chore(deps): Bump the production-dependencies group across 1 directory with 4 updates

[dependabot]

Bumps the production-dependencies group with 3 updates in the / directory: ash, ash_postgres and assent.

Updates ash from 3.4.47 to 3.4.55

Changelog

Sourced from ash's changelog.

v3.4.55 (2025-01-13)

Bug Fixes:

• ensure can_* code interfaces pass arguments to actions

• another pattern match error in Ash.can?

• case clause error in Ash.can?

• handle embedded attributes in attribute generator

• Ash.Generator: Fix typo in skipped import name (#1704)

• reset ash_started_transaction? on bulk create

• set max_concurrency to 0 for generate_many

• ensure that once and sequence behave predictably across tests

Improvements:

• destroy missing records first in manage_relationship

• add start_of_day function

• add cast_dates_as constraint to Ash.Type.DateTime

v3.4.54 (2025-01-09)

Bug Fixes:

• [Ash.Generator] Fix issues in Ash.Generator.generate_many/2 (#1703)

• [Ash.Generator: Don't error if no after_action is provided to generate_many

• [Ash.Generator] Reuse the changeset actor when calling bulk_create

Improvements:

• [Ash.Generator] run notifications for generators

• [Ash.Changeset] order_is_key option for sorted relationships

... (truncated)

Commits

• 154772c chore: release version v3.4.55
• e9c3889 test: Add failing test for Ash.can? for get? true actions (#1711)
• df66222 fix: ensure can_* code interfaces pass arguments to actions
• ff3d8a7 fix: another pattern match error in Ash.can?
• 66b07c3 fix: case clause error in Ash.can?
• b468bcb chore(Ash.Test): Updates to assert_has_error and refute_has_error to ac...
• c59eb2e Update multitenancy.md for extra info around identites (#1708)
• d2ba06e improvement: destroy missing records first in manage_relationship
• 8e8375d chore: add StartOfDay to filter.exs
• 95baea6 chore: add datetime handling to start_of_day
• Additional commits viewable in compare view

Updates ash_postgres from 2.4.17 to 2.4.21

Changelog

Sourced from ash_postgres's changelog.

v2.4.21 (2025-01-06)

Bug Fixes:

• filter query by source record ids when lateral joining

• don't use symlinked app dir for migration's path

v2.4.20 (2024-12-26)

Bug Fixes:

• use passed in version of postgres when modifying existing repo

v2.4.19 (2024-12-26)

Bug Fixes:

• ensure there is always at least one upsert field so filter is run

Improvements:

• better min_pg_version when modifying a repo

• automatically set min_pg_version where possible

• use a notice to suggest configuring min_pg_version

v2.4.18 (2024-12-20)

Bug Fixes:

• handle double select issue

Improvements:

• make igniter optional

... (truncated)

Commits

• 5f26d69 chore: release version v2.4.21
• 96dc292 chore: add changelog to package links (#455)
• 1c4ae7b fix: filter query by source record ids when lateral joining
• a5f6de7 fix: don't use symlinked app dir for migration's path
• 304a896 chore(deps-dev): bump credo in the dev-dependencies group (#454)
• 9701d83 chore(deps): bump the production-dependencies group with 2 updates (#453)
• ab7f9b0 docs: Fix old code in Getting Started guide (#451)
• 2dadf5b chore: release version v2.4.20
• 80ccc19 fix: use passed in version of postgres when modifying existing repo
• a3edddd chore: release version v2.4.19
• Additional commits viewable in compare view

Updates assent from 0.2.13 to 0.3.0

Release notes

Sourced from assent's releases.

v0.3.0

This release consists of breaking changes.

Userinfo is now cast to the correct type per https://openid.net/specs/openid-connect-core-1_0.html#rfc.section.5.1 (thanks @​robinvdvleuten). When upgrading you must ensure that you do not depend on a specific type in the returned userinfo for any of the strategies listed below.

Breaking changes

• Assent.Strategy.Auth0.authorize_url/2 no longer accepts :domain config, use :base_url instead #178
• Assent.Strategy.Basecamp.callback/2 now encodes sub as a binary() instead of an integer() #167
• Assent.Strategy.Github.callback/2 now encodes sub as a binary() instead of an integer() #167
• Assent.Strategy.Google now encodes email_verified as a boolean() instead of a binary() #167
• Assent.Strategy.Google now return hd instead of google_hd #169
• Assent.Strategy.Strava.callback/2 now encodes sub as a binary() instead of an integer() #167
• Assent.Strategy.Telegram.callback/2 now encodes sub as a binary() instead of an integer() #167
• Assent.Strategy.Twitter.callback/2 now encodes sub as a binary() instead of an integer() #167
• Assent.Strategy.VK.callback/2 now encodes sub as a binary() instead of an integer() #167
• :site configuration option removed, use :base_url instead #174
• Assent.Strategy.OAuth2.authorize_url/2 no longer allows :state in :authorization_params #174
• Assent.Strategy.decode_response/2removed, use Assent.HTTPAdapter.decode_response/2 instead #174
• Assent.Strategy.request/5 removed, use Assent.Strategy.http_request/5 instead #174
• Assent.Strategy.prune/1 removed #167
• Assent.MissingParamError no longer accepts :expected_key, use :key instead #174
• Assent.HTTPAdapter.Mint removed #174
• Assent.Config removed #174

