chore 🤖(deps): bump wheel from 0.46.3 to 0.47.0

[dependabot]

Bumps wheel from 0.46.3 to 0.47.0.

Release notes

Sourced from wheel's releases.

0.47.0

• Added the wheel info subcommand to display metadata about wheel files without unpacking them (#639)
• Fixed WheelFile raising Missing RECORD file when the wheel filename contains uppercase characters (e.g. Django-3.2.5.whl) but the .dist-info directory inside uses normalized lowercase naming (#411)

Changelog

Sourced from wheel's changelog.

Release Notes

0.47.0 (2026-04-22)

• Added the wheel info subcommand to display metadata about wheel files without unpacking them ([#639](https://github.com/pypa/wheel/issues/639) <https://github.com/pypa/wheel/issues/639>_)
• Fixed WheelFile raising Missing RECORD file when the wheel filename contains uppercase characters (e.g. Django-3.2.5.whl) but the .dist-info directory inside uses normalized lowercase naming ([#411](https://github.com/pypa/wheel/issues/411) <https://github.com/pypa/wheel/issues/411>_)

0.46.3 (2026-01-22)

• Fixed ImportError: cannot import name '_setuptools_logging' from 'wheel' when installed alongside an old version of setuptools and running the bdist_wheel command ([#676](https://github.com/pypa/wheel/issues/676) <https://github.com/pypa/wheel/issues/676>_)

0.46.2 (2026-01-22)

• Restored the bdist_wheel command for compatibility with setuptools older than v70.1
• Importing wheel.bdist_wheel now emits a FutureWarning instead of a DeprecationWarning
• Fixed wheel unpack potentially altering the permissions of files outside of the destination tree with maliciously crafted wheels (CVE-2026-24049)

0.46.1 (2025-04-08)

• Temporarily restored the wheel.macosx_libfile module ([#659](https://github.com/pypa/wheel/issues/659) <https://github.com/pypa/wheel/issues/659>_)

0.46.0 (2025-04-03)

• Dropped support for Python 3.8
• Removed the bdist_wheel setuptools command implementation and entry point. The wheel.bdist_wheel module is now just an alias to setuptools.command.bdist_wheel, emitting a deprecation warning on import.
• Removed vendored packaging in favor of a run-time dependency on it
• Made the wheel.metadata module private (with a deprecation warning if it's imported
• Made the wheel.cli package private (no deprecation warning)
• Fixed an exception when calling the convert command with an empty description field

0.45.1 (2024-11-23)

• Fixed pure Python wheels converted from eggs and wininst files having the ABI tag in the file name

... (truncated)

Commits

• efd83a7 Created a new release
• bb69216 Reordered the changelog entries
• d5a1763 fix(wheelfile): resolve .dist-info path case-insensitively when reading wheel...
• 5718957 [pre-commit.ci] pre-commit autoupdate (#685)
• 6258068 chore: log_level is better than log_cli_level (#684)
• 2975deb Require tox >= 4.22
• 47674ba chore: add check-sdist to checks (#681)
• 56223f6 __package__ → __spec__.parent (#679)
• 0ce509e Added the wheel info subcommand (#669)
• 39039c0 Improved the index page
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Summary by CodeRabbit

• Chores
  • Updated build dependencies to minor versions for improved compatibility.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: d220da7f-e5e0-4383-b9db-0dbeb468bece

📥 Commits

Reviewing files that changed from the base of the PR and between 7e0fe74 and 96c54e1.

⛔ Files ignored due to path filters (1)

• uv.lock is excluded by !**/*.lock

📒 Files selected for processing (1)

• pyproject.toml

---

📝 Walkthrough

Walkthrough

The pull request updates the minimum version constraint for the wheel dependency in pyproject.toml from >=0.46.3 to >=0.47.0, while maintaining the upper bound at <1.0.0.

Changes

Cohort / File(s)	Summary
Dependency Version Update pyproject.toml	Bumped minimum wheel dependency version from >=0.46.3 to >=0.47.0.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Possibly related PRs

• chore 🤖(deps): bump wheel from 0.46.1 to 0.46.3 #548: Previous wheel dependency update from an earlier version to >=0.46.3, now further bumped to >=0.47.0 in this PR.

Poem

🐰 A wheel, a wheel, the version did turn,
From forty-six-three, oh how we learn!
To forty-seven the minimum rose,
Dependencies updated as the project grows! 🛞

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Description check	⚠️ Warning	The description deviates from the repository template by omitting the required 'Fixes #' and 'Changes proposed' sections, instead providing Dependabot-generated release notes and changelog content.	Follow the repository's pull request template by including a 'Fixes #' section and a 'Changes proposed' section that summarizes the update in bullet points.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title clearly describes the main change: a dependency bump of the wheel package from 0.46.3 to 0.47.0, which is exactly what the changeset does.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch dependabot/uv/staging/wheel-0.47.0

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}