Downgrade uri gem to 0.12.5

This is a default gem, and Ruby 3.2.9 ships 0.12.4. Version 0.12.5 addresses a CVE, so we ship this version until Ruby 3.2.10 is released which should include it.

Author: nmburgan

configs/components/rubygem-uri.rb

@@ -1,11 +1,15 @@
 #####
 # Component release information:
 #   https://rubygems.org/gems/uri
+# Notes:
+#   2025-12-14: This is a default gem, and is only included here to address
+#   CVE-2025-61594. This component should be removed once Ruby 3.2.10 is released.
 #####
 component 'rubygem-uri' do |pkg, _settings, _platform|
   ### Maintained by update_gems automation ###
-  pkg.version '1.1.1'
-  pkg.sha256sum '379fa58d27ffb1387eaada68c749d1426738bd0f654d812fcc07e7568f5c57c6'
+  # PINNED
+  pkg.version '0.12.5'
+  pkg.sha256sum '883424e272244f029ad3b9fe0e9ad18d1c33cdadff0a366c301ce737c62eb414'
   ### End automated maintenance section ###
 
   instance_eval File.read('configs/components/_base-rubygem.rb')