #### What Changed > > Previously, **single artifact downloads** behaved differently depending on how you specified the artifact: > > * **By name**: `name: my-artifact` → extracted to `path/` (direct) > * **By ID**: `artifact-ids: 12345` → extracted to `path/my-artifact/` (nested) > > Now both methods are consistent: > > * **By name**: `name: my-artifact` → extracted to `path/` (unchanged) > * **By ID**: `artifact-ids: 12345` → extracted to `path/` (fixed - now direct) > > #### Migration Guide > > ##### ✅ No Action Needed If: > > * You download artifacts by **name** > * You download **multiple** artifacts by ID > * You already use `merge-multiple: true` as a workaround > > #####⚠️ Action Required If: > > You download **single artifacts by ID** and your workflows expect the nested directory structure. > > **Before v5 (nested structure):** > > ``` > - uses: actions/download-artifact@v4 > with: > artifact-ids: 12345 > path: dist > # Files were in: dist/my-artifact/ > > ``` > > > Where `my-artifact` is the name of the artifact you previously uploaded > > **To maintain old behavior (if needed):** > > ``` > </tr></table> > > ``` ... (truncated) Commits * [`634f93c`](actions/download-artifact@634f93c) Merge pull request [#416](https://redirect.github.com/actions/download-artifact/issues/416) from actions/single-artifact-id-download-path * [`b19ff43`](actions/download-artifact@b19ff43) refactor: resolve download path correctly in artifact download tests (mainly ... * [`e262cbe`](actions/download-artifact@e262cbe) bundle dist * [`bff23f9`](actions/download-artifact@bff23f9) update docs * [`fff8c14`](actions/download-artifact@fff8c14) fix download path logic when downloading a single artifact by id * [`448e3f8`](actions/download-artifact@448e3f8) Merge pull request [#407](https://redirect.github.com/actions/download-artifact/issues/407) from actions/nebuk89-patch-1 * [`47225c4`](actions/download-artifact@47225c4) Update README.md * See full diff in [compare view](actions/download-artifact@d3f86a1...634f93c) [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
mergify bot
added a commit
to ArcadeData/arcadedb
that referenced
this pull request
Nov 5, 2025
… ci] Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 4.1.8 to 6.0.0. Release notes *Sourced from [actions/download-artifact's releases](https://github.com/actions/download-artifact/releases).* > v6.0.0 > ------ > > What's Changed > -------------- > > **BREAKING CHANGE:** this update supports Node `v24.x`. This is not a breaking change per-se but we're treating it as such. > > * Update README for download-artifact v5 changes by [`@yacaovsnc`](https://github.com/yacaovsnc) in [actions/download-artifact#417](https://redirect.github.com/actions/download-artifact/pull/417) > * Update README with artifact extraction details by [`@yacaovsnc`](https://github.com/yacaovsnc) in [actions/download-artifact#424](https://redirect.github.com/actions/download-artifact/pull/424) > * Readme: spell out the first use of GHES by [`@danwkennedy`](https://github.com/danwkennedy) in [actions/download-artifact#431](https://redirect.github.com/actions/download-artifact/pull/431) > * Bump `@actions/artifact` to `v4.0.0` > * Prepare `v6.0.0` by [`@danwkennedy`](https://github.com/danwkennedy) in [actions/download-artifact#438](https://redirect.github.com/actions/download-artifact/pull/438) > > New Contributors > ---------------- > > * [`@danwkennedy`](https://github.com/danwkennedy) made their first contribution in [actions/download-artifact#431](https://redirect.github.com/actions/download-artifact/pull/431) > > **Full Changelog**: <actions/download-artifact@v5...v6.0.0> > > v5.0.0 > ------ > > What's Changed > -------------- > > * Update README.md by [`@nebuk89`](https://github.com/nebuk89) in [actions/download-artifact#407](https://redirect.github.com/actions/download-artifact/pull/407) > * BREAKING fix: inconsistent path behavior for single artifact downloads by ID by [`@GrantBirki`](https://github.com/GrantBirki) in [actions/download-artifact#416](https://redirect.github.com/actions/download-artifact/pull/416) > > v5.0.0 > ------ > > ### 🚨 Breaking Change > > This release fixes an inconsistency in path behavior for single artifact downloads by ID. **If you're downloading single artifacts by ID, the output path may change.** > > #### What Changed > > Previously, **single artifact downloads** behaved differently depending on how you specified the artifact: > > * **By name**: `name: my-artifact` → extracted to `path/` (direct) > * **By ID**: `artifact-ids: 12345` → extracted to `path/my-artifact/` (nested) > > Now both methods are consistent: > > * **By name**: `name: my-artifact` → extracted to `path/` (unchanged) > * **By ID**: `artifact-ids: 12345` → extracted to `path/` (fixed - now direct) > > #### Migration Guide > > ##### ✅ No Action Needed If: > > * You download artifacts by **name** > * You download **multiple** artifacts by ID > * You already use `merge-multiple: true` as a workaround > > #####⚠️ Action Required If: > > You download **single artifacts by ID** and your workflows expect the nested directory structure. ... (truncated) Commits * [`018cc2c`](actions/download-artifact@018cc2c) Merge pull request [#438](https://redirect.github.com/actions/download-artifact/issues/438) from actions/danwkennedy/prepare-6.0.0 * [`815651c`](actions/download-artifact@815651c) Revert "Remove `github.dep.yml`" * [`bb3a066`](actions/download-artifact@bb3a066) Remove `github.dep.yml` * [`fa1ce46`](actions/download-artifact@fa1ce46) Prepare `v6.0.0` * [`4a24838`](actions/download-artifact@4a24838) Merge pull request [#431](https://redirect.github.com/actions/download-artifact/issues/431) from danwkennedy/patch-1 * [`5e3251c`](actions/download-artifact@5e3251c) Readme: spell out the first use of GHES * [`abefc31`](actions/download-artifact@abefc31) Merge pull request [#424](https://redirect.github.com/actions/download-artifact/issues/424) from actions/yacaovsnc/update\_readme * [`ac43a60`](actions/download-artifact@ac43a60) Update README with artifact extraction details * [`de96f46`](actions/download-artifact@de96f46) Merge pull request [#417](https://redirect.github.com/actions/download-artifact/issues/417) from actions/yacaovsnc/update\_readme * [`7993cb4`](actions/download-artifact@7993cb4) Remove migration guide for artifact download changes * Additional commits viewable in [compare view](actions/download-artifact@v4.1.8...018cc2c) [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
vbraun
pushed a commit
to vbraun/sage
that referenced
this pull request
Dec 28, 2025
sagemathgh-41106: ⬆️ Bump actions/download-artifact from 4 to 6 Bumps [actions/download-artifact](https://github.com/actions/download- artifact) from 4 to 6. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/download- artifact/releases">actions/download-artifact's releases</a>.</em></p> <blockquote> <h2>v6.0.0</h2> <h2>What's Changed</h2> <p><strong>BREAKING CHANGE:</strong> this update supports Node <code>v24.x</code>. This is not a breaking change per-se but we're treating it as such.</p> <ul> <li>Update README for download-artifact v5 changes by <a href="https://github.com/yacaovsnc"><code>@yacaovsnc</code></a> in <a href="https://redirect.github.com/actions/download- artifact/pull/417">actions/download-artifact#417</a></li> <li>Update README with artifact extraction details by <a href="https://github.com/yacaovsnc"><code>@yacaovsnc</code></a> in <a href="https://redirect.github.com/actions/download- artifact/pull/424">actions/download-artifact#424</a></li> <li>Readme: spell out the first use of GHES by <a href="https://github.com/danwkennedy"><code>@danwkennedy</code></a> in <a href="https://redirect.github.com/actions/download- artifact/pull/431">actions/download-artifact#431</a></li> <li>Bump <code>@actions/artifact</code> to <code>v4.0.0</code></li> <li>Prepare <code>v6.0.0</code> by <a href="https://github.com/danwkennedy"><code>@danwkennedy</code></a> in <a href="https://redirect.github.com/actions/download- artifact/pull/438">actions/download-artifact#438</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/danwkennedy"><code>@danwkennedy</code></a> made their first contribution in <a href="https://redirect.github.com/actions/download- artifact/pull/431">actions/download-artifact#431</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/download- artifact/compare/v5...v6.0.0">https://github.com/actions/download- artifact/compare/v5...v6.0.0</a></p> <h2>v5.0.0</h2> <h2>What's Changed</h2> <ul> <li>Update