Skip to content

chore(deps-dev): bump the dev-dependencies group with 4 updates#86

Merged
jimsynz merged 1 commit intomainfrom
dependabot/hex/dev-dependencies-d6162c05e5
Mar 1, 2026
Merged

chore(deps-dev): bump the dev-dependencies group with 4 updates#86
jimsynz merged 1 commit intomainfrom
dependabot/hex/dev-dependencies-d6162c05e5

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 1, 2026

Bumps the dev-dependencies group with 4 updates: bandit, git_ops, sourceror and tidewave.

Updates bandit from 1.10.2 to 1.10.3

Changelog

Sourced from bandit's changelog.

1.10.3 (22 Feb 2026)

Enhancements

  • Support authority form requests for CONNECT requests (#571)
  • Narrow acceptance of asterisk form requests to OPTIONS requests (#571)
  • Detect client disconnect on timeout in ensure_completed (#566, thanks @​pepicrft!)
  • Improve http2 sendfile streaming (#565, thanks @​elibosley!)
Commits
  • e3fd682 Version bump to 1.10.3
  • a330b13 Grant actions:write permission to lint job for PLT cache eviction
  • 0aa42c2 Support authority form requests for CONNECT requests (#571)
  • ac63021 fix: detect client disconnect on timeout in ensure_completed (#566)
  • c746d8e Bump ex_doc from 0.40.0 to 0.40.1 (#569)
  • 5640a10 Bump credo from 1.7.15 to 1.7.16 (#568)
  • 78e5184 feat: http2 sendfile streaming (#565)
  • See full diff in compare view

Updates git_ops from 2.9.0 to 2.9.2

Changelog

Sourced from git_ops's changelog.

v2.9.2 (2026-02-24)

Bug Fixes:

v2.9.1 (2026-02-10)

Improvements:

  • require extra confirmation when upgrading from release candidate to stable by @​zachdaniel
Commits
  • 3cc0dd1 chore: release version v2.9.2
  • d266b8c fix: abort release when previous version tag is not fetched locally (#78)
  • 4f81f8e chore: release version v2.9.1
  • bc46971 improvement: require extra confirmation when upgrading from release candidate...
  • See full diff in compare view

Updates sourceror from 1.10.1 to 1.11.0

Release notes

Sourced from sourceror's releases.

v1.11.0

1.11.0 (2026-02-20)

Features

Changelog

Sourced from sourceror's changelog.

1.11.0 (2026-02-20)

Features

Commits

Updates tidewave from 0.5.4 to 0.5.5

Changelog

Sourced from tidewave's changelog.

v0.5.5 (2026-02-10)

  • Enhancements
    • Include Spark metadata in get_ecto_schemas
    • Include get_ash_resources tool
    • Add log level filtering to get_logs MCP tool
Commits
  • 8dd6f8c Release v0.5.5
  • 03d5330 Add Ash specific tools if Ash is available (#226)
  • 92f7165 Add spark context information to ecto tools (#227)
  • f68512f Revert "Add the proper types to the item schema in both the ecto and eval too...
  • 8c8c212 Add the proper types to the item schema in both the ecto and eval tools (#223)
  • db6a337 Do not assume standard_error is ours, see #222
  • 30eed02 Clarify MAX_THINKNIG_TOKENS placement
  • 585562b Update Claude Code docs
  • 8347064 mix format
  • 6898e1b Add remote access guide
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps-dev): bump the dev-dependencies group with 4 updates
b1bd525 
Bumps the dev-dependencies group with 4 updates: [bandit](https://github.com/mtrudel/bandit), [git_ops](https://github.com/zachdaniel/git_ops), [sourceror](https://github.com/doorgan/sourceror) and [tidewave](https://github.com/tidewave-ai/tidewave_phoenix).


Updates `bandit` from 1.10.2 to 1.10.3
- [Changelog](https://github.com/mtrudel/bandit/blob/main/CHANGELOG.md)
- [Commits](mtrudel/bandit@1.10.2...1.10.3)

Updates `git_ops` from 2.9.0 to 2.9.2
- [Changelog](https://github.com/zachdaniel/git_ops/blob/master/CHANGELOG.md)
- [Commits](zachdaniel/git_ops@v2.9.0...v2.9.2)

Updates `sourceror` from 1.10.1 to 1.11.0
- [Release notes](https://github.com/doorgan/sourceror/releases)
- [Changelog](https://github.com/doorgan/sourceror/blob/main/CHANGELOG.md)
- [Commits](doorgan/sourceror@v1.10.1...v1.11.0)

Updates `tidewave` from 0.5.4 to 0.5.5
- [Changelog](https://github.com/tidewave-ai/tidewave_phoenix/blob/main/CHANGELOG.md)
- [Commits](tidewave-ai/tidewave_phoenix@v0.5.4...v0.5.5)

---
updated-dependencies:
- dependency-name: bandit
  dependency-version: 1.10.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: git_ops
  dependency-version: 2.9.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: sourceror
  dependency-version: 1.11.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: tidewave
  dependency-version: 0.5.5
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file elixir Pull requests that update elixir code labels Mar 1, 2026
@jimsynz jimsynz merged commit 546961f into main Mar 1, 2026
23 checks passed
@dependabot dependabot bot deleted the dependabot/hex/dev-dependencies-d6162c05e5 branch March 1, 2026 21:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file elixir Pull requests that update elixir code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@jimsynz