Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump astral-sh/uv from 0.5.10 to 0.5.11 #4425

Closed
wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 23, 2024

Bumps astral-sh/uv from 0.5.10 to 0.5.11.

Release notes

Sourced from astral-sh/uv's releases.

0.5.11

Release Notes

Enhancements

Preview features

  • Build backend: Preserve executable bits for scripts in distributions (#10027)
  • Build backend: Handle case where metadata_directory already contains dist-info directory (#10005)

Performance

  • Batch resolver pre-fetches per fork (#10029)

Bug fixes

  • Allow --script to be provided with uv run - (#10035)
  • Allow uv run arguments when reading from stdin (#10034)
  • Prefer higher Python lower-bounds when forking (#10007)
  • Remove references to deprecated first-match (#10036)

Documentation

  • Add uv python install --preview to the documentation (#10010)
  • Fix uv python install --default note about multiple requests (#10011)
  • Fix typo in Caching docs (#10032)
  • Remove remaining references to deprecated first-match (#10038)
  • Supplement missing separators for UV_INSTALL_DIR directions on Windows (#9507)

Install uv 0.5.11

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/uv/releases/download/0.5.11/uv-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy ByPass -c "irm https://github.com/astral-sh/uv/releases/download/0.5.11/uv-installer.ps1 | iex"

Download uv 0.5.11

... (truncated)

Changelog

Sourced from astral-sh/uv's changelog.

0.5.11

Enhancements

Preview features

  • Build backend: Preserve executable bits for scripts in distributions (#10027)
  • Build backend: Handle case where metadata_directory already contains dist-info directory (#10005)

Performance

  • Batch resolver pre-fetches per fork (#10029)

Bug fixes

  • Allow --script to be provided with uv run - (#10035)
  • Allow uv run arguments when reading from stdin (#10034)
  • Prefer higher Python lower-bounds when forking (#10007)
  • Remove references to deprecated first-match (#10036)

Documentation

  • Add uv python install --preview to the documentation (#10010)
  • Fix uv python install --default note about multiple requests (#10011)
  • Fix typo in Caching docs (#10032)
  • Remove remaining references to deprecated first-match (#10038)
  • Supplement missing separators for UV_INSTALL_DIR directions on Windows (#9507)
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot requested a review from nvuillam as a code owner December 23, 2024 15:34
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Dec 23, 2024
@dependabot dependabot bot requested a review from echoix as a code owner December 23, 2024 15:34
@dependabot dependabot bot added the docker Pull requests that update Docker code label Dec 23, 2024
Copy link
Contributor

github-actions bot commented Dec 23, 2024

🦙 MegaLinter status: ⚠️ WARNING

Descriptor Linter Files Fixed Errors Elapsed time
✅ API spectral 1 0 1.75s
⚠️ BASH bash-exec 6 1 0.07s
✅ BASH shellcheck 6 0 0.22s
✅ BASH shfmt 6 0 0 0.83s
✅ COPYPASTE jscpd yes no 4.58s
✅ DOCKERFILE hadolint 128 0 23.86s
✅ JSON jsonlint 20 0 0.26s
✅ JSON v8r 22 0 15.33s
⚠️ MARKDOWN markdownlint 266 0 299 25.46s
✅ MARKDOWN markdown-table-formatter 266 0 0 161.1s
⚠️ PYTHON bandit 212 66 3.76s
✅ PYTHON black 212 0 0 4.73s
✅ PYTHON flake8 212 0 1.96s
✅ PYTHON isort 212 0 0 1.22s
✅ PYTHON mypy 212 0 14.76s
✅ PYTHON pylint 212 0 33.96s
✅ PYTHON ruff 212 0 0 0.79s
✅ REPOSITORY checkov yes no 37.03s
✅ REPOSITORY git_diff yes no 0.96s
⚠️ REPOSITORY grype yes 26 13.09s
✅ REPOSITORY secretlint yes no 10.41s
✅ REPOSITORY trivy yes no 15.88s
✅ REPOSITORY trivy-sbom yes no 0.27s
⚠️ REPOSITORY trufflehog yes 1 53.67s
✅ SPELL cspell 713 0 13.23s
⚠️ SPELL lychee 348 9 8.82s
✅ XML xmllint 3 0 0 0.95s
✅ YAML prettier 160 0 0 4.52s
✅ YAML v8r 102 0 29.53s
✅ YAML yamllint 161 0 2.87s

See detailed report in MegaLinter reports

MegaLinter is graciously provided by OX Security

Bumps [astral-sh/uv](https://github.com/astral-sh/uv) from 0.5.10 to 0.5.11.
- [Release notes](https://github.com/astral-sh/uv/releases)
- [Changelog](https://github.com/astral-sh/uv/blob/main/CHANGELOG.md)
- [Commits](astral-sh/uv@0.5.10...0.5.11)

---
updated-dependencies:
- dependency-name: astral-sh/uv
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 25, 2024

Looks like astral-sh/uv is up-to-date now, so this is no longer needed.

@dependabot dependabot bot closed this Dec 25, 2024
@dependabot dependabot bot deleted the dependabot/docker/astral-sh/uv-0.5.11 branch December 25, 2024 02:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file docker Pull requests that update Docker code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants