Fix security vulnerability: update actions/download-artifact to v4.1.3

Copilot · joaomoreno · Copilot · commit a892c630150f · 2026-01-16T10:18:16.000Z
Update actions/download-artifact from v4 to v4.1.3 to address CVE in
@actions/download-artifact (Arbitrary File Write via artifact extraction).
Affected versions: &gt;= 4.0.0, &lt; 4.1.3. Patched version: 4.1.3.

Co-authored-by: joaomoreno &lt;22350+joaomoreno@users.noreply.github.com&gt;
diff --git a/.github/workflows/oss-build-fast.yml b/.github/workflows/oss-build-fast.yml
@@ -135,7 +135,7 @@ jobs:
           node-version-file: .nvmrc
 
       - name: Download compilation artifact
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v4.1.3
         with:
           name: compilation
 
@@ -237,7 +237,7 @@ jobs:
           node-version-file: .nvmrc
 
       - name: Download compilation artifact
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v4.1.3
         with:
           name: compilation
 
@@ -318,7 +318,7 @@ jobs:
           node-version-file: .nvmrc
 
       - name: Download compilation artifact
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v4.1.3
         with:
           name: compilation
 
