cp: Update setuptools to 80.10.2 #1830 into r0.5.0

[chtruong814]

What does this PR do ?

Cherry-pick for #1830

This had to be manually created to resolve cherry-pick conflicts.

Issues

List issues that this PR closes (syntax):

Usage

• You can potentially add a usage example below

# Add a code snippet demonstrating how to use this

Before your PR is "Ready for review"

Pre checks:

• Make sure you read and followed Contributor guidelines
• Did you write any new necessary tests?
• Did you run the unit tests and functional tests locally? Visit our Testing Guide for how to run tests
• Did you add or update any necessary documentation? Visit our Document Development Guide for how to write, build and test the docs.

Additional Information

• ...

Summary by CodeRabbit

• Bug Fixes
  • Updated a critical development dependency to address a security vulnerability.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[coderabbitai]

📝 Walkthrough

Walkthrough

This PR updates the setuptools dependency constraint in pyproject.toml from version 80.10.1 to 80.10.2 within the uv tool's override-dependencies configuration, adding a comment explaining the CVE rationale for the version requirement.

Changes

Cohort / File(s)	Summary
Dependency version bump pyproject.toml	Updated setuptools override-dependency constraint from >=80.10.1 to >=80.10.2 with added CVE explanatory comment

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Possibly related PRs

• build: Bump setuptools >= 80.10.1 and wheel >= 0.46.2 #1822 — Previously added the initial setuptools constraint to override-dependencies that this PR now bumps to a newer version.
• cp: Bump setuptools >= 80.10.1 and wheel >= 0.46.2 (#1822) into r0.5.0 #1825 — Also modified the setuptools constraint in pyproject.toml's override-dependencies list.

Suggested labels

CI:L1, r0.5.0

Suggested reviewers

• terrykong
• yuki-97

🚥 Pre-merge checks | ✅ 3 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Title check	⚠️ Warning	The title mentions updating setuptools to 80.10.2 but includes 'cp: Update setuptools to 80.10.2 #1830 into r0.5.0', which contains extraneous information (issue reference, branch details) and uses unclear prefix notation.	Simplify the title to 'Update setuptools to 80.10.2' or 'build: Update setuptools to 80.10.2' to focus on the main change without branch/PR reference noise.

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Test Results For Major Changes	✅ Passed	PR contains only a minor security patch dependency bump for setuptools (>=80.10.1 to >=80.10.2), which satisfies the check criteria allowing pass for minor changes without requiring test documentation.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}