Skip to content

chore(deps): bump uv from 0.7.3 to 0.7.4 #12910

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
May 16, 2025
Merged

chore(deps): bump uv from 0.7.3 to 0.7.4 #12910

merged 1 commit into from
May 16, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 16, 2025

Bumps uv from 0.7.3 to 0.7.4.

Release notes

Sourced from uv's releases.

0.7.4

Release Notes

Enhancements

  • Add more context to external errors (#13351)
  • Align indentation of long arguments (#13394)
  • Preserve order of dependencies which are sorted naively (#13334)
  • Align progress bars by largest name length (#13266)
  • Reinstall local packages in uv add (#13462)
  • Rename --raw-sources to --raw (#13348)
  • Show 'Downgraded' when self update is used to install an older version (#13340)
  • Suggest uv self update if required uv version is newer (#13305)
  • Add 3.14 beta images to uv Docker images (#13390)
  • Add comma after "i.e." in Conda environment error (#13423)
  • Be more precise in unpinned packages warning (#13426)
  • Fix detection of sorted dependencies when include-group is used (#13354)
  • Fix display of HTTP responses in trace logs for retry of errors (#13339)
  • Log skip reasons during Python installation key interpreter match checks (#13472)
  • Redact credentials when displaying URLs (#13333)

Bug fixes

  • Avoid erroring on pylock.toml dependency entries (#13384)
  • Avoid panics for cannot-be-a-base URLs (#13406)
  • Ensure cached realm credentials are applied if no password is found for index URL (#13463)
  • Fix .tgz parsing to respect true extension (#13382)
  • Fix double self-dependency (#13366)
  • Reject pylock.toml in uv add -r (#13421)
  • Retain dot-separated wheel tags during cache prune (#13379)
  • Retain trailing comments after PEP 723 metadata block (#13460)

Documentation

  • Use "export" instead of "install" in uv export arguments (#13430)
  • Remove extra newline (#13461)

Preview features

  • Build backend: Normalize glob paths (#13465)

Install uv 0.7.4

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/uv/releases/download/0.7.4/uv-installer.sh | sh

Install prebuilt binaries via powershell script

... (truncated)

Changelog

Sourced from uv's changelog.

0.7.4

Enhancements

  • Add more context to external errors (#13351)
  • Align indentation of long arguments (#13394)
  • Preserve order of dependencies which are sorted naively (#13334)
  • Align progress bars by largest name length (#13266)
  • Reinstall local packages in uv add (#13462)
  • Rename --raw-sources to --raw (#13348)
  • Show 'Downgraded' when self update is used to install an older version (#13340)
  • Suggest uv self update if required uv version is newer (#13305)
  • Add 3.14 beta images to uv Docker images (#13390)
  • Add comma after "i.e." in Conda environment error (#13423)
  • Be more precise in unpinned packages warning (#13426)
  • Fix detection of sorted dependencies when include-group is used (#13354)
  • Fix display of HTTP responses in trace logs for retry of errors (#13339)
  • Log skip reasons during Python installation key interpreter match checks (#13472)
  • Redact credentials when displaying URLs (#13333)

Bug fixes

  • Avoid erroring on pylock.toml dependency entries (#13384)
  • Avoid panics for cannot-be-a-base URLs (#13406)
  • Ensure cached realm credentials are applied if no password is found for index URL (#13463)
  • Fix .tgz parsing to respect true extension (#13382)
  • Fix double self-dependency (#13366)
  • Reject pylock.toml in uv add -r (#13421)
  • Retain dot-separated wheel tags during cache prune (#13379)
  • Retain trailing comments after PEP 723 metadata block (#13460)

Documentation

  • Use "export" instead of "install" in uv export arguments (#13430)
  • Remove extra newline (#13461)

Preview features

  • Build backend: Normalize glob paths (#13465)
Commits
  • 6fbcd09 Bump version to 0.7.4 (#13473)
  • e92c178 Log skip reasons during Python installation key interpreter match checks (#13...
  • 18a1f0d Build backend: Normalize glob paths (#13465)
  • 7a83f51 Reinstall local packages in uv add (#13462)
  • dfa1b95 Issue template: Please include the complete error message (#13451)
  • 7261ede Refactor build backend testing (#13464)
  • 4ea44be Ensure cached realm credentials are applied if no password is found for index...
  • 12860a9 Remove extra newline (#13461)
  • 2d4d93a ProgressReporter: align progress bars by largest name length (#13266)
  • b326bb9 Retain trailing comments after PEP 723 metadata block (#13460)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump uv from 0.7.3 to 0.7.4
98cd2cd 
Bumps [uv](https://github.com/astral-sh/uv) from 0.7.3 to 0.7.4.
- [Release notes](https://github.com/astral-sh/uv/releases)
- [Changelog](https://github.com/astral-sh/uv/blob/main/CHANGELOG.md)
- [Commits](astral-sh/uv@0.7.3...0.7.4)

---
updated-dependencies:
- dependency-name: uv
  dependency-version: 0.7.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels May 16, 2025
@reaperhulk reaperhulk merged commit e140233 into main May 16, 2025
62 checks passed
@reaperhulk reaperhulk deleted the dependabot/uv/uv-0.7.4 branch May 16, 2025 13:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@reaperhulk reaperhulk reaperhulk approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@reaperhulk