README.md by <a href="https://github.com/nebuk89"><code>@nebuk89</code></a> in <a href="https://redirect.github.com/actions/download- artifact/pull/407">actions/download-artifact#407</a></li> <li>BREAKING fix: inconsistent path behavior for single artifact downloads by ID by <a href="https://github.com/GrantBirki"><code>@GrantBirki</code></a> in <a href="https://redirect.github.com/actions/download- artifact/pull/416">actions/download-artifact#416</a></li> </ul> <h2>v5.0.0</h2> <h3>🚨 Breaking Change</h3> <p>This release fixes an inconsistency in path behavior for single artifact downloads by ID. <strong>If you're downloading single artifacts by ID, the output path may change.</strong></p> <h4>What Changed</h4> <p>Previously, <strong>single artifact downloads</strong> behaved differently depending on how you specified the artifact:</p> <ul> <li><strong>By name</strong>: <code>name: my-artifact</code> → extracted to <code>path/</code> (direct)</li> <li><strong>By ID</strong>: <code>artifact-ids: 12345</code> → extracted to <code>path/my-artifact/</code> (nested)</li> </ul> <p>Now both methods are consistent:</p> <ul> <li><strong>By name</strong>: <code>name: my-artifact</code> → extracted to <code>path/</code> (unchanged)</li> <li><strong>By ID</strong>: <code>artifact-ids: 12345</code> → extracted to <code>path/</code> (fixed - now direct)</li> </ul> <h4>Migration Guide</h4> <h5>✅ No Action Needed If:</h5> <ul> <li>You download artifacts by <strong>name</strong></li> <li>You download <strong>multiple</strong> artifacts by ID</li> <li>You already use <code>merge-multiple: true</code> as a workaround</li> </ul> <h5>⚠️ Action Required If:</h5> <p>You download <strong>single artifacts by ID</strong> and your workflows expect the nested directory structure.</p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="actions/download-artifact@018cc2c f5baa6db3ef3c5f8a56943fffe632ef53"><code>018cc2c</code></a> Merge pull request <a href="https://redirect.github.com/actions/download- artifact/issues/438">sagemath#438</a> from actions/danwkennedy/prepare-6.0.0</li> <li><a href="actions/download-artifact@815651c 680ffe1c95719d0ed08aba1a2f9d5c177"><code>815651c</code></a> Revert "Remove <code>github.dep.yml</code>"</li> <li><a href="actions/download-artifact@bb3a066 a8babc8ed7b3e4218896c548fe34e7115"><code>bb3a066</code></a> Remove <code>github.dep.yml</code></li> <li><a href="actions/download-artifact@fa1ce46 bbd11b8387539af12741055a76dfdf804"><code>fa1ce46</code></a> Prepare <code>v6.0.0</code></li> <li><a href="actions/download-artifact@4a24838 f3d5601fd639834081e118c2995d51e1c"><code>4a24838</code></a> Merge pull request <a href="https://redirect.github.com/actions/download- artifact/issues/431">sagemath#431</a> from danwkennedy/patch-1</li> <li><a href="actions/download-artifact@5e3251c 4ff5a32e4cf8dd4adaee0e692365237ae"><code>5e3251c</code></a> Readme: spell out the first use of GHES</li> <li><a href="actions/download-artifact@abefc31 eafcfbdf6c5336127c1346fdae79ff41c"><code>abefc31</code></a> Merge pull request <a href="https://redirect.github.com/actions/download- artifact/issues/424">sagemath#424</a> from actions/yacaovsnc/update_readme</li> <li><a href="actions/download-artifact@ac43a60 70aa7db8a41e756e7a2846221edca7027"><code>ac43a60</code></a> Update README with artifact extraction details</li> <li><a href="actions/download-artifact@de96f46 13b77ec03b5cf633e7c350c32bd3c5660"><code>de96f46</code></a> Merge pull request <a href="https://redirect.github.com/actions/download- artifact/issues/417">sagemath#417</a> from actions/yacaovsnc/update_readme</li> <li><a href="actions/download-artifact@7993cb4 4e9052f2f08f9b828ae5ef3ecca7d2ac7"><code>7993cb4</code></a> Remove migration guide for artifact download changes</li> <li>Additional commits viewable in <a href="https://github.com/actions/download- artifact/compare/v4...v6">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing- security-vulnerabilities/about-dependabot-security-updates#about- compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> > **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days. URL: sagemath#41106 Reported by: dependabot[bot] Reviewer(s): Chenxin Zhong
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Updating contribution status