Changes

• Assent.Strategy.Auth0 now uses OIDC instead of OAuth 2.0 base strategy #178
• Assent.Strategy.Gitlab now uses OIDC instead of OAuth 2.0 base strategy #179
• Assent.Strategy.Google now uses OIDC instead of OAuth 2.0 base strategy #169
• Assent.Strategy.normalize_userinfo/2 now casts the user claims per OpenID specification #167

Changelog

Sourced from assent's changelog.

v0.3.0 (2025-01-06)

This release consists of breaking changes.

Userinfo is now cast to the correct type per https://openid.net/specs/openid-connect-core-1_0.html#rfc.section.5.1. When upgrading you must ensure that you do not depend on a specific type in the returned userinfo for any of the strategies listed below.

Breaking changes

• Assent.Strategy.Auth0.authorize_url/2 no longer accepts :domain config, use :base_url instead
• Assent.Strategy.Basecamp.callback/2 now encodes sub as a binary() instead of an integer()
• Assent.Strategy.Github.callback/2 now encodes sub as a binary() instead of an integer()
• Assent.Strategy.Google now encodes email_verified as a boolean() instead of a binary()
• Assent.Strategy.Google now return hd instead of google_hd
• Assent.Strategy.Strava.callback/2 now encodes sub as a binary() instead of an integer()
• Assent.Strategy.Telegram.callback/2 now encodes sub as a binary() instead of an integer()
• Assent.Strategy.Twitter.callback/2 now encodes sub as a binary() instead of an integer()
• Assent.Strategy.VK.callback/2 now encodes sub as a binary() instead of an integer()
• :site configuration option removed, use :base_url instead
• Assent.Strategy.OAuth2.authorize_url/2 no longer allows :state in :authorization_params
• Assent.Strategy.decode_response/2removed, use Assent.HTTPAdapter.decode_response/2 instead
• Assent.Strategy.request/5 removed, use Assent.Strategy.http_request/5 instead
• Assent.Strategy.prune/1 removed
• Assent.MissingParamError no longer accepts :expected_key, use :key instead
• Assent.HTTPAdapter.Mint removed
• Assent.Config removed

Changes

• Assent.Strategy.Auth0 now uses OIDC instead of OAuth 2.0 base strategy
• Assent.Strategy.Gitlab now uses OIDC instead of OAuth 2.0 base strategy
• Assent.Strategy.Google now uses OIDC instead of OAuth 2.0 base strategy
• Assent.Strategy.normalize_userinfo/2 now casts the user claims per OpenID specification

v0.2

The CHANGELOG for v0.2 releases can be found in the v0.2 branch.

Commits

• 8d36b27 Roll version
• 2fd666c Merge pull request #167 from pow-auth/cast-user-claims-values
• d453a8f Cast user claim values
• f694eff Merge pull request #179 from pow-auth/gitlab-oidc
• 773a986 Switch to OIDC for Gitlab strategy
• b4f708a Merge pull request #178 from pow-auth/auth0-oidc
• b4ecb4e Use OIDC for Auth0
• 2676c79 Merge pull request #177 from pow-auth/deprecate-auth0-domain-config
• 0647b8c Merge pull request #169 from pow-auth/google-oidc
• e175d03 Switch to Google OIDC
• Additional commits viewable in compare view

Updates igniter from 0.4.8 to 0.5.8

Changelog

Sourced from igniter's changelog.

v0.5.8 (2025-01-06)

Improvements:

• significant cleanup of deps compilation logic

• suppress all output for cleaner loading spinners

v0.5.7 (2025-01-06)

Bug Fixes:

• propertly iterate over tasks list

v0.5.6 (2025-01-05)

Improvements:

• better step explanation in installer

v0.5.5 (2025-01-05)

Bug Fixes:

• only display mix.exs changes when showing them

v0.5.4 (2025-01-05)

Bug Fixes:

• don't show git warning for changes igniter made

• print message after diff

• allow check to pass when no issues found (#178)

... (truncated)

Commits

• b677a4b chore: release version v0.5.8
• db13688 improvement: significant cleanup of deps compilation logic
• 231ebf7 chore: release version v0.5.7
• 51b72a4 fix: propertly iterate over tasks list
• bce0591 chore: bump installer
• 114886b chore: release version v0.5.6
• b11a39c chore: remove unnecessary options
• 4f113f9 improvement: better step explanation in installer
• 95e6ac4 chore: inspect on newlines
• 3b5bb62 chore: release version v0.5.5
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[jimsynz]

@dependabot rebase

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.