chore(deps): update actions/upload-artifact action to v7.0.1

[thomhurst]

This PR contains the following updates:

Package	Type	Update	Change
actions/upload-artifact	action	patch	v7.0.0 → v7.0.1

---

Release Notes

actions/upload-artifact (actions/upload-artifact)

v7.0.1

Compare Source

What's Changed

• Update the readme with direct upload details by @​danwkennedy in #​795
• Readme: bump all the example versions to v7 by @​danwkennedy in #​796
• Include changes in typespec/ts-http-runtime 0.3.5 by @​yacaovsnc in #​797

Full Changelog: actions/upload-artifact@v7...v7.0.1

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[claude]

Code Review: chore(deps): update actions/upload-artifact action to v7.0.1

This is a straightforward Renovate Bot dependency update bumping actions/upload-artifact from v7.0.0 to v7.0.1 across 3 workflow steps in .github/workflows/dotnet.yml.

Assessment: Approve

What changed: The patch bumps the pinned action tag from v7.0.0 to v7.0.1 in all three upload-artifact steps:

• Upload Diagnostic Logs
• Upload Hang Dumps
• NuGet Packages Artifacts

Review Notes

Good: All three usages are updated consistently — no mixed versions across steps.

v7.0.1 changelog summary: The patch release includes readme/documentation updates and a dependency bump in typespec/ts-http-runtime (0.3.5). No functional changes to the upload behavior are expected.

Consideration — pin by commit SHA? For stronger supply chain security, some projects pin GitHub Actions to a full commit SHA rather than a mutable tag (e.g., actions/upload-artifact@<sha> with a comment showing the version). Since Renovate is already managing version drift, this is a low-priority suggestion but worth considering if the project's threat model requires it. The current tag-based approach is acceptable for most projects.

No issues found. This dependency update is safe to merge.

[claude]

Code Review: chore(deps): update actions/upload-artifact action to v7.0.1

Straightforward Renovate Bot patch bump from v7.0.0 → v7.0.1 across 3 workflow steps in .github/workflows/dotnet.yml.

Assessment: Approve

All three upload-artifact usages (Diagnostic Logs, Hang Dumps, NuGet Packages) are updated consistently — no mixed versions.

v7.0.1 changes: Documentation/readme updates and a typespec/ts-http-runtime 0.3.5 dependency bump. No functional behavior changes expected.

Minor suggestion (not blocking): For stronger supply chain security, consider pinning to full commit SHAs instead of mutable tags (e.g. actions/upload-artifact@<sha> # v7.0.1). Renovate supports SHA pinning and can still manage updates. Since Renovate is already managing version drift, the current tag-based approach is perfectly acceptable.

No issues found — safe to merge.

[claude]

Code Review: chore(deps): update actions/upload-artifact action to v7.0.1

Straightforward Renovate Bot patch bump from v7.0.0 → v7.0.1 across 3 workflow steps in .github/workflows/dotnet.yml.

Assessment: Approve

All three upload-artifact usages (Diagnostic Logs, Hang Dumps, NuGet Packages) are updated consistently — no mixed versions.

v7.0.1 changes: Documentation/readme updates and a typespec/ts-http-runtime 0.3.5 dependency bump. No functional behavior changes expected.

Minor suggestion (not blocking): For stronger supply chain security, consider pinning to full commit SHAs instead of mutable tags (e.g. actions/upload-artifact@<sha> # v7.0.1). Renovate supports SHA pinning and can still manage updates. Since Renovate is already managing version drift, the current tag-based approach is perfectly acceptable.

No issues found — safe to merge.

[codacy-production]

Up to standards ✅

🟢 Issues 0 issues

Results:
0 new issues

View in Codacy

_{TIP This summary will be updated as you push new changes. Give us feedback}

[claude]

Code Review: chore(deps): update actions/upload-artifact action to v7.0.1

Straightforward Renovate Bot patch bump: actions/upload-artifact v7.0.0 → v7.0.1 across 3 workflow steps in .github/workflows/dotnet.yml.

All three usages updated consistently (Diagnostic Logs, Hang Dumps, NuGet Packages) — no mixed versions.

v7.0.1 changes: Readme/documentation updates and a typespec/ts-http-runtime 0.3.5 dependency bump. No functional behavior changes.

Prior suggestion (not yet addressed, non-blocking): Consider pinning to commit SHAs instead of mutable tags for stronger supply chain security (e.g. actions/upload-artifact@<sha> # v7.0.1). Renovate fully supports SHA pinning. The current tag-based approach remains acceptable.

No issues found — safe to merge.