Skip to content

chore(deps): update uv: bump uv from 0.11.7 to 0.11.15 in /src/amazon-kendra-index-mcp-server#3690

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/uv/src/amazon-kendra-index-mcp-server/uv-0.11.15
Open

chore(deps): update uv: bump uv from 0.11.7 to 0.11.15 in /src/amazon-kendra-index-mcp-server#3690
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/uv/src/amazon-kendra-index-mcp-server/uv-0.11.15

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 29, 2026
edited
Loading

Bumps uv from 0.11.7 to 0.11.15.

Release notes

Sourced from uv's releases.

0.11.15

Release Notes

Released on 2026-05-18.

Security

Enhancements

  • Add TOML v1.1 -> v1.0 backwards compatibility for source distributions (#18741)
  • Add support for Azure request signing (#19421)
  • Apply stricter validation to all wheel filename segments (#19364)
  • Reject empty strings as an invalid package name (#19435)
  • Use structured errors for signing authentication failures (#19422)

Preview

  • uv audit: Add JSON output (#19305)

Configuration

  • Respect required-environments in uv pip compile (#19378)

Performance

  • Avoid parsing JSON manifest when local Python is available (#19398)
  • Avoid walking nested directories in linker conflict registration (#19382)
  • Optimize async wheel ZIP writing (#19383)
  • Fix dead "already trimmed" fast-path in Version::only_release_trimmed (#19425)

Bug fixes

  • Apply workspace-member [tool.uv.sources] credentials under uv sync --frozen (#19423)
  • Skip empty directories in uv build outputs (#19437)
  • Fix Git submodule handling when using relative paths (#12156)
  • Fix line number reporting in netrc parsing (#19452)

Documentation

  • Move Bazel auth helper setup into integration guide (#19392)

Install uv 0.11.15

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://releases.astral.sh/github/uv/releases/download/0.11.15/uv-installer.sh | sh
</tr></table>

... (truncated)

Changelog

Sourced from uv's changelog.

0.11.15

Released on 2026-05-18.

Security

Enhancements

  • Add TOML v1.1 -> v1.0 backwards compatibility for source distributions (#18741)
  • Add support for Azure request signing (#19421)
  • Apply stricter validation to all wheel filename segments (#19364)
  • Reject empty strings as an invalid package name (#19435)
  • Use structured errors for signing authentication failures (#19422)

Preview

  • uv audit: Add JSON output (#19305)

Configuration

  • Respect required-environments in uv pip compile (#19378)

Performance

  • Avoid parsing JSON manifest when local Python is available (#19398)
  • Avoid walking nested directories in linker conflict registration (#19382)
  • Optimize async wheel ZIP writing (#19383)
  • Fix dead "already trimmed" fast-path in Version::only_release_trimmed (#19425)

Bug fixes

  • Apply workspace-member [tool.uv.sources] credentials under uv sync --frozen (#19423)
  • Skip empty directories in uv build outputs (#19437)
  • Fix Git submodule handling when using relative paths (#12156)
  • Fix line number reporting in netrc parsing (#19452)

Documentation

  • Move Bazel auth helper setup into integration guide (#19392)

0.11.14

Released on 2026-05-12.

Enhancements

  • Add Astral mirror URL override (#19206)

... (truncated)

Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file or issues from dependenices python:uv Pull requests that update python:uv code labels May 29, 2026
@dependabot dependabot Bot requested review from a team and tomron-aws as code owners May 29, 2026 20:13
@dependabot dependabot Bot force-pushed the dependabot/uv/src/amazon-kendra-index-mcp-server/uv-0.11.15 branch from 325cde2 to 0ec798a Compare June 1, 2026 20:34
@dependabot
chore(deps): update uv: bump uv in /src/amazon-kendra-index-mcp-server
00c6d34 
Bumps [uv](https://github.com/astral-sh/uv) from 0.11.7 to 0.11.15.
- [Release notes](https://github.com/astral-sh/uv/releases)
- [Changelog](https://github.com/astral-sh/uv/blob/main/CHANGELOG.md)
- [Commits](astral-sh/uv@0.11.7...0.11.15)

---
updated-dependencies:
- dependency-name: uv
  dependency-version: 0.11.15
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/uv/src/amazon-kendra-index-mcp-server/uv-0.11.15 branch from 0ec798a to 00c6d34 Compare June 2, 2026 23:15
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tomron-aws tomron-aws Awaiting requested review from tomron-aws tomron-aws is a code owner

At least 2 approving reviews are required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file or issues from dependenices python:uv Pull requests that update python:uv code

Projects

awslabs/mcp Project
Status: To triage

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants