chore(deps-dev): Update uv requirement from 0.7.9 to 0.7.12 by dependabot[bot] · Pull Request #909

chore(deps-dev): Update uv requirement from 0.7.9 to 0.7.12 by dependabot[bot] · Pull Request #909 · CycloneDX/cyclonedx-python

Updates the requirements on uv to permit the latest version.

Release notes

Sourced from uv's releases.

0.7.12

Release Notes

Enhancements

Add uv python pin --rm to remove .python-version pins (#13860)

Don't hint at versions removed by excluded-newer (#13884)

Add hint to use tool.uv.environments on resolution error (#13455)

Add hint to use tool.uv.required-environments on resolution error (#13575)

Improve python pin error messages (#13862)

Bug fixes

Lock environments during uv sync, uv add and uv remove to prevent race conditions (#13869)

Add --no-editable to uv export for pylock.toml (#13852)

Documentation

List .gitignore in project init files (#13855)

Move the pip interface documentation into the concepts section (#13841)

Remove the configuration section in favor of concepts / reference (#13842)

Update Git and GitHub Actions docs to mention gh auth login (#13850)

Preview

Fix directory glob traversal fallback preventing exclusion of all files (#13882)

Install uv 0.7.12

Install prebuilt binaries via shell script
curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/uv/releases/download/0.7.12/uv-installer.sh | sh
Install prebuilt binaries via powershell script
powershell -ExecutionPolicy Bypass -c "irm https://github.com/astral-sh/uv/releases/download/0.7.12/uv-installer.ps1 | iex"
Download uv 0.7.12

File Platform Checksum

uv-aarch64-apple-darwin.tar.gz Apple Silicon macOS checksum

uv-x86_64-apple-darwin.tar.gz Intel macOS checksum

uv-aarch64-pc-windows-msvc.zip ARM64 Windows checksum

uv-i686-pc-windows-msvc.zip x86 Windows checksum

File	Platform	Checksum
uv-aarch64-apple-darwin.tar.gz	Apple Silicon macOS	checksum
uv-x86_64-apple-darwin.tar.gz	Intel macOS	checksum
uv-aarch64-pc-windows-msvc.zip	ARM64 Windows	checksum
uv-i686-pc-windows-msvc.zip	x86 Windows	checksum

... (truncated)

Changelog

Sourced from uv's changelog.

0.7.12

Enhancements

Add uv python pin --rm to remove .python-version pins (#13860)

Don't hint at versions removed by excluded-newer (#13884)

Add hint to use tool.uv.environments on resolution error (#13455)

Add hint to use tool.uv.required-environments on resolution error (#13575)

Improve python pin error messages (#13862)

Bug fixes

Lock environments during uv sync, uv add and uv remove to prevent race conditions (#13869)

Add --no-editable to uv export for pylock.toml (#13852)

Documentation

List .gitignore in project init files (#13855)

Move the pip interface documentation into the concepts section (#13841)

Remove the configuration section in favor of concepts / reference (#13842)

Update Git and GitHub Actions docs to mention gh auth login (#13850)

Preview

Fix directory glob traversal fallback preventing exclusion of all files (#13882)

0.7.11

Python

Add Python 3.14.0b1

Add Python 3.13.4

Add Python 3.12.11

Add Python 3.11.13

Add Python 3.10.18

Add Python 3.9.23

Enhancements

Add Pyodide support (#12731)

Better error message for version specifier with missing operator (#13803)

Bug fixes

Downgrade reqwest and hyper-util to resolve connection reset errors over IPv6 (#13835)

Prefer uv's binary's version when checking if it's up to date (#13840)

Documentation

... (truncated)

Commits

dc3fd46 Bump version to 0.7.12 (#13892)
5b0133c Hint at tool.uv.required-environments (#13575)
7aefbe8 Don't hint at versions removed by excluded-newer (#13884)
0109af1 Hint at tool.uv.environments on resolution error (#13455)
8a88ab2 Minor internal README enhancement for Markdown list in PEP440 (#13880)
bf96c60 Lock during uv sync, uv add and uv remove to avoid race conditions (#13...
b865f76 Change GlobDirFilter fallback to true (#13882)
a68fb53 PEP 751 uv export supports --no-editable (#13852)
7dd564d Improve python pin error messages (#13862)
94ed6f8 update Git and GitHub Actions docs to mention gh auth login (#13850)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)