Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps): Bump the production-dependencies group across 1 directory with 4 updates #822

Closed

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 2, 2024

Bumps the production-dependencies group with 2 updates in the / directory: ash and ash_postgres.

Updates ash from 3.4.32 to 3.4.39

Changelog

Sourced from ash's changelog.

v3.4.39 (2024-11-01)

Bug Fixes:

  • [Ash.Changeset] emit warnings about already validated actions in before_action hooks too

  • [Ash.Changeset] add missing case clause for Changeset.atomic_update type cast (#1569)

  • [Ash.Type.Map] handle case of invalid map/keyword key when type casting

  • [Ash.Type.Keyword] handle case of invalid map/keyword key when type casting

Improvements:

  • [error messages] more better error bread crumbs

v3.4.38 (2024-10-31)

Bug Fixes:

  • [Ash.Changeset] detect transaction hooks added by around_transaction and before_transaction & manual actions

  • [Ash.Changeset] don't special case nil change on force_change_attribute

Improvements:

  • [Ash.Domain] default backwards compatible interface to false for domains

  • [Ash.Changeset, create actions] more and better bread crumbs for changesets & create actions

v3.4.37 (2024-10-30)

Bug Fixes:

  • [Ash.Type.Union] handle nil union changing to nil

  • [multitenancy] enforce multitenancy on bulk creation

  • [Ash.Changeset] force_change_attribute no longer cares what the old value is

Improvements:

  • [Ash.Changeset] allow specifying return_skipped_upsert? as an option to changeset

  • [Ash.DataLayer] add prefer_transaction_for_atomic_updates? data layer callback

  • [Ash.DataLayer] support prefer_transaction? on DataLayer

  • [loading data] allow data loading when no primary read action exists

... (truncated)

Commits
  • 9cc8c33 chore: release version v3.4.39
  • f80612e fix: emit warnings about already validated actions in before_action hooks too
  • b88569a chore(deps-dev): bump the dev-dependencies group with 2 updates (#1567)
  • 035b631 fix: add missing case clause for Changeset.atomic_update type cast (#1569)
  • aac0190 improvement: more better error bread crumbs
  • bf09c86 chore: update changelog
  • c2c4cce chore: release version v3.4.38
  • 674c7d6 chore: format
  • 1a39993 fix: start transactions for manual actions
  • e699525 fix: detect transaction hooks added by around_transaction and before_transaction
  • Additional commits viewable in compare view

Updates ash_postgres from 2.4.9 to 2.4.12

Changelog

Sourced from ash_postgres's changelog.

v2.4.12 (2024-10-30)

Bug Fixes:

  • [query builder] don't double add distinct clauses

  • [AshPostgres.DataLayer] don't use cast for changes

Improvements:

  • [AshPostgres.Repo] set prefer_transaction? to false in generated repos

  • [AshPostgres.DataLayer] support prefer_transaction?

v2.4.11 (2024-10-23)

Bug Fixes:

  • [upserts] ensure repo_opts is passed through to repo.all/2

v2.4.10 (2024-10-23)

Security

  • Patch of GHSA-hf59-7rwq-785m Empty, atomic, non-bulk actions, policy bypass for side-effects vulnerability.

Bug Fixes:

  • [upserts] run any query that could produce errors when performing atomic upgrade

  • [multitenant migrations] race condition compiling migrations when concurrently creating new tenants (#406)

Commits

Updates spark from 2.2.34 to 2.2.35

Changelog

Sourced from spark's changelog.

v2.2.35 (2024-10-17)

Bug Fixes:

  • generate DSL documentation without a colon in the file name
Commits
  • 895008d chore: release version v2.2.35
  • cd2190d chore: update igniter
  • 471c277 fix: generate DSL documentation without a colon in the file name
  • See full diff in compare view

Updates splode from 0.2.4 to 0.2.7

Changelog

Sourced from splode's changelog.

v0.2.7 (2024-10-30)

Bug Fixes:

  • remove IO.inspect

v0.2.6 (2024-10-30)

Bug Fixes:

  • don't miss adding bread crumbs in specific cases

Improvements:

  • better formatting of bread crumbs

v0.2.5 (2024-10-29)

Improvements:

  • support .unwrap!/2 on generated splode modules

  • Don't show Process.info in stacktraces. (#10)

Commits
  • 4184312 chore: release version v0.2.7
  • 5322ef7 fix: remove IO.inspect
  • c72a165 chore: release version v0.2.6
  • 582cc9f improvement: better formatting of bread crumbs
  • 276cf70 chore: release version v0.2.5
  • 1614e3b improvement: support .unwrap!/2 on generated splode modules
  • 8f97bd0 improvement: Don't show Process.info in stacktraces. (#10)
  • 906a82e Modifications to merge logic (#9)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…y with 4 updates

Bumps the production-dependencies group with 2 updates in the / directory: [ash](https://github.com/ash-project/ash) and [ash_postgres](https://github.com/ash-project/ash_postgres).


Updates `ash` from 3.4.32 to 3.4.39
- [Changelog](https://github.com/ash-project/ash/blob/main/CHANGELOG.md)
- [Commits](ash-project/ash@v3.4.32...v3.4.39)

Updates `ash_postgres` from 2.4.9 to 2.4.12
- [Changelog](https://github.com/ash-project/ash_postgres/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ash-project/ash_postgres/commits)

Updates `spark` from 2.2.34 to 2.2.35
- [Changelog](https://github.com/ash-project/spark/blob/main/CHANGELOG.md)
- [Commits](ash-project/spark@v2.2.34...v2.2.35)

Updates `splode` from 0.2.4 to 0.2.7
- [Changelog](https://github.com/ash-project/splode/blob/main/CHANGELOG.md)
- [Commits](ash-project/splode@v0.2.4...v0.2.7)

---
updated-dependencies:
- dependency-name: ash
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: ash_postgres
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: spark
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: splode
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file elixir Pull requests that update Elixir code labels Nov 2, 2024
Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 5, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Nov 5, 2024
@dependabot dependabot bot deleted the dependabot/hex/production-dependencies-3f2ccca33b branch November 5, 2024 01:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file elixir Pull requests that update Elixir code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants