Skip to content

Update uv requirement from <1,>=0.11.21 to >=0.11.23,<1#228

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/uv-gte-0.11.22-and-lt-1
Closed

Update uv requirement from <1,>=0.11.21 to >=0.11.23,<1#228
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/uv-gte-0.11.22-and-lt-1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 19, 2026

Copy link
Copy Markdown
Contributor

Updates the requirements on uv to permit the latest version.

Release notes

Sourced from uv's releases.

0.11.23

Release Notes

Released on 2026-06-19.

Bug fixes

  • Revert "Fix transparent Python upgrades in project environments" to mitigate unintended breakage in pre-commit-uv (#19925)
  • Restore old behavior where workspace members "hidden" by an intermediate pyproject.toml would be treated as standalone projects (#19926)

Install uv 0.11.23

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://releases.astral.sh/github/uv/releases/download/0.11.23/uv-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://releases.astral.sh/github/uv/releases/download/0.11.23/uv-installer.ps1 | iex"

Download uv 0.11.23

File Platform Checksum
uv-aarch64-apple-darwin.tar.gz Apple Silicon macOS checksum
uv-x86_64-apple-darwin.tar.gz Intel macOS checksum
uv-aarch64-pc-windows-msvc.zip ARM64 Windows checksum
uv-i686-pc-windows-msvc.zip x86 Windows checksum
uv-x86_64-pc-windows-msvc.zip x64 Windows checksum
uv-aarch64-unknown-linux-gnu.tar.gz ARM64 Linux checksum
uv-i686-unknown-linux-gnu.tar.gz x86 Linux checksum
uv-powerpc64le-unknown-linux-gnu.tar.gz PPC64LE Linux checksum
uv-riscv64gc-unknown-linux-gnu.tar.gz RISCV Linux checksum
uv-s390x-unknown-linux-gnu.tar.gz S390x Linux checksum
uv-x86_64-unknown-linux-gnu.tar.gz x64 Linux checksum
uv-armv7-unknown-linux-gnueabihf.tar.gz ARMv7 Linux checksum
uv-aarch64-unknown-linux-musl.tar.gz ARM64 MUSL Linux checksum
uv-i686-unknown-linux-musl.tar.gz x86 MUSL Linux checksum
uv-riscv64gc-unknown-linux-musl.tar.gz RISCV MUSL Linux checksum
uv-x86_64-unknown-linux-musl.tar.gz x64 MUSL Linux checksum
uv-arm-unknown-linux-musleabihf.tar.gz ARMv6 MUSL Linux (Hardfloat) checksum
uv-armv7-unknown-linux-musleabihf.tar.gz ARMv7 MUSL Linux checksum

Verifying GitHub Artifact Attestations

The artifacts in this release have attestations generated with GitHub Artifact Attestations. These can be verified by using the GitHub CLI:

... (truncated)

Changelog

Sourced from uv's changelog.

0.11.23

Released on 2026-06-19.

Bug fixes

  • Revert "Fix transparent Python upgrades in project environments" to mitigate unintended breakage in pre-commit-uv (#19925)
  • Restore old behavior where workspace members "hidden" by an intermediate pyproject.toml would be treated as standalone projects (#19926)

0.11.22

Released on 2026-06-18.

Enhancements

  • Publish wheels before sdists in uv publish (#19831)
  • Add TY and RUFF env vars for providing paths for binaries used by uv format and uv check (#19821)

Preview features

  • Allow configuring preview features in uv.toml and pyproject.toml (#18437)
  • Update the lockfile during uv check --no-sync (#19909)
  • Add --script to uv check and uv metadata (#19860)
  • Report workspace-exclusive dependency groups in workspace metadata (#19862)
  • Support SARIF as a uv audit output (#19872)

Performance

  • Use a more deadlock-resistant concurrent hashmap in the resolver (#19532)

Bug fixes

  • Update string marker ordering semantics to match upstream clarified rules (#19808)
  • Reject extras that have the same normalized name (#19871)
  • Reject dependency group include-group entries that have additional fields (#19866)
  • Reject invalid UTF-8 URL credentials (#19814)
  • Validate that PEP 517 backend-paths exist when building sdists (#19834)
  • Validate that pylock.toml files do not have an unsupported a lock-version (#19869)
  • Validate that the environment satisfies the packages.requires-python of a pylock.toml (#19868)
  • Allow uv to be recursively invoked by PEP 517 build hooks (#19879)
  • Allow empty credentials.toml files (#19815)
  • Fix transparent Python upgrades in project environments (#19890)
  • Handle non-file editable URLs in uv pip list (#19867)
  • Fix incorrect output from uv tree --invert (#19910)
  • Fix environment locking of uv venv in a project (#19837)
  • Fix handling of workspace-exclusive dependency groups in uv tree (#19905)

Documentation

  • Archive the 0.10.x changelog (#19813)

... (truncated)

Commits
  • 3cdf50e Bump version to 0.11.23 (#19927)
  • 3723315 Treat workspace members with an intermediate pyproject.toml as standalone (...
  • a058272 Revert "Fix transparent Python upgrades in project environments" (#19925)
  • 16a9cec Pin rooster into a dev-dependency (#19923)
  • See full diff in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Jun 19, 2026
Updates the requirements on [uv](https://github.com/astral-sh/uv) to permit the latest version.
- [Release notes](https://github.com/astral-sh/uv/releases)
- [Changelog](https://github.com/astral-sh/uv/blob/main/CHANGELOG.md)
- [Commits](astral-sh/uv@0.11.22...0.11.23)

---
updated-dependencies:
- dependency-name: uv
  dependency-version: 0.11.22
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title Update uv requirement from <1,>=0.11.21 to >=0.11.22,<1 Update uv requirement from <1,>=0.11.21 to >=0.11.23,<1 Jun 20, 2026
@dependabot dependabot Bot force-pushed the dependabot/pip/uv-gte-0.11.22-and-lt-1 branch from 71b8fd4 to d0cd181 Compare June 20, 2026 03:58
@dependabot @github

dependabot Bot commented on behalf of github Jun 20, 2026

Copy link
Copy Markdown
Contributor Author

Looks like uv is up-to-date now, so this is no longer needed.

@dependabot dependabot Bot closed this Jun 20, 2026
@dependabot dependabot Bot deleted the dependabot/pip/uv-gte-0.11.22-and-lt-1 branch June 20, 2026 04:21
@sonarqubecloud

Copy link
Copy Markdown

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants