chore(deps): update ghcr.io/astral-sh/uv docker tag to v0.9.25

[renovate-bot-cbcoutinho]

This PR contains the following updates:

Package	Type	Update	Change
ghcr.io/astral-sh/uv	final	patch	0.9.24 → 0.9.25

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

astral-sh/uv (ghcr.io/astral-sh/uv)

v0.9.25

Compare Source

Released on 2026-01-13.

Python

• Add CPython 3.15.0a4
• Upgrade Tcl/Tk used by CPython to 9.0

Enhancements

• Add --compile-bytecode to uv python install and uv python upgrade to compile the standard library (#​17088)
• Allow disabling exclude-newer per package (#​16854)
• Broadcast WM_SETTINGCHANGE on uv tool update-shell (#​17404)

Preview features

• Detect workspace from uv run target (#​17423)

Bug fixes

• Avoid unwrapping size for file responses (#​17434)
• Use keyring authentication when retrieving tool@latest version (#​17448)
• Use latest Pyodide version for each python version (#​17372)
• Improve trampoline file handle closing (#​17374)
• Fix error message when installing musl python on armv7 (#​17213)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[claude]

Pull Request Review - uv 0.9.24 → 0.9.25

Thank you for this dependency update! Here's my analysis:

✅ Code Quality & Best Practices

Excellent work:

• Consistent updates across both Dockerfile and Dockerfile.smithery
• Proper SHA256 digest pinning for security
• Follows Docker multi-stage build best practices

✅ Security Considerations

Strong security posture:

• SHA256 digest pinning prevents tag manipulation attacks
• Official ghcr.io/astral-sh/uv source ensures authenticity
• Minimal change surface reduces risk

📋 Changes in uv 0.9.25

This is a safe patch update containing:

• ✨ CPython 3.15.0a4 support + Tcl/Tk 9.0 upgrade
• 🐛 Bug fixes:
  • File handle closing improvements (#17374)
  • Keyring auth for tool@latest (#17448)
  • File response size handling (#17434)
• 🚀 New opt-in --compile-bytecode flag (doesn't affect default behavior)
• ✅ No breaking changes

✅ Performance Considerations

No negative impact expected:

• Patch version maintains compatibility
• Bug fixes improve reliability
• Build process unchanged

🎯 Overall Assessment

Status: ✅ LGTM (Looks Good To Me)

This is a well-formed, low-risk dependency update that maintains security best practices while bringing valuable bug fixes. The file handle improvements and keyring auth fixes are particularly beneficial for production deployments.

Recommendation: Safe to merge once CI passes.

---

Review performed by Claude Code following repository conventions from CLAUDE.md