Skip to content

chore(deps): update dependency uv_build to >=0.10.3,<0.11.0#620

Open
renovate[bot] wants to merge 1 commit intomainfrom
renovate/uv_build-0.x
Open

chore(deps): update dependency uv_build to >=0.10.3,<0.11.0#620
renovate[bot] wants to merge 1 commit intomainfrom
renovate/uv_build-0.x

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Feb 5, 2026
edited
Loading

This PR contains the following updates:

Package Change Age Confidence
uv_build (source, changelog) >=0.9.15,<0.10.0>=0.10.3,<0.11.0 age confidence

Release Notes

astral-sh/uv (uv_build)

v0.10.3

Compare Source

Released on 2026-02-16.

Python
  • Add CPython 3.15.0a6
Enhancements
  • Don't open file locks for writing (#​17956)
  • Make Windows trampoline error messages consistent with uv proper (#​17969)
  • Log which preview features are enabled (#​17968)
Preview features
  • Add support for ruff version constraints and exclude-newer in uv format (#​17651)
  • Fix script path handling when target-workspace-discovery is enabled (#​17965)
  • Use version constraints to select the default ruff version used by uv format (#​17977)
Bug fixes
  • Avoid matching managed Python versions by prefixes, e.g. don't match CPython 3.10 when cpython-3.1 is specified (#​17972)
  • Fix handling of --allow-existing with minor version links on Windows (#​17978)
  • Fix panic when encountering unmanaged workspace members (#​17974)
  • Improve accuracy of request timing (#​18007)
  • Reject u64::MAX in version segments to prevent overflow (#​17985)
Documentation
  • Reference Debian Trixie instead of Bookworm (#​17991)

v0.10.2

Compare Source

Released on 2026-02-10.

Enhancements
  • Deprecate unexpected ZIP compression methods (#​17946)
Bug fixes
  • Fix cargo-install failing due to missing uv-test dependency (#​17954)

v0.10.1

Compare Source

Released on 2026-02-10.

Enhancements
  • Don't panic on metadata read errors (#​17904)
  • Skip empty workspace members instead of failing (#​17901)
  • Don't fail creating a read-only sdist-vX/.git if it already exists (#​17825)
Documentation
  • Suggest uv python update-shell over uv tool update-shell in Python docs (#​17941)

v0.10.0

Compare Source

Since we released uv 0.9.0 in October of 2025, we've accumulated various changes that improve correctness and user experience, but could break some workflows. This release contains those changes; many have been marked as breaking out of an abundance of caution. We expect most users to be able to upgrade without making changes.

This release also includes the stabilization of preview features. Python upgrades are now stable, including the uv python upgrade command, uv python install --upgrade, and automatically upgrading Python patch versions in virtual environments when a new version is installed. The add-bounds and extra-build-dependencies settings are now stable. Finally, the uv workspace dir and uv workspace list utilities for writing scripts against workspace members are now stable.

Breaking changes

  • Require --clear to remove existing virtual environments in uv venv (#​17757)

    Previously, uv venv would prompt for confirmation before removing an existing virtual environment in interactive contexts, and remove it without confirmation in non-interactive contexts. Now, uv venv requires the --clear flag to remove an existing virtual environment. A warning for this change was added in uv 0.8.

    You can opt out of this behavior by passing the --clear flag or setting UV_VENV_CLEAR=1.

  • Error if multiple indexes include default = true (#​17011)

    Previously, uv would silently accept multiple indexes with default = true and use the first one. Now, uv will error if multiple indexes are marked as the default.

    You cannot opt out of this behavior. Remove default = true from all but one index.

  • Error when an explicit index is unnamed (#​17777)

    Explicit indexes can only be used via the [tool.uv.sources] table, which requires referencing the index by name. Previously, uv would silently accept unnamed explicit indexes, which could never be referenced. Now, uv will error if an explicit index does not have a name.

    You cannot opt out of this behavior. Add a name to the explicit index or remove the entry.

  • Install alternative Python executables using their implementation name (#​17756, #​17760)

    Previously, uv python install would install PyPy, GraalPy, and Pyodide executables with names like python3.10 into the bin directory. Now, these executables will be named using their implementation name, e.g., pypy3.10, graalpy3.10, and pyodide3.12, to avoid conflicting with CPython installations.

    You cannot opt out of this behavior.

  • Respect global Python version pins in uv tool run and uv tool install (#​14112)

    Previously, uv tool run and uv tool install did not respect the global Python version pin (set via uv python pin --global). Now, these commands will use the global Python version when no explicit version is requested.

    For uv tool install, if the tool is already installed, the Python version will not change unless --reinstall or --python is provided. If the tool was previously installed with an explicit --python flag, the global pin will not override it.

    You can opt out of this behavior by providing an explicit --python flag.

  • Remove Debian Bookworm, Alpine 3.21, and Python 3.8 Docker images (#​17755)

    The Debian Bookworm and Alpine 3.21 images were replaced by Debian Trixie and Alpine 3.22 as defaults in uv 0.9. These older images are now removed. Python 3.8 images are also removed, as Python 3.8 is no longer supported in the Trixie or Alpine base images.

    The following image tags are no longer published:

    • uv:bookworm, uv:bookworm-slim
    • uv:alpine3.21
    • uv:python3.8-*

    Use uv:debian or uv:trixie instead of uv:bookworm, uv:alpine or uv:alpine3.22 instead of uv:alpine3.21, and a newer Python version instead of uv:python3.8-*.

  • Drop PPC64 (big endian) builds (#​17626)

    uv no longer provides pre-built binaries for PPC64 (big endian). This platform appears to be largely unused and is only supported on a single manylinux version. PPC64LE (little endian) builds are unaffected.

    Building uv from source is still supported for this platform.

  • Skip generating activate.csh for relocatable virtual environments (#​17759)

    Previously, uv venv --relocatable would generate an activate.csh script that contained hardcoded paths, making it incompatible with relocation. Now, the activate.csh script is not generated for relocatable virtual environments.

    You cannot opt out of this behavior.

  • Require username when multiple credentials match a URL (#​16983)

    When using uv auth login to store credentials, you can register multiple username and password combinations for the same host. Previously, when uv needed to authenticate and multiple credentials matched the URL (e.g., when retrieving a token with uv auth token), uv would pick the first match. Now, uv will error instead.

    You cannot opt out of this behavior. Include the username in the request, e.g., uv auth token --username foo example.com.

  • Avoid invalidating the lockfile versions after an exclude-newer change (#​17721)

    Previously, changing the exclude-newer setting would cause package versions to be upgraded, ignoring the lockfile entirely. Now, uv will only change package versions if they are no longer within the exclude-newer range.

    You can restore the previous behavior by using --upgrade or --upgrade-package to opt-in to package version changes.

  • Upgrade uv format to Ruff 0.15.0 (#​17838)

    uv format now uses Ruff 0.15.0, which uses the 2026 style guide. See the blog post for details.

    The formatting of code is likely to change. You can opt out of this behavior by requesting an older Ruff version, e.g., uv format --version 0.14.14.

  • Update uv crate test features to use test- as a prefix (#​17860)

    This change only affects redistributors of uv. The Cargo features used to gate test dependencies, e.g., pypi, have been renamed with a test- prefix for clarity, e.g., test-pypi.

Stabilizations

  • uv python upgrade and uv python install --upgrade (#​17766)

    When installing Python versions, an intermediary directory without the patch version attached will be created, and virtual environments will be transparently upgraded to new patch versions.

    See the Python version documentation for more details.

  • uv add --bounds and the add-bounds configuration option (#​17660)

    This does not come with any behavior changes. You will no longer see an experimental warning when using uv add --bounds or add-bounds in configuration.

  • uv workspace list and uv workspace dir (#​17768)

    This does not come with any behavior changes. You will no longer see an experimental warning when using these commands.

  • extra-build-dependencies (#​17767)

    This does not come with any behavior changes. You will no longer see an experimental warning when using extra-build-dependencies in configuration.

Enhancements
  • Improve ABI tag error message phrasing (#​17878)
  • Introduce a 10s connect timeout (#​17733)
  • Allow using pyx.dev as a target in uv auth commands despite PYX_API_URL differing (#​17856)
Bug fixes
  • Support all CPython ABI tag suffixes properly (#​17817)
  • Add support for detecting PowerShell on Linux and macOS (#​17870)
  • Retry timeout errors for streams (#​17875)

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot requested review from a team as code owners February 5, 2026 23:44
@github-actions
Copy link

github-actions bot commented Feb 5, 2026
edited
Loading

☂️ Python Coverage

current status: ✅

Overall Coverage

Lines Covered Coverage Threshold Status
4973 3588 72% 60% 🟢

New Files

No new covered files...

Modified Files

No covered modified files...

updated for commit: 15123b1 by action🐍

@renovate renovate bot changed the title chore(deps): update dependency uv_build to >=0.10.0,<0.11.0 chore(deps): update dependency uv_build to >=0.10.1,<0.11.0 Feb 10, 2026
@renovate renovate bot force-pushed the renovate/uv_build-0.x branch from be8ebca to 27b47a6 Compare February 10, 2026 16:04
@renovate renovate bot changed the title chore(deps): update dependency uv_build to >=0.10.1,<0.11.0 chore(deps): update dependency uv_build to >=0.10.2,<0.11.0 Feb 10, 2026
@renovate renovate bot force-pushed the renovate/uv_build-0.x branch from 27b47a6 to 1430e89 Compare February 10, 2026 20:00
@renovate renovate bot force-pushed the renovate/uv_build-0.x branch from 1430e89 to 4ae53fe Compare February 16, 2026 11:11
@renovate renovate bot changed the title chore(deps): update dependency uv_build to >=0.10.2,<0.11.0 chore(deps): update dependency uv_build to >=0.10.3,<0.11.0 Feb 16, 2026
@renovate renovate bot force-pushed the renovate/uv_build-0.x branch from 4ae53fe to 15123b1 Compare February 16, 2026 16:13
@doctrino doctrino enabled auto-merge (squash) February 17, 2026 13:28
@doctrino doctrino added the waiting-for-risk-review Waiting for a member of the risk review team to take an action label Feb 17, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@doctrino doctrino doctrino approved these changes

Assignees

No one assigned

Labels

waiting-for-risk-review Waiting for a member of the risk review team to take an action

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@doctrino