build: bump the docker group in /.devcontainer with 2 updates

[dependabot]

Bumps the docker group in /.devcontainer with 2 updates: astral-sh/uv and devcontainers/python.

Updates astral-sh/uv from 0.10.9 to 0.11.21

Release notes

Sourced from astral-sh/uv's releases.

0.11.21

Release Notes

Released on 2026-06-11.

Python

• Add CPython 3.13.14 and 3.14.6 (#19787)

Preview features

• Add environment.root to uv workspace metadata --sync (#19760)
• Allow uv upgrade to update a single dependency constraint (#19738)
• Compute and pass uv workspace metadata payload in ty check (#19763)
• Make packaged applications the default for uv init (#17841)

Performance

• Add parallel discovery of Python versions for uv python list (#18684)
• Avoid normalizing source distribution names twice (#19784)

Bug fixes

• Improve cache robustness and pruning behavior
  • Allow CI cache pruning without an sdist bucket (#19802)
  • Avoid overflow when reading malformed cache entries (#19799)
  • Preserve cached Python downloads during cache pruning (#19795)
  • Reject running inside the cache (#19659)
• Fix Python discovery and version request edge cases
  • Avoid panics for Unicode Python version requests (#19797)
  • Fix handling of non-critical errors in uv python list with path requests (#19774)
  • Fix stop-discovery-at regression (#19769)
• Harden parsing and validation for package metadata, requirements, markers, URLs, and conflict sets
  • Allow trailing commas in version specifiers (#19806)
  • Avoid panics for invalid UTF-8 URL credentials (#19800)
  • Avoid panics for malformed source distribution filenames (#19776)
  • Avoid panics for trailing extra separators (#19779)
  • Avoid stack overflow for recursive requirements path aliases (#19777)
  • Ignore reversed string compatible-release markers (#19782)
  • Reject duplicate entries in conflict sets (#19801)
  • Reject malformed hash options in requirements files (#19783)
  • Reject source distribution filenames without a separator (#19803)
  • Use UTF-8 lengths for requirement errors (#19781)
  • Use UTF-8 lengths for trailing marker errors (#19796)
  • Use byte offsets when peeking over requirements (#19780)
  • Validate GraalPy ABI suffixes (#19805)
• Improve wheel entry-point error handling and virtual environment activation quoting
  • Propagate errors when reading wheel entry points (#19794)
  • Quote virtual environment activation paths with shell metacharacters (#19798)

... (truncated)

Changelog

Sourced from astral-sh/uv's changelog.

0.11.21

Released on 2026-06-11.

Python

• Add CPython 3.13.14 and 3.14.6 (#19787)

Preview features

• Add environment.root to uv workspace metadata --sync (#19760)
• Allow uv upgrade to update a single dependency constraint (#19738)
• Compute and pass uv workspace metadata payload in ty check (#19763)
• Make packaged applications the default for uv init (#17841)

Performance

• Add parallel discovery of Python versions for uv python list (#18684)
• Avoid normalizing source distribution names twice (#19784)

Bug fixes

• Improve cache robustness and pruning behavior
  • Allow CI cache pruning without an sdist bucket (#19802)
  • Avoid overflow when reading malformed cache entries (#19799)
  • Preserve cached Python downloads during cache pruning (#19795)
  • Reject running inside the cache (#19659)
• Fix Python discovery and version request edge cases
  • Avoid panics for Unicode Python version requests (#19797)
  • Fix handling of non-critical errors in uv python list with path requests (#19774)
  • Fix stop-discovery-at regression (#19769)
• Harden parsing and validation for package metadata, requirements, markers, URLs, and conflict sets
  • Allow trailing commas in version specifiers (#19806)
  • Avoid panics for invalid UTF-8 URL credentials (#19800)
  • Avoid panics for malformed source distribution filenames (#19776)
  • Avoid panics for trailing extra separators (#19779)
  • Avoid stack overflow for recursive requirements path aliases (#19777)
  • Ignore reversed string compatible-release markers (#19782)
  • Reject duplicate entries in conflict sets (#19801)
  • Reject malformed hash options in requirements files (#19783)
  • Reject source distribution filenames without a separator (#19803)
  • Use UTF-8 lengths for requirement errors (#19781)
  • Use UTF-8 lengths for trailing marker errors (#19796)
  • Use byte offsets when peeking over requirements (#19780)
  • Validate GraalPy ABI suffixes (#19805)
• Improve wheel entry-point error handling and virtual environment activation quoting
  • Propagate errors when reading wheel entry points (#19794)
  • Quote virtual environment activation paths with shell metacharacters (#19798)

0.11.20

... (truncated)

Commits

• 5aa65dd Bump version to 0.11.21 (#19810)
• 453ab98 Fix musllinux tag priority (#19804)
• 1764c77 Validate GraalPy ABI suffixes (#19805)
• 1379b7d Compute and pass uv workspace metadata payload in ty check (#19763)
• bd6d289 Preserve cached Python downloads during cache pruning (#19795)
• 143c12f Propagate errors when reading wheel entry points (#19794)
• b2d8307 Allow trailing commas in version specifiers (#19806)
• d5c8a5f Quote virtual environment activation paths with shell metacharacters (#19798)
• 48c4357 Avoid overflow when reading malformed cache entries (#19799)
• 6353b24 Allow CI cache pruning without an sdist bucket (#19802)
• Additional commits viewable in compare view

Updates devcontainers/python from 3.11 to 3.14

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: docker. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.