Workflow

Uv

Latest version: v0.5.9

Safety actively analyzes 688917 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 14 of 22

0.2.6

Enhancements

- Support PEP 508 requirements for editables ([3946](https://github.com/astral-sh/uv/pull/3946))
- Discard fragments when parsing unnamed URLs ([3940](https://github.com/astral-sh/uv/pull/3940))
- Port all Git functionality to use Git CLI ([3833](https://github.com/astral-sh/uv/pull/3833))
- Use statically linked C runtime on Windows ([3966](https://github.com/astral-sh/uv/pull/3966))

Bug fixes

- Disable concurrent progress bars in Jupyter Notebooks ([3890](https://github.com/astral-sh/uv/pull/3890))
- Initialize multi-progress state before individual bars ([3901](https://github.com/astral-sh/uv/pull/3901))
- Add missing `i686` alias for `x86` ([3899](https://github.com/astral-sh/uv/pull/3899))
- Add missing `ppc64le` alias for `powerpc64le` ([3963](https://github.com/astral-sh/uv/pull/3963))
- Fix reference to `--python-version` patch behavior ([3989](https://github.com/astral-sh/uv/pull/3989))
- Avoid race condition in `OnceMap` ([3987](https://github.com/astral-sh/uv/pull/3987))

Preview features

- Add `uv run --package` ([3864](https://github.com/astral-sh/uv/pull/3864))
- Add index URL parameters to Project CLI ([3984](https://github.com/astral-sh/uv/pull/3984))
- Avoid re-adding solutions to forked state ([3967](https://github.com/astral-sh/uv/pull/3967))
- Draft for user docs for workspaces ([3866](https://github.com/astral-sh/uv/pull/3866))
- Include all extras when generating lockfile ([3912](https://github.com/astral-sh/uv/pull/3912))
- Remove unstable uv lock from pip interface ([3970](https://github.com/astral-sh/uv/pull/3970))
- Respect resolved Git SHAs in `uv lock` ([3956](https://github.com/astral-sh/uv/pull/3956))
- Use lockfile in `uv run` ([3894](https://github.com/astral-sh/uv/pull/3894))
- Use lockfile versions as resolution preferences ([3921](https://github.com/astral-sh/uv/pull/3921))
- Use universal resolution in `uv lock` ([3969](https://github.com/astral-sh/uv/pull/3969))

0.2.5

Not secure
Enhancements

- Add support for x86 Windows ([3873](https://github.com/astral-sh/uv/pull/3873))
- Add support for `prepare_metadata_for_build_editable` hook ([3870](https://github.com/astral-sh/uv/pull/3870))
- Add concurrent progress bars for downloads ([3252](https://github.com/astral-sh/uv/pull/3252))

Bug fixes

- Update bundled Python URLs and add `"arm"` architecture variant ([3855](https://github.com/astral-sh/uv/pull/3855))

Preview features

- Add context to failed `uv tool run` ([3882](https://github.com/astral-sh/uv/pull/3882))
- Add persistent storage of installed toolchains ([3797](https://github.com/astral-sh/uv/pull/3797))
- Gate discovery of managed toolchains with preview ([3835](https://github.com/astral-sh/uv/pull/3835))
- Initial workspace support ([3705](https://github.com/astral-sh/uv/pull/3705))
- Move editable discovery behind `--preview` for now ([3884](https://github.com/astral-sh/uv/pull/3884))

0.2.4

Not secure
CLI

- Allow `--system` and `--python` to be passed together ([3830](https://github.com/astral-sh/uv/pull/3830))

Bug fixes

- Ignore `libc` on other platforms ([3825](https://github.com/astral-sh/uv/pull/3825))

0.2.3

Not secure
Enhancements

- Incorporate build tag into wheel prioritization ([3781](https://github.com/astral-sh/uv/pull/3781))
- Avoid displaying log for satisfied editables if none are
requested ([3795](https://github.com/astral-sh/uv/pull/3795))
- Improve logging during interpreter discovery ([3790](https://github.com/astral-sh/uv/pull/3790))
- Improve logging for environment locking ([3792](https://github.com/astral-sh/uv/pull/3792))
- Improve logging of interpreter implementation ([3791](https://github.com/astral-sh/uv/pull/3791))
- Remove extra details from interpreter query traces ([3803](https://github.com/astral-sh/uv/pull/3803))
- Use colon more consistently in error messages ([3788](https://github.com/astral-sh/uv/pull/3788))

Configuration

- Add JSON alias for `unsafe-any-match` ([3820](https://github.com/astral-sh/uv/pull/3820))

Release

- Remove redundant dynamically linked Linux binary again (3762)" ([3778](https://github.com/astral-sh/uv/pull/3778))
- Remove `aarch64-unknown-linux-gnu` from list of expected binaries ([3761](https://github.com/astral-sh/uv/pull/3761))

Bug fixes

- Always include package names for Git and HTTPS dependencies ([3821](https://github.com/astral-sh/uv/pull/3821))
- Fix interpreter cache collisions for relative virtualenv paths ([3823](https://github.com/astral-sh/uv/pull/3823))
- Ignore unnamed requirements in preferences ([3826](https://github.com/astral-sh/uv/pull/3826))
- Search for `python3` in unix virtual environments ([3798](https://github.com/astral-sh/uv/pull/3798))
- Use a cross-platform representation for relative paths
in `pip compile` ([3804](https://github.com/astral-sh/uv/pull/3804))

Preview features

- Allow specification of additional requirements in `uv tool run` ([3678](https://github.com/astral-sh/uv/pull/3678))

0.2.2

Not secure
Enhancements

- Report yanks for cached and resolved packages ([3772](https://github.com/astral-sh/uv/pull/3772))
- Improve error message when default Python is not found ([3770](https://github.com/astral-sh/uv/pull/3770))

Bug fixes

- Do not treat interpreters discovered via `CONDA_PREFIX` as system
interpreters ([3771](https://github.com/astral-sh/uv/pull/3771))

0.2.1

Not secure
Bug fixes

- Re-added the dynamically-linked Linux binary ([3762](https://github.com/astral-sh/uv/pull/3762))

Preview features

- Allow users to specify a custom source package to `uv tool run` ([3677](https://github.com/astral-sh/uv/pull/3677))

Page 14 of 22

Links

Releases

Has known vulnerabilities

Previous Next

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.