Skip to content

Update uv-build requirement from <0.12.0,>=0.11.20 to >=0.11.21,<0.12.0#422

Merged
horgh merged 1 commit into
mainfrom
dependabot/uv/uv-build-gte-0.11.21-and-lt-0.12.0
Jun 19, 2026
Merged

Update uv-build requirement from <0.12.0,>=0.11.20 to >=0.11.21,<0.12.0#422
horgh merged 1 commit into
mainfrom
dependabot/uv/uv-build-gte-0.11.21-and-lt-0.12.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 19, 2026
edited by coderabbitai Bot
Loading

Copy link
Copy Markdown
Contributor

Updates the requirements on uv-build to permit the latest version.

Release notes

Sourced from uv-build's releases.

0.11.21

Release Notes

Released on 2026-06-11.

Python

  • Add CPython 3.13.14 and 3.14.6 (#19787)

Preview features

  • Add environment.root to uv workspace metadata --sync (#19760)
  • Allow uv upgrade to update a single dependency constraint (#19738)
  • Compute and pass uv workspace metadata payload in ty check (#19763)
  • Make packaged applications the default for uv init (#17841)

Performance

  • Add parallel discovery of Python versions for uv python list (#18684)
  • Avoid normalizing source distribution names twice (#19784)

Bug fixes

  • Improve cache robustness and pruning behavior
    • Allow CI cache pruning without an sdist bucket (#19802)
    • Avoid overflow when reading malformed cache entries (#19799)
    • Preserve cached Python downloads during cache pruning (#19795)
    • Reject running inside the cache (#19659)
  • Fix Python discovery and version request edge cases
    • Avoid panics for Unicode Python version requests (#19797)
    • Fix handling of non-critical errors in uv python list with path requests (#19774)
    • Fix stop-discovery-at regression (#19769)
  • Harden parsing and validation for package metadata, requirements, markers, URLs, and conflict sets
    • Allow trailing commas in version specifiers (#19806)
    • Avoid panics for invalid UTF-8 URL credentials (#19800)
    • Avoid panics for malformed source distribution filenames (#19776)
    • Avoid panics for trailing extra separators (#19779)
    • Avoid stack overflow for recursive requirements path aliases (#19777)
    • Ignore reversed string compatible-release markers (#19782)
    • Reject duplicate entries in conflict sets (#19801)
    • Reject malformed hash options in requirements files (#19783)
    • Reject source distribution filenames without a separator (#19803)
    • Use UTF-8 lengths for requirement errors (#19781)
    • Use UTF-8 lengths for trailing marker errors (#19796)
    • Use byte offsets when peeking over requirements (#19780)
    • Validate GraalPy ABI suffixes (#19805)
  • Improve wheel entry-point error handling and virtual environment activation quoting
    • Propagate errors when reading wheel entry points (#19794)
    • Quote virtual environment activation paths with shell metacharacters (#19798)

... (truncated)

Changelog

Sourced from uv-build's changelog.

0.11.21

Released on 2026-06-11.

Python

  • Add CPython 3.13.14 and 3.14.6 (#19787)

Preview features

  • Add environment.root to uv workspace metadata --sync (#19760)
  • Allow uv upgrade to update a single dependency constraint (#19738)
  • Compute and pass uv workspace metadata payload in ty check (#19763)
  • Make packaged applications the default for uv init (#17841)

Performance

  • Add parallel discovery of Python versions for uv python list (#18684)
  • Avoid normalizing source distribution names twice (#19784)

Bug fixes

  • Improve cache robustness and pruning behavior
    • Allow CI cache pruning without an sdist bucket (#19802)
    • Avoid overflow when reading malformed cache entries (#19799)
    • Preserve cached Python downloads during cache pruning (#19795)
    • Reject running inside the cache (#19659)
  • Fix Python discovery and version request edge cases
    • Avoid panics for Unicode Python version requests (#19797)
    • Fix handling of non-critical errors in uv python list with path requests (#19774)
    • Fix stop-discovery-at regression (#19769)
  • Harden parsing and validation for package metadata, requirements, markers, URLs, and conflict sets
    • Allow trailing commas in version specifiers (#19806)
    • Avoid panics for invalid UTF-8 URL credentials (#19800)
    • Avoid panics for malformed source distribution filenames (#19776)
    • Avoid panics for trailing extra separators (#19779)
    • Avoid stack overflow for recursive requirements path aliases (#19777)
    • Ignore reversed string compatible-release markers (#19782)
    • Reject duplicate entries in conflict sets (#19801)
    • Reject malformed hash options in requirements files (#19783)
    • Reject source distribution filenames without a separator (#19803)
    • Use UTF-8 lengths for requirement errors (#19781)
    • Use UTF-8 lengths for trailing marker errors (#19796)
    • Use byte offsets when peeking over requirements (#19780)
    • Validate GraalPy ABI suffixes (#19805)
  • Improve wheel entry-point error handling and virtual environment activation quoting
    • Propagate errors when reading wheel entry points (#19794)
    • Quote virtual environment activation paths with shell metacharacters (#19798)

0.11.20

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Summary by CodeRabbit

  • Chores
    • Updated build system dependencies to the latest patch version.

@dependabot
Update uv-build requirement from <0.12.0,>=0.11.20 to >=0.11.21,<0.12.0
8d6d7cd 
Updates the requirements on [uv-build](https://github.com/astral-sh/uv) to permit the latest version.
- [Release notes](https://github.com/astral-sh/uv/releases)
- [Changelog](https://github.com/astral-sh/uv/blob/main/CHANGELOG.md)
- [Commits](astral-sh/uv@0.11.20...0.11.21)

---
updated-dependencies:
- dependency-name: uv-build
  dependency-version: 0.11.21
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Jun 19, 2026
@coderabbitai

coderabbitai Bot commented Jun 19, 2026
edited
Loading

Copy link
Copy Markdown

Review Change Stack

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info
⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro Plus

Run ID: 4f23939e-34cb-4add-8270-1107657936cb

📥 Commits

Reviewing files that changed from the base of the PR and between 619d542 and 8d6d7cd.

📒 Files selected for processing (1)
  • pyproject.toml
📝 Walkthrough

Walkthrough

The uv_build minimum version constraint in pyproject.toml under [build-system].requires is incremented from >=0.11.20,<0.12.0 to >=0.11.21,<0.12.0. No other files are changed.

Build Dependency Version Bump

Layer / File(s) Summary
uv_build minimum version floor update
pyproject.toml		 The lower bound of the uv_build version constraint is changed from 0.11.20 to 0.11.21, keeping the upper bound at <0.12.0.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Possibly related PRs

  • maxmind/GeoIP2-python#421: Directly related — also updates the uv_build constraint in pyproject.toml within the same 0.11.x range, differing only in the specific version floor set.

Poem

A bunny hops through version lanes,
from .20 to .21 it gains,
one tiny step, a floor raised neat,
the build constraint is now complete.
🐇✨

🚥 Pre-merge checks | ✅ 5
✅ Passed checks (5 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Title check ✅ Passed The title directly and accurately describes the main change: updating the uv-build dependency version constraint from >=0.11.20,<0.12.0 to >=0.11.21,<0.12.0.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check ✅ Passed Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check ✅ Passed Check skipped because no linked issues were found for this pull request.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch dependabot/uv/uv-build-gte-0.11.21-and-lt-0.12.0

Comment @coderabbitai help to get the list of available commands and usage tips.

@horgh horgh merged commit 879f0b2 into main Jun 19, 2026
49 checks passed
@horgh horgh deleted the dependabot/uv/uv-build-gte-0.11.21-and-lt-0.12.0 branch June 19, 2026 15:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@horgh horgh horgh approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@horgh