ci: refactor using uv by default#5210

Closed

Xuanwo wants to merge 9 commits into

mainfrom

GitHub Advanced Security / CodeQL succeeded Nov 13, 2025 in 5s

3 new alerts including 3 medium severity security vulnerabilities

New alerts in code changed by this pull request

Security Alerts:

3 medium

Alerts not introduced by this pull request might have been detected because the code changes were too large.

See annotations below for details.

View all branch alerts.

Annotations

Check warning on line 249 in .github/workflows/python.yml

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}

Check warning on line 288 in .github/workflows/python.yml

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}

Check warning on line 326 in .github/workflows/python.yml

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}