Bump uv from 0.10.9 to 0.11.3

[dependabot]

Bumps uv from 0.10.9 to 0.11.3.

Release notes

Sourced from uv's releases.

0.11.3

Release Notes

Released on 2026-04-01.

Enhancements

• Add progress bar for hashing phase in uv publish (#18752)
• Add support for ROCm 7.2 (#18730)
• Emit abi3t tags for every abi3 version (#18777)
• Expand uv workspace metadata with dependency information from the lock (#18356)
• Implement support for PEP 803 (#18767)
• Pretty-print platform in built wheel errors (#18738)
• Publish installers to /installers/uv/latest on the mirror (#18725)
• Show free-threaded Python in built-wheel errors (#18740)

Preview features

• Add --ignore and --ignore-until-fixed to uv audit (#18737)

Bug fixes

• Bump simple API cache (#18797)
• Don't drop blake2b hashes (#18794)
• Handle broken range request implementations (#18780)
• Remove powerpc64-unknown-linux-gnu from release build targets (#18800)
• Respect dependency metadata overrides in uv pip check (#18742)
• Support debug CPython ABI tags in environment compatibility (#18739)

Documentation

• Document false opt-out for exclude-newer-package (#18768, #18803)

Install uv 0.11.3

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://releases.astral.sh/github/uv/releases/download/0.11.3/uv-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://releases.astral.sh/github/uv/releases/download/0.11.3/uv-installer.ps1 | iex"

Download uv 0.11.3

| File | Platform | Checksum |

... (truncated)

Changelog

Sourced from uv's changelog.

0.11.3

Released on 2026-04-01.

Enhancements

• Add progress bar for hashing phase in uv publish (#18752)
• Add support for ROCm 7.2 (#18730)
• Emit abi3t tags for every abi3 version (#18777)
• Expand uv workspace metadata with dependency information from the lock (#18356)
• Implement support for PEP 803 (#18767)
• Pretty-print platform in built wheel errors (#18738)
• Publish installers to /installers/uv/latest on the mirror (#18725)
• Show free-threaded Python in built-wheel errors (#18740)

Preview features

• Add --ignore and --ignore-until-fixed to uv audit (#18737)

Bug fixes

• Bump simple API cache (#18797)
• Don't drop blake2b hashes (#18794)
• Handle broken range request implementations (#18780)
• Remove powerpc64-unknown-linux-gnu from release build targets (#18800)
• Respect dependency metadata overrides in uv pip check (#18742)
• Support debug CPython ABI tags in environment compatibility (#18739)

Documentation

• Document false opt-out for exclude-newer-package (#18768, #18803)

0.11.2

Released on 2026-03-26.

Enhancements

• Add a dedicated Windows PE editing error (#18710)
• Make uv self update fetch the manifest from the mirror first (#18679)
• Use uv reqwest client for self update (#17982)
• Show uv self update success and failure messages with --quiet (#18645)

Preview features

• Evaluate extras and groups when determining auditable packages (#18511)

Bug fixes

• Skip redundant project configuration parsing for uv run (#17890)

... (truncated)

Commits

• 45da18a Fix deployment flag in Docker builds on release (#18812)
• 4573247 Temporarily disable the trampoline reproducibility check (#18806)
• 464a33c Bump version to 0.11.3 (#18805)
• 0857789 docs: add explicit example for opting package out of --exclude-newer (#18803)
• 9191802 Update cgr.dev/chainguard/python:latest-dev Docker digest to 7f42e64 (#18759)
• 6289299 fix: bump rustls-webpki 0.103.9 -> 0.103.10 (GHSA-pwjx-qhcg-rvj4) (#18785)
• 5f6da0a Use Python 3.14 for CI cache check (#18796)
• 6b1ebc3 Add a "release-gate" step to the release workflow (#18804)
• 8fe68cf Support debug CPython ABI tags in environment compatibility (#18739)
• 8120c0a Remove powerpc64-unknown-linux-gnu from build targets (#18800)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)