chore(deps): bump actions/upload-pages-artifact from 4 to 5

[dependabot]

Bumps actions/upload-pages-artifact from 4 to 5.

Release notes

Sourced from actions/upload-pages-artifact's releases.

v5.0.0

Changelog

• Update upload-artifact action to version 7 @​Tom-van-Woudenberg (#139)
• feat: add include-hidden-files input @​jonchurch (#137)

See details of all code changes since previous release.

Commits

• fc324d3 Merge pull request #139 from Tom-van-Woudenberg/patch-1
• fe9d4b7 Merge branch 'main' into patch-1
• 0ca1617 Merge pull request #137 from jonchurch/include-hidden-files
• 57f0e84 Update action.yml
• 4a90348 v7 --> hash
• 56f665a Update upload-artifact action to version 7
• f7615f5 Add include-hidden-files input
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[changeset-bot]

⚠️ No Changeset found

Latest commit: aba7080

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[pkg-pr-new]

Open in StackBlitz

@modelcontextprotocol/client

npm i https://pkg.pr.new/@modelcontextprotocol/client@1889

@modelcontextprotocol/server

npm i https://pkg.pr.new/@modelcontextprotocol/server@1889

@modelcontextprotocol/express

npm i https://pkg.pr.new/@modelcontextprotocol/express@1889

@modelcontextprotocol/fastify

npm i https://pkg.pr.new/@modelcontextprotocol/fastify@1889

@modelcontextprotocol/hono

npm i https://pkg.pr.new/@modelcontextprotocol/hono@1889

@modelcontextprotocol/node

npm i https://pkg.pr.new/@modelcontextprotocol/node@1889

commit: aba7080

[claude]

LGTM — straightforward Dependabot bump.

Extended reasoning...

Overview

Dependabot bumps actions/upload-pages-artifact from v4 to v5 in .github/workflows/deploy-docs.yml. Single-line change; the only usage passes path: which is unchanged in v5. Upstream v5 just updates the internal upload-artifact dep to v7 and adds an optional include-hidden-files input (unused here). The downstream actions/deploy-pages@v5 step is already on a compatible version.

Security risks

None. This is a first-party GitHub action referenced by major-version tag, used only in the docs-deploy workflow. No new permissions, secrets, or inputs introduced.

Level of scrutiny

Low. CI/docs infrastructure only — no SDK source, types, or published artifacts are touched. No changeset needed since this doesn't affect any package version.

Other factors

No prior reviews or outstanding comments. Bug-hunting system found nothing. Per the repo's CI review guidance, I verified the action's release notes rather than speculating about behavior changes — v5 is backward-compatible for this call site.