Skip to content

chore(deps): bump uv from 0.10.4 to 0.10.5#369

Merged
mergify[bot] merged 1 commit intomainfrom
dependabot/pip/uv-0.10.5
Feb 24, 2026
Merged

chore(deps): bump uv from 0.10.4 to 0.10.5#369
mergify[bot] merged 1 commit intomainfrom
dependabot/pip/uv-0.10.5

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 24, 2026

Bumps uv from 0.10.4 to 0.10.5.

Release notes

Sourced from uv's releases.

0.10.5

Release Notes

Released on 2026-02-23.

Enhancements

  • Add hint when named index is found in a parent config file (#18087)
  • Add warning for uv lock --frozen (#17859)
  • Attempt to use reflinks by default on Linux (#18117)
  • Fallback to hardlinks after reflink failure before copying (#18104)
  • Filter pylock.toml wheels by tags and requires-python (#18081)
  • Validate wheel filenames are normalized during uv publish (#17783)
  • Fix message when exclude-newer invalidates the lock file (#18100)
  • Change the missing files log level to debug (#18075)

Performance

  • Improve performance of repeated conflicts with an extra (#18094)

Bug fixes

  • Fix --no-emit-workspace with --all-packages on single-member workspaces (#18098)
  • Fix UV_NO_DEFAULT_GROUPS rejecting truthy values like 1 (#18057)
  • Fix iOS detection (#17973)
  • Propagate project-level conflicts to package extras (#18096)
  • Use a global build concurrency semaphore (#18054)

Documentation

  • Update documentation heading for environment variable files (#18122)
  • Fix comment about uv export formats (#17900)
  • Make it clear that Windows is supported in user- and system- level configuration docs (#18106)

Install uv 0.10.5

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/uv/releases/download/0.10.5/uv-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://github.com/astral-sh/uv/releases/download/0.10.5/uv-installer.ps1 | iex"

Download uv 0.10.5

... (truncated)

Changelog

Sourced from uv's changelog.

0.10.5

Released on 2026-02-23.

Enhancements

  • Add hint when named index is found in a parent config file (#18087)
  • Add warning for uv lock --frozen (#17859)
  • Attempt to use reflinks by default on Linux (#18117)
  • Fallback to hardlinks after reflink failure before copying (#18104)
  • Filter pylock.toml wheels by tags and requires-python (#18081)
  • Validate wheel filenames are normalized during uv publish (#17783)
  • Fix message when exclude-newer invalidates the lock file (#18100)
  • Change the missing files log level to debug (#18075)

Performance

  • Improve performance of repeated conflicts with an extra (#18094)

Bug fixes

  • Fix --no-emit-workspace with --all-packages on single-member workspaces (#18098)
  • Fix UV_NO_DEFAULT_GROUPS rejecting truthy values like 1 (#18057)
  • Fix iOS detection (#17973)
  • Propagate project-level conflicts to package extras (#18096)
  • Use a global build concurrency semaphore (#18054)

Documentation

  • Update documentation heading for environment variable files (#18122)
  • Fix comment about uv export formats (#17900)
  • Make it clear that Windows is supported in user- and system- level configuration docs (#18106)
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump uv from 0.10.4 to 0.10.5
ee8da91 
Bumps [uv](https://github.com/astral-sh/uv) from 0.10.4 to 0.10.5.
- [Release notes](https://github.com/astral-sh/uv/releases)
- [Changelog](https://github.com/astral-sh/uv/blob/main/CHANGELOG.md)
- [Commits](astral-sh/uv@0.10.4...0.10.5)

---
updated-dependencies:
- dependency-name: uv
  dependency-version: 0.10.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Feb 24, 2026
@mergify mergify bot deployed to Mergify Merge Protections February 24, 2026 08:08 Active
@mergify
Copy link

mergify bot commented Feb 24, 2026
edited
Loading

Merge Protections

Your pull request matches the following merge protections and will not be merged until they are valid.

🟢 Continuous Integration

Wonderful, this rule succeeded.
  • all of:
    • check-success = test (3.10)
    • check-success = test (3.11)
    • check-success = test (3.12)
    • check-success = test (3.13)
    • check-success = test (3.8)
    • check-success = test (3.9)

🟢 Enforce conventional commit

Wonderful, this rule succeeded.

Make sure that we follow https://www.conventionalcommits.org/en/v1.0.0/

  • title ~= ^(fix|feat|docs|style|refactor|perf|test|build|ci|chore|revert)(?:\(.+\))?:

🟢 🔎 Reviews

Wonderful, this rule succeeded.
  • #changes-requested-reviews-by = 0
  • #review-requested = 0
  • #review-threads-unresolved = 0

🟢 📕 PR description

Wonderful, this rule succeeded.
  • body ~= (?ms:.{48,})

@mergify
Copy link

mergify bot commented Feb 24, 2026
edited
Loading

🧪 CI Insights

Here's what we observed from your CI run for ee8da91.

🟢 All jobs passed!

But CI Insights is watching 👀

@mergify
Copy link

mergify bot commented Feb 24, 2026
edited
Loading

Merge Queue Status

Rule: default

  • Entered queue2026-02-24 08:10 UTC
  • Checks passed · in-place
  • Merged2026-02-24 08:10 UTC · at ee8da918f8082373a347d6d24169110da63b0c7d

This pull request spent 5 seconds in the queue, with no time running CI.

Required conditions to merge

@mergify mergify bot merged commit decea7f into main Feb 24, 2026
9 checks passed
@mergify mergify bot added the queued label Feb 24, 2026
@mergify mergify bot deleted the dependabot/pip/uv-0.10.5 branch February 24, 2026 08:10
@mergify mergify bot removed the queued label Feb 24, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants