Bump uv from 0.4.20 to 0.4.21 in /.github/requirements

[dependabot]

Bumps uv from 0.4.20 to 0.4.21.

Release notes

Sourced from uv's releases.

0.4.21

Release Notes

Enhancements

• Add support for managed installations of free-threaded Python (#8100)
• Add note about uvx to uv tool run short help (#7695)
• Enable HTTP/2 requests (#8049)
• Support uv tree --no-dev (#8109)
• Support PEP 723 metadata with uv run - (#8111)
• Support pip install --exact (#8044)
• Support uv export --no-header (#8096)
• ADd Python 3.13 images to Docker publish (#8105)
• Support remote (https://) scripts in uv run (#6375)
• Allow comma value-delimited arguments in uv run --with (#7909)

Configuration

• Support wildcards in UV_INSECURE_HOST (#8052)

Performance

• Use shared index when fetching metadata in lock satisfaction routine (#8147)

Bug fixes

• Add prerelease compatibility check to uv python CLI (#8020)
• Avoid deleting a project environment directory if we cannot tell if a pyvenv.cfg file exists (#8012)
• Avoid excluding valid wheels for exact requires-python bounds (#8140)
• Bump netrc crate to latest commit (#8021)
• Fix uv python pin 3.13t failure when parsing version for project requires check (#8056)
• Fix handling of != intersections in requires-python (#7897)
• Remove the newly created tool environment if sync failed (#8038)
• Respect dynamic extras in uv lock and uv sync (#8091)
• Treat resolver failures as fatal in lockfile validation (#8083)
• Use git config --get for author information for improved backwards compatibility (#8101)
• Use comma-separated values for UV_FIND_LINKS (#8061)
• Use shared resolver state between add and lock to avoid double Git update (#8146)
• Make --relocatable entrypoints robust to symlinking (#8079)
• Improve compatibility with VSCode PS1 prompt (#8006)
• Fix "Stream did not contain valid UTF-8" failures in Windows (#8120)
• Use --with-requirements in uvx error hint (#8112)

Documentation

• Include uvx installation in Docker examples (#8179)
• Make the instructions for the Windows standalone installer consistent across README and documentation (#8125)
• Update pip compatibility guide to note transitive URL dependency support (#8081)
• Document --reinstall with --exclude-newer to ensure downgrades (#6721)

... (truncated)

Changelog

Sourced from uv's changelog.

0.4.21

Enhancements

• Add support for managed installations of free-threaded Python (#8100)
• Add note about uvx to uv tool run short help (#7695)
• Enable HTTP/2 requests (#8049)
• Support uv tree --no-dev (#8109)
• Support PEP 723 metadata with uv run - (#8111)
• Support pip install --exact (#8044)
• Support uv export --no-header (#8096)
• ADd Python 3.13 images to Docker publish (#8105)
• Support remote (https://) scripts in uv run (#6375)
• Allow comma value-delimited arguments in uv run --with (#7909)

Configuration

• Support wildcards in UV_INSECURE_HOST (#8052)

Performance

• Use shared index when fetching metadata in lock satisfaction routine (#8147)

Bug fixes

• Add prerelease compatibility check to uv python CLI (#8020)
• Avoid deleting a project environment directory if we cannot tell if a pyvenv.cfg file exists (#8012)
• Avoid excluding valid wheels for exact requires-python bounds (#8140)
• Bump netrc crate to latest commit (#8021)
• Fix uv python pin 3.13t failure when parsing version for project requires check (#8056)
• Fix handling of != intersections in requires-python (#7897)
• Remove the newly created tool environment if sync failed (#8038)
• Respect dynamic extras in uv lock and uv sync (#8091)
• Treat resolver failures as fatal in lockfile validation (#8083)
• Use git config --get for author information for improved backwards compatibility (#8101)
• Use comma-separated values for UV_FIND_LINKS (#8061)
• Use shared resolver state between add and lock to avoid double Git update (#8146)
• Make --relocatable entrypoints robust to symlinking (#8079)
• Improve compatibility with VSCode PS1 prompt (#8006)
• Fix "Stream did not contain valid UTF-8" failures in Windows (#8120)
• Use --with-requirements in uvx error hint (#8112)

Documentation

• Include uvx installation in Docker examples (#8179)
• Make the instructions for the Windows standalone installer consistent across README and documentation (#8125)
• Update pip compatibility guide to note transitive URL dependency support (#8081)
• Document --reinstall with --exclude-newer to ensure downgrades (#6721)

Commits

• 0c5d05d Don't run publish tests from fork (#8168)
• c5d9f55 Bump version to v0.4.21 (#8188)
• 5f33915 Add support for managed installs of free-threaded Python (#8100)
• db0f0ae fix(ci): adjust xwin timeout and revert xwin jobs being disabled (#8187)
• cc9767c Disable cargo xwin clippy in trampoline job (#8182)
• 05446cd Include uvx installation in Docker examples (#8179)
• da7ffd3 Fix error message consistency for broken virtual environments due to `pyvenv....
• 581fab6 Replace cargo xwin clippy with native clippy run on Windows temporarily (#8...
• 163c901 Fix mkdocs workflow (#8174)
• 2901a8d Run cargo update (#8152)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)