diff --git a/.github/workflows/uv-tests.yml b/.github/workflows/uv-tests.yml
index 008ca28..8bcdcfd 100644
--- a/.github/workflows/uv-tests.yml
+++ b/.github/workflows/uv-tests.yml
@@ -35,7 +35,7 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        uv-version: ["0.9.17", "latest"]
+        uv-version: ["0.10.12", "latest"]
     steps:
       - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
         with:
diff --git a/README.md b/README.md
index c2e621d..64c4ddb 100644
--- a/README.md
+++ b/README.md
@@ -10,7 +10,7 @@ A modern Python project template using recommended development tools and best pr
 
 ## TL;DR
 
-Assuming that you have `uv` installed (version `>=0.9.17`)
+Assuming that you have `uv` installed (version `>=0.10.12`)
 
 1. `uvx copier copy gh:tsvikas/python-template path/to/project/directory/`
 
diff --git a/project_name/justfile.jinja b/project_name/justfile.jinja
index 7f0ec97..2476e9d 100644
--- a/project_name/justfile.jinja
+++ b/project_name/justfile.jinja
@@ -46,10 +46,7 @@ deps-update: && deps-list-outdated
 
 # Audit dependencies
 deps-audit:
-  uv run --exact --all-extras --all-groups --with pip-audit -- \
-    pip-audit \
-    --skip-editable
-  uv run --exact true
+  uv audit --locked
 
 
 ### code quality ###
diff --git a/project_name/pyproject.toml.jinja b/project_name/pyproject.toml.jinja
index 26c7929..91e9311 100644
--- a/project_name/pyproject.toml.jinja
+++ b/project_name/pyproject.toml.jinja
@@ -114,7 +114,7 @@ typing = [
 
 
 [tool.uv]
-required-version = ">=0.9.17"
+required-version = ">=0.10.12"
 default-groups = ["dev", "test", "typing"]
 # Minimum age guard: only consider package versions released at least 24h ago,
 # as a lightweight supply-chain defense against just-published malicious releases.
diff --git a/pyproject.toml b/pyproject.toml
index e308df2..8468e5c 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -10,7 +10,7 @@ dev = [
 ]
 
 [tool.uv]
-required-version = ">=0.9.17"
+required-version = ">=0.10.12"
 # Minimum age guard: only consider package versions released at least 24h ago,
 # as a lightweight supply-chain defense against just-published malicious releases.
 exclude-newer = "24 hours"