[Dependabot-automated] Bump astral-sh/setup-uv from 7.2.0 to 7.2.1 (mlrun#9257)

dependabot[bot] · web-flow · commit 619918cbfbf4 · 2026-01-30T16:20:10.000+02:00
Bumps [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv) from 7.2.0 to 7.2.1. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/astral-sh/setup-uv/commit/803947b9bd8e9f986429fa0c5a41c367cd732b41"><code>803947b</code></a> chore: update known checksums for 0.9.28 (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/744">#744</a>)</li> <li><a href="https://github.com/astral-sh/setup-uv/commit/24553ac46dfd24871eea59c7731579f2543bf40a"><code>24553ac</code></a> chore: update known checksums for 0.9.27 (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/742">#742</a>)</li> <li><a href="https://github.com/astral-sh/setup-uv/commit/085087a5d3dc70f4748c8f303cc8a03e3c7d33df"><code>085087a</code></a> Bump zizmorcore/zizmor-action from 0.3.0 to 0.4.1 (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/741">#741</a>)</li> <li><a href="https://github.com/astral-sh/setup-uv/commit/9cfd02964306b527feff5fee75acfd028cce4260"><code>9cfd029</code></a> chore: update known checksums for 0.9.26 (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/734">#734</a>)</li> <li><a href="https://github.com/astral-sh/setup-uv/commit/dd9d55bc18c78b7a8ff88afb8c81b54d3140815b"><code>dd9d55b</code></a> chore: update known checksums for 0.9.25 (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/733">#733</a>)</li> <li><a href="https://github.com/astral-sh/setup-uv/commit/8512ad0289ad2fef937f3b232c410c597be21c44"><code>8512ad0</code></a> Clarify impact of using actions/setup-python (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/732">#732</a>)</li> <li><a href="https://github.com/astral-sh/setup-uv/commit/cc5581700ee88b4e950b5702fe785737f2a40bec"><code>cc55817</code></a> chore: update known checksums for 0.9.24 (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/730">#730</a>)</li> <li>See full diff in <a href="https://github.com/astral-sh/setup-uv/compare/61cb8a9741eeb8a550a1b8544337180c0fc8476b...803947b9bd8e9f986429fa0c5a41c367cd732b41">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=astral-sh/setup-uv&package-manager=github_actions&previous-version=7.2.0&new-version=7.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
@@ -256,7 +256,7 @@ jobs:
       with:
         python-version: ${{ matrix.python-version }}
 
-    - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # 7.2.0
+    - uses: astral-sh/setup-uv@803947b9bd8e9f986429fa0c5a41c367cd732b41 # 7.2.1
       with:
           python-version: ${{ matrix.python-version }}
           enable-cache: true
diff --git a/.github/workflows/private-release.yaml b/.github/workflows/private-release.yaml
@@ -171,7 +171,7 @@ jobs:
           fi      
       - uses: actions/checkout@v6
       - name: Set up uv
-        uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # 7.2.0
+        uses: astral-sh/setup-uv@803947b9bd8e9f986429fa0c5a41c367cd732b41 # 7.2.1
       - name: Build & push to Artifactory PyPI
         env:
           MLRUN_VERSION: ${{ needs.prepare-inputs.outputs.version }}
diff --git a/.github/workflows/release-promotion.yaml b/.github/workflows/release-promotion.yaml
@@ -247,7 +247,7 @@ jobs:
 
       - name: Set up uv
         if: github.event.inputs.skip_publish_pypi != 'true'
-        uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # 7.2.0
+        uses: astral-sh/setup-uv@803947b9bd8e9f986429fa0c5a41c367cd732b41 # 7.2.1
 
       - name: Upload package to target PyPI repo
         if: github.event.inputs.skip_publish_pypi != 'true'
diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
@@ -180,7 +180,7 @@ jobs:
           token: ${{ steps.mlrun-app-token.outputs.token }}
           persist-credentials: false
       - name: Set up uv
-        uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # 7.2.0
+        uses: astral-sh/setup-uv@803947b9bd8e9f986429fa0c5a41c367cd732b41 # 7.2.1
       - name: Build & push to PyPI
         if: github.event.inputs.skip_publish_pypi != 'true'
         env:
diff --git a/.github/workflows/system-tests-enterprise.yml b/.github/workflows/system-tests-enterprise.yml
@@ -127,7 +127,7 @@ jobs:
         output-credentials: true
 
     - name: Install uv
-      uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # 7.2.0
+      uses: astral-sh/setup-uv@803947b9bd8e9f986429fa0c5a41c367cd732b41 # 7.2.1
       with:
         enable-cache: true
         python-version: 3.11
@@ -399,7 +399,7 @@ jobs:
         ref: ${{ needs.prepare-system-tests-enterprise-ci.outputs.mlrunBranch }}
 
     - name: Install uv
-      uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # 7.2.0
+      uses: astral-sh/setup-uv@803947b9bd8e9f986429fa0c5a41c367cd732b41 # 7.2.1
       with:
         enable-cache: true
         python-version: 3.11
diff --git a/.github/workflows/system-tests-opensource.yml b/.github/workflows/system-tests-opensource.yml
@@ -177,7 +177,7 @@ jobs:
     - uses: actions/checkout@v6
 
     - name: Install uv
-      uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b
+      uses: astral-sh/setup-uv@803947b9bd8e9f986429fa0c5a41c367cd732b41
       with:
         enable-cache: true
         cache-dependency-glob: "**/*requirements*.txt"
diff --git a/.github/workflows/upgrade-lock.yaml b/.github/workflows/upgrade-lock.yaml
@@ -31,7 +31,7 @@ jobs:
     steps:
     - uses: actions/checkout@v6
 
-    - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # 7.2.0
+    - uses: astral-sh/setup-uv@803947b9bd8e9f986429fa0c5a41c367cd732b41 # 7.2.1
 
     - name: Upgrade dependencies in the lock file with uv
       run: make upgrade-mlrun-deps-lock
