chore(deps): Bump the production-dependencies group with 3 updates

[dependabot]

Bumps the production-dependencies group with 3 updates: ash, ash_postgres and spark.

Updates ash from 3.15.0 to 3.18.0

Release notes

Sourced from ash's releases.

v3.17.0

Features:

• add not_found_error? to Ash.get to bring it in-line with actions (#2572) by StephanH90 [(#2572)](ash-project/ash#2572)

Bug Fixes:

• Update Ash.Gen.Resource, validate relationship type (#2563) by Matt Savoia [(#2563)](ash-project/ash#2563)

• don't optimize equality into in expressions by @​zachdaniel

• manual relationship implies no_attributes? true (#2562) by zackattackz [(#2562)](ash-project/ash#2562)

Improvements:

• include bread crumbs and standardize generic action errors by @​zachdaniel

• Allow Ash.Type.NewType to apply its own constraints (#2575) by Christopher Bonhage [(#2575)](ash-project/ash#2575)

• Split up usage rules into sub-rules (#2561) by @​mylanconnolly [(#2561)](ash-project/ash#2561)

v3.16.0

Features:

• calculations: Add multitenancy bypass options to calculations (#2552) by @​shahryarjb [(#2552)](ash-project/ash#2552)

Bug Fixes:

• handle unrelated exists in authorizer ref replacement (#2556) by zackattackz [(#2556)](ash-project/ash#2556)

• pass full context to Ash.load! in cascade changes (#2537) by @​beam-bots [(#2537)](ash-project/ash#2537)

• pass full context to Ash.load! in cascade changes by @​beam-bots [(#2537)](ash-project/ash#2537)

• use scope option instead of to_opts for Ash.load! in cascade changes by @​beam-bots [(#2537)](ash-project/ash#2537)

• avoid shadowing context variable in cascade changes by @​beam-bots [(#2537)](ash-project/ash#2537)

• remove authorize?: false from cascade Ash.load! calls by @​beam-bots [(#2537)](ash-project/ash#2537)

• ensure tenant is not overridden in aggregates by @​zachdaniel

... (truncated)

Changelog

Sourced from ash's changelog.

v3.18.0 (2026-02-25)

Features:

• Add offset option to has_one and has_many relationships (#2584) by @​nallwhy [(#2584)](ash-project/ash#2584)

• add InvalidStoredData error for safe ETS cast failures by @​mikaelweiss [(#2570)](ash-project/ash#2570)

• add support for data layers with partial success in bulk_create (#2576) by @​rbino [(#2576)](ash-project/ash#2576)

Bug Fixes:

• use to_doc to inspect vectors by @​zachdaniel

• pass all opts to for_destroy in soft deletes by @​zachdaniel

Improvements:

• add pre_flight_authorization() builtin validation for conditional checks during Ash.can? (#2587) by @​emadshaaban92 [(#2587)](ash-project/ash#2587)

• Add error messages to cast_stored and dump_to_native (#2570) by @​mikaelweiss [(#2570)](ash-project/ash#2570)

• Enhance Ash.Type.NewType custom constraints to support arrays (#2578) by Christopher Bonhage [(#2578)](ash-project/ash#2578)

• Add context to read actions in cascade changes (#2582) by @​stevebrambilla [(#2582)](ash-project/ash#2582)

• add embedded & embedded casting to Duration type by @​zachdaniel

v3.17.1 (2026-02-23)

Bug Fixes:

• Include usage-rules directory in package (#2581) by Nick Urban [(#2581)](ash-project/ash#2581)

• boolean expression not eq optimization (#2579) by @​emadshaaban92 [(#2579)](ash-project/ash#2579)

Improvements:

• add support for notifier load statements by @​zachdaniel

• add support for declaring a type for notifiers by @​zachdaniel

• add support for per-publication load statements by @​zachdaniel

... (truncated)

Commits

• 17ae3bb chore: release version v3.18.0
• 428f6cf feat: Add offset option to has_one and has_many relationships (#2584)
• ef3f8bb improvement: add pre_flight_authorization() builtin validation for conditiona...
• 3856ff2 chore: only attempt to parse ISO8601 durations if the value is a string
• a9f2141 fix: use to_doc to inspect vectors
• 1a405fa improvement: Add error messages to cast_stored and dump_to_native (#2570)
• b3e6b67 fix: pass all opts to for_destroy in soft deletes
• 0aafe65 feat: add support for data layers with partial success in bulk_create (#2576)
• ea25c6d improvement: Enhance Ash.Type.NewType custom constraints to support arrays (#...
• c6eefbb improvement: Add context to read actions in cascade changes (#2582)
• Additional commits viewable in compare view

Updates ash_postgres from 2.6.30 to 2.6.32

Changelog

Sourced from ash_postgres's changelog.

v2.6.32 (2026-02-11)

Bug Fixes:

• produce correct error on restrict managed_relationship behavior (#690) by lincolnhuls

Improvements:

• Split up usage rules into sub-rules (#691) by Mylan Connolly

v2.6.31 (2026-02-05)

Bug Fixes:

• handle atomic no_rollback errors during creates by Zach Daniel

• correct test expectation for first aggregate with include_nil? (#683) by sevenseacat

Commits

• 1ef2289 chore: release version v2.6.32
• 5fb8072 improvement: Split up usage rules into sub-rules (#691)
• 643a147 fix: produce correct error on restrict managed_relationship behavior (#690)
• 4688dd1 docs: fix typo (#689)
• 9ffbda9 fix: Let MigrationGenerator use custom :migration_source (#688)
• 594028b chore: don't set tenant to nil
• c9dc777 chore: release version v2.6.31
• a7c99e4 fix: handle atomic no_rollback errors during creates
• b056b1b add regression tests for affording setting required attributes via atomic_set...
• 556ceb4 chore(deps-dev): bump ex_doc in the dev-dependencies group (#680)
• Additional commits viewable in compare view

Updates spark from 2.4.0 to 2.4.1

Release notes

Sourced from spark's releases.

v2.4.1

Bug Fixes:

• suppress Dialyzer warnings for generated anno functions on OTP 28 (#261) by jeffhuen

• Handle same-named sibling sections in DSL extensions by Zach Daniel

• docs redirect tests (#252) by leonqadirie

Changelog

Sourced from spark's changelog.

v2.4.1 (2026-02-22)

Bug Fixes:

• suppress Dialyzer warnings for generated anno functions on OTP 28 (#261) by jeffhuen

• Handle same-named sibling sections in DSL extensions by Zach Daniel

• docs redirect tests (#252) by leonqadirie

Commits

• 93de1c7 chore: release version v2.4.1
• 9c4a2ca chore: remove multiline warning from DSL option docs
• 36adb5f fix: suppress Dialyzer warnings for generated anno functions on OTP 28 (#261)
• 6ad8801 fix: Handle same-named sibling sections in DSL extensions
• 128e35c chore: SPDX contributor links (#254)
• b3a15af chore: format
• 748d8d8 fix: docs redirect tests (#252)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions