chore(deps): bump the production-dependencies group with 6 updates

[dependabot]

Bumps the production-dependencies group with 6 updates:

Package	From	To
ash	3.3.2	3.3.3
ash_admin	0.11.3	0.11.4
ash_graphql	1.2.1	1.3.1
bandit	1.5.5	1.5.7
gettext	0.24.0	0.25.0
req	0.5.4	0.5.6

Updates ash from 3.3.2 to 3.3.3

Changelog

Sourced from ash's changelog.

v3.3.3 (2024-08-01)

Bug Fixes:

• roll back bulk update/destroy on before action error

• delete ash_notifications from pdict after reading

Commits

• 3c8a48c chore: release version v3.3.3
• 28f7354 fix: roll back bulk update/destroy on before action error
• f8fc4cd fix: delete ash_notifications from pdict after reading
• de7bd35 docs: add typespec for build/2
• 0ecf92a docs: update changelog
• See full diff in compare view

Updates ash_admin from 0.11.3 to 0.11.4

Changelog

Sourced from ash_admin's changelog.

v0.11.4 (2024-08-01)

Bug Fixes:

• properly support adding embeds for nil values

• upgrade ash_phoenix for fix on calculating values

• use resource's configured domain before default domain

• ensure actor_tenant is always set

• ensure table columsn are loaded, bypassing (as yet) unknown bug

Improvements:

• don't log forbidden errors

Commits

• 63c15b6 chore: release version v0.11.4
• 4a62e12 fix: properly support adding embeds for nil values
• c549656 improvement: don't log forbidden errors
• e7314db fix: use resource's configured domain before default domain
• d202463 chore: fix typo
• a206440 fix: ensure actor_tenant is always set
• decfc1e chore(deps-dev): bump the dev-dependencies group across 1 directory with 2 up...
• 4de1bea chore(deps): bump ash in the production-dependencies group (#186)
• 80a2b6a chore: rebuild assets
• 836a740 chore(deps): bump ash (#185)
• Additional commits viewable in compare view

Updates ash_graphql from 1.2.1 to 1.3.1

Changelog

Sourced from ash_graphql's changelog.

v1.3.1 (2024-08-02)

Bug Fixes:

• use .has_expression?/0 instead of function_exported?/3

• error handling list of atoms (#204)

• error handling list of atoms

v1.3.0 (2024-08-01)

Features:

• Ash.Type.File compatibility (#202)

Bug Fixes:

• try to resolve compilation issues w/ Code.ensure_compiled!

Commits

• 4773f76 chore: release version v1.3.1
• 7845fe8 fix: use .has_expression?/0 instead of function_exported?/3
• b9e7848 fix: error handling list of atoms (#204)
• 5f269fc chore: release version v1.3.0
• 232563b fix: try to resolve compilation issues w/ Code.ensure_compiled!
• a3bf111 chore(deps): bump the production-dependencies group with 3 updates (#203)
• c67b9f5 feat: Ash.Type.File compatibility (#202)
• 67a59c2 chore(deps): bump the production-dependencies group with 2 updates (#200)
• cedbfc3 docs: Mention AshGraphl.Error Protocol in docs (#199)
• 3e5cf20 bugfix: Fix check for checking if a field is filterable or not (#198)
• Additional commits viewable in compare view

Updates bandit from 1.5.5 to 1.5.7

Changelog

Sourced from bandit's changelog.

1.5.7 (1 Aug 2024)

Changes

• Timeouts encountered while reading a request body will now result in a 408 Request Timeout being returned to the client by way of a Bandit.HTTPError being raised. Previously, a :more tuple was returned (#385, thanks @​martosaur!)

1.5.6 (1 Aug 2024)

Fixes

• Improve handling of the end of stream condition for HTTP/2 requests that send a body which isn't read by the Plug (#387, thanks @​fekle!)

Commits

• 9342545 Version bump to 1.5.7
• ffdfee9 Dialyzer fixup
• d8056ec Expose body read timeouts as 408 Request Timeout errors (#385)
• af19424 Version bump to 1.5.6
• 5cd0ae9 Read data during stream shutdown to ensure we update expected content-length ...
• dc84294 Bump ex_doc from 0.34.1 to 0.34.2 (#377)
• d02559e Bump hpax from 0.2.0 to 1.0.0 (#383)
• 4d2d126 Bump req from 0.5.1 to 0.5.4 (#382)
• 85420ce Auto rerun on failed tests
• 849fff3 Revert "Bump req from 0.5.1 to 0.5.2 (#376)"
• Additional commits viewable in compare view

Updates gettext from 0.24.0 to 0.25.0

Changelog

Sourced from gettext's changelog.

v0.25.0

• Run merging for mix gettext.extract's POT files even if they are unchanged.
• Allow Expo 1.0+.

Commits

• e0be93c Release v0.25.0
• 3505279 Update Elixir/Erlang in CI (#387)
• 4be001f Do not prune code paths during tests
• 669136c Allow Expo 1.0
• d6c6518 Add CAStore as a test-only dependency
• e7f37ad Bump Elixir to 1.16 in CI
• 0a19236 Run merge for mix gettext.extract pot files even if they are unchanged (#385)
• e508160 Prevent unlocked dependencies in CI (#383)
• e7a2c2e Update mix.lock
• dae384a Start v0.25.0-dev
• See full diff in compare view

Updates req from 0.5.4 to 0.5.6

Release notes

Sourced from req's releases.

v0.5.5

• put_aws_sigv4: Fix detecting service

• put_aws_sigv4: Raise on no :access_key_id/:secret_access_key/:service

• put_aws_sigv4: Fix handling ?name (no value)

• handle_http_errors: should run before verify_checksum

• encode_body: Support %File.Stream{} in :form_multipart

• encode_body: Support %File.Stream{} from other nodes in :form_multipart

Changelog

Sourced from req's changelog.

v0.5.6 (2024-08-01)

• Fix compatibility with Elixir v1.13

v0.5.5 (2024-08-01)

• [put_aws_sigv4]: Fix detecting service

• [put_aws_sigv4]: Raise on no :access_key_id/:secret_access_key/:service

• [put_aws_sigv4]: Fix handling ?name (no value)

• [handle_http_errors]: should run before verify_checksum

• [encode_body]: Support %File.Stream{} in :form_multipart

• [encode_body]: Support %File.Stream{} from other nodes in :form_multipart

Commits

• 99b4d10 Release v0.5.6
• 37ed548 Fix supporting Elixir v1.13
• 35aec22 Update Telsa URL (#402)
• fbdd3ac Release v0.5.5
• 3f843dd encode_body: Support %File.Stream{} from other nodes in :form_multipart
• 507ebd1 encode_body: Support %File.Stream{} in :form_multipart
• d7906dc put_aws_sigv4: Fix handling ?name (no value)
• a01b032 put_aws_sigv4: Fix service detection on empty host
• 7e164e0 put_aws_sigv4: Raise on no :access_key_id/:secret_access_key/:service
• 4273a81 handle_http_errors should run before verify_checksum
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions