From b2a9fde27a199eb3fece263088b890ebea32d776 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 2 Mar 2026 02:15:55 +0000
Subject: [PATCH] chore(deps): bump actions/upload-artifact from 4 to 7

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4 to 7.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v4...v7)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: '7'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/build-electron.yml |  2 +-
 .github/workflows/security-scan.yml  | 16 ++++++++--------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/.github/workflows/build-electron.yml b/.github/workflows/build-electron.yml
index 00d2af0..e4fdcf8 100644
--- a/.github/workflows/build-electron.yml
+++ b/.github/workflows/build-electron.yml
@@ -45,7 +45,7 @@ jobs:
           GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
       
       - name: Upload artifacts
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: creditnexus-${{ matrix.os }}
           path: dist-electron/**
diff --git a/.github/workflows/security-scan.yml b/.github/workflows/security-scan.yml
index 2ba74f5..269cae6 100644
--- a/.github/workflows/security-scan.yml
+++ b/.github/workflows/security-scan.yml
@@ -105,7 +105,7 @@ jobs:
           uv run safety check --json --output safety-report.json || true
 
       - name: Upload pip-audit results
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         if: always()
         with:
           name: pip-audit-report
@@ -113,7 +113,7 @@ jobs:
           retention-days: 30
 
       - name: Upload Safety results
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         if: always()
         with:
           name: safety-report
@@ -157,7 +157,7 @@ jobs:
           npm audit --json > npm-audit-report.json || echo '{"vulnerabilities":{}}' > npm-audit-report.json
 
       - name: Upload npm audit results
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         if: always()
         with:
           name: npm-audit-report
@@ -206,7 +206,7 @@ jobs:
           uv run bandit -r app/ -f json -o bandit-report.json --severity-level all || true
 
       - name: Upload Bandit results
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         if: always()
         with:
           name: bandit-report
@@ -273,7 +273,7 @@ jobs:
           uv run ruff check app/ --select S --output-format json > ruff-security-report.json || true
 
       - name: Upload Ruff results
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         if: always()
         with:
           name: ruff-security-report
@@ -306,7 +306,7 @@ jobs:
           npm run lint -- --format json --output-file eslint-security-report.json || true
 
       - name: Upload ESLint results
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         if: always()
         with:
           name: eslint-security-report
@@ -346,7 +346,7 @@ jobs:
           cmd_options: '-a'
 
       - name: Upload ZAP results
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         if: always()
         with:
           name: zap-report
@@ -409,7 +409,7 @@ jobs:
           echo "See the Security tab for detailed findings." >> security-summary.md
 
       - name: Upload summary report
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: security-summary
           path: security-summary.md