[Bug]: uv extension crashes on wheels without hash digests from private registries

### What happened?

The uv extension in `uv/private/extension.bzl` unconditionally accesses `whl["hash"]` in `_whl_repo_name` and `_raw_whl_repos`. When wheels come from private registries (e.g., Azure Artifacts, Artifactory) that don't serve PEP 503 hash fragments, the `"hash"` key is missing from the lock entry, causing a KeyError.

### Version

`aspect_rules_py` 1.8.4

### How to reproduce

Use a `uv.lock` that includes packages from a private PyPI registry that doesn't include hash fragments in download URLs.

### Proposed fix

- `_whl_repo_name`: Fall back to `sha1(whl["url"])[:8]` when `"hash"` key is missing
- `_raw_whl_repos`: Use empty string for `shasum` when `"hash"` key is missing

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[Bug]: uv extension crashes on wheels without hash digests from private registries #790

What happened?

Version

How to reproduce

Proposed fix

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

[Bug]: uv extension crashes on wheels without hash digests from private registries #790

Description

What happened?

Version

How to reproduce

Proposed fix

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions