chore(deps): bump the production-dependencies group across 1 directory with 16 updates

[dependabot]

Bumps the production-dependencies group with 12 updates in the / directory:

Package	From	To
ecto_sql	3.12.1	3.13.2
esbuild	0.9.0	0.10.0
floki	0.37.1	0.38.0
gettext	0.26.2	1.0.2
hackney	1.23.0	1.25.0
igniter	0.5.43	0.7.0
image	0.59.0	0.62.1
mdex	0.5.0	0.9.4
phoenix_ecto	4.6.3	4.7.0
phoenix_live_view	1.0.9	1.1.17
req_embed	0.2.1	0.3.3
solid	0.18.0	1.1.1

Updates ecto_sql from 3.12.1 to 3.13.2

Changelog

Sourced from ecto_sql's changelog.

v3.13.2 (2025-06-24)

Enhancements

• [sandbox] Allow passing through opts in Ecto.Adapters.SQL.Sandbox.allow/4 calls
• [sql] Add support for ON DELETE SET DEFAULT

Bug fixes

• [postgres] Fix nested array generated time columns

v3.13.1 (2025-06-20)

Bug fixes

• [postgres] Fix nested array generated columns

v3.13.0 (2025-06-18)

Enhancements

• [Ecto.Migration] Add support for index directions
• [sql] Support :log_stacktrace_mfa for filtering or modifying stacktrace-derived info in query logs
• [mysql] Support arrays using JSON for MariaDB
• [mysql] Allow to specify :prepare per operation
• [postgres] Add support for collations in Postgres
• [postgres] Allow source fields in json_extract_path

Commits

• cf5080c Release v3.13.2
• b876381 Refactor generated handling in column_type
• 62603f8 Fix generated nested time array (#680)
• 701c99e Add support for ON DELETE SET DEFAULT (#677)
• 7959022 Allow passing through opts in Ecto.Adapters.SQL.Sandbox.allow/4 calls (#678)
• 22c7112 Release v3.13.1
• 35e2798 Fix nested array generated columns (#676)
• 955f0fb Release v3.13.0
• aa9a329 Remove unused argument from private helper (#672)
• 3084d71 Better docs for Repos that use Ecto.Adapters.SQL.Adapter (#671)
• Additional commits viewable in compare view

Updates esbuild from 0.9.0 to 0.10.0

Changelog

Sourced from esbuild's changelog.

v0.10.0 (2025-05-27)

• Automatically join environment variables specified as lists using the correct PATH separator. For example:

  config :esbuild,
    my_profile: [
      ...
      env: %{
        "NODE_PATH" => [Path.expand("../deps", __DIR__), Mix.Project.build_path()]
      }
    ]

Commits

• 86f4304 release v0.10.0
• c891ea2 Merge pull request #78 from phoenixframework/sd-path-sep
• 6f8b4df join all lists
• e818a27 update CI
• 809c25f support passing NODE_PATH as list
• See full diff in compare view

Updates floki from 0.37.1 to 0.38.0

Release notes

Sourced from floki's releases.

v0.38.0

Added

• This version adds initial support for the :has pseudo-selector. It is a great addition that enables finding elements containing matching children.

  Examples for selectors:

  • "div:has(h1)"
  • "div:has(h1, p, span)"
  • "div:has(p.foo)"
  • "div:has(img[src='https://example.com'])"
  • "tr:has(*:fl-contains('TEST'))"

  Note that combinators like ">" are not allowed yet.

  Thank you @​bvobart for this feature!

Fixed

• Add :style option documentation to Floki.text/2. Thanks @​s3cur3 for the fix.

• Fix deprecation warnings for upcoming Elixir 1.19.

• Prevent from crashing when selector is an empty string.

Removed

• Remove support for Elixir 1.14 and OTP 23.

• Remove deprecated functions and function clauses that were accepting strings (binaries).

  Affected functions:

  • parse/1 - removed function
  • map/2 - removed function
  • attr/4 - removed clause
  • find/2 - removed clause
  • text/3 - removed clause
  • text/3 - removed clause
  • attribute/2 - removed clause
  • filter_out/2 - removed clause

  HTML must be parsed before searching. Functions like Floki.find/2, Floki.attribute/2, and other HTML manipulation functions no longer work directly with HTML strings. The HTML must be parsed first using Floki.parse_fragment/2 or Floki.parse_document/2.

... (truncated)

Changelog

Sourced from floki's changelog.

[0.38.0] - 2025-06-14

Added

• This version adds initial support for the :has pseudo-selector. It is a great addition that enables finding elements containing matching children.

  Examples for selectors:

  • "div:has(h1)"
  • "div:has(h1, p, span)"
  • "div:has(p.foo)"
  • "div:has(img[src='https://example.com'])"
  • "tr:has(*:fl-contains('TEST'))"

  Note that combinators like ">" are not allowed yet.

  Thank you @​bvobart for this feature!

Fixed

• Add :style option documentation to Floki.text/2. Thanks @​s3cur3 for the fix.

• Fix deprecation warnings for upcoming Elixir 1.19.

• Prevent from crashing when selector is an empty string.

Removed

• Remove support for Elixir 1.14 and OTP 23.

• Remove deprecated functions and function clauses that were accepting strings (binaries).

  Affected functions:

  • parse/1 - removed function
  • map/2 - removed function
  • attr/4 - removed clause
  • find/2 - removed clause
  • text/3 - removed clause
  • text/3 - removed clause
  • attribute/2 - removed clause
  • filter_out/2 - removed clause

• HTML must be parsed before searching. Functions like Floki.find/2, Floki.attribute/2, and other HTML manipulation functions no longer work directly with HTML strings. The HTML must be parsed first using

... (truncated)

Commits

• 2c41ba8 Release v0.38 (#629)
• ca714a4 Prevent find/2 from crashing with empty selector (#631)
• 541bdce Remove deprecation warnings for the upcoming Elixir 1.19 (#630)
• 72b4563 Remove deprecations (#628)
• dcdc385 Remove support for Elixir 1.14 (#626)
• b92cd73 Add :style flag to text/2` docs (#627)
• c0de672 Bump benchee from 1.3.1 to 1.4.0 (#618)
• a516972 Bump credo from 1.7.11 to 1.7.12 (#619)
• 5398a08 Bump ex_doc from 0.37.3 to 0.38.2 (#625)
• f900ea1 feat: implement :has pseudo-selector functionality (#624)
• Additional commits viewable in compare view

Updates gettext from 0.26.2 to 1.0.2

Changelog

Sourced from gettext's changelog.

v1.0.2

• Only skip manifest removal on Elixir v1.19.3+

v1.0.1 (retired)

• Remove unnecessary cleaning of Elixir manifests

v1.0.0

This is the first 1.0 release of Gettext, a silly 10 years (and 6 months) after we started working on it. There are very few changes from the latest 0.26 release, and none of them are breaking.

Here are the new goodies:

• Add support for concatenating sigils if all parts are known at compile time (such as "Hello " <> ~s(world)).
• Significantly increase the timeout for mix gettext.extract to two minutes.
• Add Gettext.put_locale!/2.

Happy 10+ years of Elixir translations everyone! 🎉

Previous versions

See the CHANGELOG for versions before v1.0.

Commits

• e3180f1 Release v1.0.2
• ec2f9c1 Erase manifest unless on upcoming Elixir (#425)
• 4960e49 Revert "Removed unnecessary cleaning of Elixir manifests (#423)"
• 8844a32 Trim CHANGELOG
• 7fe2dc7 Release v1.0.1
• 30bf87d Removed unnecessary cleaning of Elixir manifests (#423)
• d33d745 Bump actions/checkout from 4.2.2 to 5.0.0 (#422)
• 7443953 Use ubuntu-latest in the publish-to-hex.yml workflow
• d1a8c86 Release v1.0.0
• e1df334 Update Elixir/Erlang versions in CI
• Additional commits viewable in compare view

Updates hackney from 1.23.0 to 1.25.0

Release notes

Sourced from hackney's releases.

1.25.0 - 2025-07-24

IMPORTANT CHANGE

• change: insecure_basic_auth now defaults to true instead of false

  This restores backward compatibility with pre-1.24.0 behavior where basic auth was allowed over HTTP connections. If you need strict HTTPS-only basic auth:

  • Set globally: application:set_env(hackney, insecure_basic_auth, false)
  • Or per-request: {insecure_basic_auth, false} in options

Hex.pm : https://hex.pm/packages/hackney/1.25.0 Doc: https://hexdocs.pm/hackney/readme.html

1.24.1 - 2025-05-26

Changes

1.24.1 - 2025-05-26

• fix: remove unused variable warning in hackney.erl

1.24.0 - 2025-05-26

• security: fix basic auth credential exposure vulnerability
• security: add application variable support for insecure_basic_auth
• fix: NXDOMAIN error in Docker Compose environments (issue #764)
• fix: stream_body timeout after first chunk (issue #762)
• fix: SSL hostname verification with custom ssl_options and SSL message leak in async streaming
• fix: pool connections not freed on 307 redirects and multiple pool/timer race conditions
• fix: socket leaks, process deadlocks, ETS memory leaks, and infinite gen_server calls
• fix: controlling_process error handling in happy eyeballs and connection pool return
• improvement: update GitHub Actions to ubuntu-22.04 and bump certifi/mimerl dependencies

Breaking Change

The new insecure_basic_auth application variable defaults to false for security. If your application relies on insecure basic auth over HTTP, you must explicitly set application:set_env(hackney, insecure_basic_auth, true) to maintain previous behavior.

Hex.pm : https://hex.pm/packages/hackney/1.24.1 Doc: https://hexdocs.pm/hackney/readme.html

1.24.0 - 2025-05-26

Changes

• security: fix basic auth credential exposure vulnerability

... (truncated)

Changelog

Sourced from hackney's changelog.

1.25.0 - 2025-07-24

** IMPORTANT CHANGE **

• change: insecure_basic_auth now defaults to true instead of false

  This restores backward compatibility with pre-1.24.0 behavior where basic auth was allowed over HTTP connections. If you need strict HTTPS-only basic auth:

  • Set globally: application:set_env(hackney, insecure_basic_auth, false)
  • Or per-request: {insecure_basic_auth, false} in options

1.24.1 - 2025-05-26

• fix: remove unused variable warning in hackney.erl

1.24.0 - 2025-05-26

• security: fix basic auth credential exposure vulnerability
• security: add application variable support for insecure_basic_auth
• fix: NXDOMAIN error in Docker Compose environments (issue #764)
• fix: stream_body timeout after first chunk (issue #762)
• fix: SSL hostname verification with custom ssl_options and SSL message leak in async streaming
• fix: pool connections not freed on 307 redirects and multiple pool/timer race conditions
• fix: socket leaks, process deadlocks, ETS memory leaks, and infinite gen_server calls
• fix: controlling_process error handling in happy eyeballs and connection pool return
• improvement: update GitHub Actions to ubuntu-22.04 and bump certifi/mimerl dependencies

Commits

• 8c00789 Merge pull request #778 from benoitc/insecure-basic-auth-default-true
• a1d4108 change insecure_basic_auth default to true
• e2bbdf7 bump unicode compat lib
• 3b901a6 update readme
• d59b422 fix: remove unused variable warning and bump version to 1.24.1
• 30447da fix version in readme
• fd82258 fix documentation warnings
• 1239ec6 update NEWS.md with stream_body timeout fix for issue #762
• 96e881e fix stream_body timeout issue by reverting breaking error format change
• 431b4f5 Fix typos in NEWS.md
• Additional commits viewable in compare view

Updates igniter from 0.5.43 to 0.7.0

Release notes

Sourced from igniter's releases.

v0.7.0

Features:

• Add support for SiteEncrypt.Phoenix.Endpoint detection (#339) by Herman verschooten

Bug Fixes:

• put_in_map/set_map_key not setting keys properly (#348) by Nick Krichevsky

• don't pass --no-git onto installers by Zach Daniel

• modify_config_code twice with keyword values (#332) by grzuy

v0.6.30

Bug Fixes:

• don't silently ignore certain errors during spinners by Zach Daniel

• don't display "temporarily adding igniter" when we aren't by Zach Daniel

v0.6.25

Bug Fixes:

• remove another enumeration of the rewrite by Zach Daniel

v0.6.24

Bug Fixes:

• iterate over sources, not rewrite, in one more place by Zach Daniel

v0.6.23

... (truncated)

Changelog

Sourced from igniter's changelog.

v0.7.0 (2025-11-05)

Features:

• Add support for SiteEncrypt.Phoenix.Endpoint detection (#339) by Herman verschooten

Bug Fixes:

• put_in_map/set_map_key not setting keys properly (#348) by Nick Krichevsky

• don't pass --no-git onto installers by Zach Daniel

• modify_config_code twice with keyword values (#332) by grzuy

v0.6.30 (2025-09-25)

Bug Fixes:

• don't silently ignore certain errors during spinners by Zach Daniel

• don't display "temporarily adding igniter" when we aren't by Zach Daniel

v0.6.29 (2025-09-20)

Bug Fixes:

• prevent duplicate 'live' directories for modules with Live namespace (#330) by Matthew Sinclair

• prevent duplicate 'live' directories for modules with Live namespace by Matthew Sinclair

Improvements:

• add delay_task to run tasks at the end by Zach Daniel

v0.6.28 (2025-08-21)

Bug Fixes:

... (truncated)

Commits

• e41f7e0 chore: release version v0.7.0
• 1cb6f21 build(deps-dev): bump the dev-dependencies group with 3 updates (#350)
• 4930cd4 Fix: put_in_map/set_map_key not setting keys properly (#348)
• bd2b582 doc: fix type link (#346)
• d90eb60 docs: Update docs to indicate behavior of List.map/2, add tests (#345)
• 5c43202 docs: Clarify Elixir version requirements (#344)
• 6153ea0 feat: Add support for SiteEncrypt.Phoenix.Endpoint detection (#339)
• 435cde1 chore: Fix REUSE license attribution
• 0127832 build(deps): bump rewrite in the production-dependencies group (#342)
• a866ab5 chore: Fix failing test (#340)
• Additional commits viewable in compare view

Updates image from 0.59.0 to 0.62.1

Release notes

Sourced from image's releases.

Image version 0.62.1

Bug Fixes

• Fix decoding EXIF component configuration if the value is invalid. Fixes #194. Thanks to @​ethangunderson for the report.

• Fix Image.minimize_metadata/1 when the image does not have an author or copyright field.

Image version 0.62.0

Breaking Change

• Image.histogram/1 previously normalized the results which meant that the pixel counts for each bucket could not be resolved. The function no longer normalises the histogram so the raw pixel counts per bucket are retained.

Bug Fixes

• Image.histogram/1 is fixed to not normalize histogram entries. Therefore the histogram now returns correct pixel counts.

• Fix Image.Text.add_background_padding/2 when the padding is derived from a base image.

Enhancements

• Add Image.to_list/1 to return an image as a nested list.

• Added an example for Image.histogram/1 to illustrate what data is returned and how to interpret it.

Image version 0.61.1

Bug Fixes

• Fix "function get_req_message/1" compiler warning.

Image version 0.61.0

Enhancements

• Adds Image.from_req_stream/2. This function returns a Vix.Vips.Image.t/0 from streaming a Req request using the Req.get/2 option into: :self,

Image version 0.60.0

Breaking Changes

• Image.Math.maxpos/2 is renamed to Image.Math.top_n/2 to better reflect its intent. The keyword options argument is also replaced with a simple integer argument n.

• Image.Math.minpos/2 is renamed to Image.Math.bottom_n/2 to better reflect its intent. The keyword options argument is also replaced with a simple integer argument n.

• The return value from Image.Math.top_n/2 and Image.Math.bottom_n/2 have changed. They will now return the form {max, max_x, max_y, [{x_max_1, y_max_1}, {x_max_2, y_max_2}, ...]}.

Bug Fixes

• Improve the error messages for Image.crop/5 when the crop bounding box is invalid. Closes #190.

Enhancements

• Add Image.band_and/1, Image.band_or/1 and Image.band_xor/1 to apply the appropriate boolean operation across the bands of an image.

... (truncated)

Changelog

Sourced from image's changelog.

Image 0.62.1

This is the changelog for Image version 0.62.1 released on October 23rd, 2025. For older changelogs please consult the release tag on GitHub

Bug Fixes

• Fix decoding EXIF component configuration if the value is invalid. Fixes #194. Thanks to @​ethangunderson for the report.

• Fix Image.minimize_metadata/1 when the image does not have an author or copyright field.

Image 0.62.0

This is the changelog for Image version 0.62.0 released on August 8th, 2025. For older changelogs please consult the release tag on GitHub

Breaking Change

• Image.histogram/1 previously normalized the results which meant that the pixel counts for each bucket could not be resolved. The function no longer normalises the histogram so the raw pixel counts per bucket are retained.

Bug Fixes

• Image.histogram/1 is fixed to not normalize histogram entries. Therefore the histogram now returns correct pixel counts.

• Fix Image.Text.add_background_padding/2 when the padding is derived from a base image.

Enhancements

• Add Image.to_list/1 to return an image as a nested list.

• Added an example for Image.histogram/1 to illustrate what data is returned and how to interpret it.

Image 0.61.1

This is the changelog for Image version 0.61.1 released on July 14th, 2025. For older changelogs please consult the release tag on GitHub

Bug Fixes

• Fix "function get_req_message/1" compiler warning.

Image 0.61.0

This is the changelog for Image version 0.61.0 released on July 2nd, 2025. For older changelogs please consult the release tag on GitHub

Enhancements

• Adds Image.from_req_stream/2. This function returns a Vix.Vips.Image.t/0 from streaming a Req request using the Req.get/2 option into: :self,

Image 0.60.0

This is the changelog for Image version 0.60.0 released on June 27th, 2025. For older changelogs please consult the release tag on GitHub

... (truncated)

Commits

• 1749809 Add tests for metadata minimization when no exif
• d71edab Make note about not using from_binary/2 more prominent
• 72f62dc Improve minimize_metadata/1 docs
• 05cc213 minimize_metadata/1 shouldnt error if there's no exif
• 049b6b5 Fix Image.minimize_metadata/1 again
• 30f6a61 Update version and changelog
• 6d1c906 Fix error on invalid exif components. Fixes #194
• f9d7349 Update changelog date
• b36b032 Don't write validation image again
• 07018aa Fix k_means tests
• Additional commits viewable in compare view

Updates mdex from 0.5.0 to 0.9.4

Release notes

Sourced from mdex's releases.

v0.9.4

0.9.4 - 2025-10-10

Changed

• Add usage-rules.md for LLMs
• Update autumn to v0.5.6
• Update autumnus to v0.7.5
• Update comrak to v0.43.0
• Update rustler to v0.37.0

Checksum

fee2bab68b24e77ffb7ea39dbb602cc9c8dc0010b7ea25500df8b39179a3747f  comrak_nif-v0.9.4-nif-2.15-x86_64-pc-windows-gnu--legacy_cpu.dll.tar.gz
b9cb63ffd3532a5f96050f1de877f5a1a1a3d8558b8dd25c2b27c18d57689307  comrak_nif-v0.9.4-nif-2.15-x86_64-pc-windows-gnu.dll.tar.gz
29c0bf07e081baf5cdad847e38ec9b00177b0b93cfb8c34255d4d26d10646e25  comrak_nif-v0.9.4-nif-2.15-x86_64-pc-windows-msvc--legacy_cpu.dll.tar.gz
46f8e1d96ff1f752a2b2d1e7d34453c0d46002fef5099400502de90966e70032  comrak_nif-v0.9.4-nif-2.15-x86_64-pc-windows-msvc.dll.tar.gz
abc6659f1f28c0aa869fc601d7852c6cc02201a96cea0fd0b0ebda2925ab7f6f  libcomrak_nif-v0.9.4-nif-2.15-aarch64-apple-darwin.so.tar.gz
aef0fa4f7d9226ddca0ec2f2ad3f2842ab885489a4c8d055c9e428bb6b0f8c8b  libcomrak_nif-v0.9.4-nif-2.15-aarch64-unknown-linux-gnu.so.tar.gz
5a599ebcfa0f770b4696d126b0d93f70c8c4d64e5bc8f6ae3cc5449747616cbe  libcomrak_nif-v0.9.4-nif-2.15-aarch64-unknown-linux-musl.so.tar.gz
3a86a95f1db8f5d2c078f5d900ac6600356e058366d8a0d53b5f7481bf455f90  libcomrak_nif-v0.9.4-nif-2.15-arm-unknown-linux-gnueabihf.so.tar.gz
eaa85c5d594ee961f48083bf7a53cd6eefc2b75ad83a7263b3598dc773bd4649  libcomrak_nif-v0.9.4-nif-2.15-riscv64gc-unknown-linux-gnu.so.tar.gz
56b449a1328e7360db8ec99a3b1bbcc876009a68dd41c030c7ca27e6e40c7afd  libcomrak_nif-v0.9.4-nif-2.15-x86_64-apple-darwin.so.tar.gz
468790e76237c7bc6a3ff1a1d87ad327e64d7eb20a9a24d97c5d08a297629de7  libcomrak_nif-v0.9.4-nif-2.15-x86_64-unknown-freebsd--legacy_cpu.so.tar.gz
0aa1a3d3110fd2b3fb6c24d5165a42ea83909fa04fcda183c33fdae3ba0d3390  libcomrak_nif-v0.9.4-nif-2.15-x86_64-unknown-freebsd.so.tar.gz
6ec8b1b9ddeeb3ff588344a21ad16b1884363e1d79b1cbd8fccf927e58033306  libcomrak_nif-v0.9.4-nif-2.15-x86_64-unknown-linux-gnu--legacy_cpu.so.tar.gz
60cf6c28721b1e2fb801292438bb77af2379b9c51682ce044959079c7deec4d7  libcomrak_nif-v0.9.4-nif-2.15-x86_64-unknown-linux-gnu.so.tar.gz
86035a079bfcf67858e780e43c7b3295a18046bd7fa1b4eec8d4ce8c552907c2  libcomrak_nif-v0.9.4-nif-2.15-x86_64-unknown-linux-musl.so.tar.gz

v0.9.3

0.9.3 - 2025-10-04

Added

• [Document] Initial (experimental) streaming support. Disabled by default, can be enabled with option streaming: true.
• [Options] Added :streaming option to enable fragments streaming.

Fixed

• [Document] Flush buffered markdown between pipeline steps

Checksum

67c14ddd10fa6c86224fe1ba64f867d6c015036e663e9ff093d7f7f6c6a2d6af  comrak_nif-v0.9.3-nif-2.15-x86_64-pc-windows-gnu--legacy_cpu.dll.tar.gz
b4fbe7c943407fed0e56331861d54bc85ae5bddf36d27d773a28c3c1ec80062e  comrak_nif-v0.9.3-nif-2.15-x86_64-pc-windows-gnu.dll.tar.gz
ce9be9bd400bd5bb17911172709443cf6094ae274bcd2d242fe1f412739a8de1  comrak_nif-v0.9.3-nif-2.15-x86_64-pc-windows-msvc--legacy_cpu.dll.tar.gz
f5ab9d67c03c834c95492e604d80c560824eec7207392499edfe4a1203a46992  comrak_nif-v0.9.3-nif-2.15-x86_64-pc-windows-msvc.dll.tar.gz
78ed9e5348ed98cc2f13d414d86232b1a6c335f941f0fc3c3cf8e86d796f2dc1  libcomrak_nif-v0.9.3-nif-2.15-aarch64-apple-darwin.so.tar.gz
143217c24b6ddebbe4d3d27dc5e2985ba31fbb62bf4ee0238793cf8dc7dbcda9  libcomrak_nif-v0.9.3-nif-2.15-aarch64-unknown-linux-gnu.so.tar.gz
2d9b56c5a1875d1638f3a91f24b38340563294ac65ff09c41da989a88144fdd1  libcomrak_nif-v0.9.3-nif-2.15-aarch64-unknown-linux-musl.so.tar.gz
1790b2c4aab4d43cc3dac1d1c9c0f0faf5429d07051f6dcfdc4e90cf17c65f79  libcomrak_nif-v0.9.3-nif-2.15-arm-unknown-linux-gnueabihf.so.tar.gz
130b53a8707cabbb56e1a8bae5b8f3f2fca6e18294a722a063a3feb50c94308f  libcomrak_nif-v0.9.3-nif-2.15-riscv64gc-unknown-linux-gnu.so.tar.gz
</tr></table> 

... (truncated)

Changelog

Sourced from mdex's changelog.

0.9.4 - 2025-10-10

Changed

• Add usage-rules.md for LLMs
• Update autumn to v0.5.6
• Update autumnus to v0.7.5
• Update comrak to v0.43.0
• Update rustler to v0.37.0

0.9.3 - 2025-10-04

Added

• [Document] Initial (experimental) streaming support. Disabled by default, can be enabled with option streaming: true.
• [Options] Added :streaming option to enable fragments streaming.

Fixed

• [Document] Flush buffered markdown between pipeline steps

0.9.2 - 2025-10-02

Added

• [Document] Add MDEx.Document.put_markdown/3 to append or prepend markdown chunks to document buffer

Changed

• [Document] Introduce buffering to accumulate markdown chunks before parsing
• Fixed pipeline execution when :markdown is passed in MDEx.new/1
• DEPRECATED MDEx.Document.parse_markdown/2 and MDEx.Document.parse_markdown!/2 in favor of MDEx.parse_document/2 or MDEx.Document.put_markdown/1

Deprecated

0.9.1 - 2025-09-30

Added

• [Sigil] Support assigns in MD sigil modifier
• [Docs] Document assigns support in HTML and MD modifiers

Changed

• [Deps] Update comrak to v0.42.0
• [Deps] Update autumnus to v0.7.4
• [Deps] Update autumn to v0.5.5

0.9.0 (2025-09-22)

BREAKING CHANGES

This version introduces breaking changes to the public API. Please follow the upgrade guide below to migrate your code.

Upgrade Guide

1. Replace %MDEx.Pipe{} with %MDEx.Document{}

... (truncated)

Commits

• 807a73e fix: package usage-rules.md
• d346674 v0.9.4
• 168d10e update changelog
• df6705e chore: update deps (#259)
• 0ea3674 feat: add usage-rules.md
• f710d66 -dev
• 1ab4a32 v0.9.3
• a764c69 Fix formatting and update examples in README
• 166d0ac feat: streaming (#257)
• 9b1c011 chore: remove unused asset
• Additional commits viewable in compare view

Updates phoenix_ecto from 4.6.3 to 4.7.0

Changelog

Sourced from phoenix_ecto's changelog.

v4.7.0

• Bug fixes
  • Disable migration lock when checking for pending migrations to avoid slow downs

v4.6.6

• Bug fixes
  • Keep backwards compatibility on sandbox API

v4.6.5

• Bug fixes
  • Unallow existing allowances when attempting to allow a Plug to access a connection

v4.6.4

• Enhancements
  • Wrap raised Ecto exceptions so context is not lost
  • Do not override changeset actions

Commits

• 73a83af Release v4.7.0
• 35fcd9e Revert "Revert "Disable migration lock by default on CheckRepoStatus (#196)""
• a0012c2 Release 4.6.6
• 6705443 Revert "Disable migration lock by default on CheckRepoStatus (#196)"
• 3cb5053 Maintain backwards compatibility on sandbox API, closes #197
• 95fde93 Disable migration lock by default on CheckRepoStatus (#196)
• c131a74 Release v4.6.5
• 2ee0684 Unallow existing allowances when attempting to allow a Plug to access a conne...
• 93143d5 Update ExDoc
• 2e7f33a Updates runner to 24.04 and elixir to 1.18 (#191)
• Additional commits viewable in compare view

Updates phoenix_html from 4.2.1 to 4.3.0

Changelog

Sourced from phoenix_html's changelog.

4.3.0 (2025-09-28)

• Enhancements

  • Implement Phoenix.HTML.Safe for Duration
  • Add function head for argument names of normalize_value/2 to improve documentation
  • Allow custom tags in options_for_select
  • Allow datetime as form option values

• Bug fixes

  • Avoid false positive warnings on Elixir v1.19

Commits

• 8cfd3e3 Release v4.3.0
• 053861d Avoid false positive in Elixir v1.19
• 671042c allow datetime as form option values (#468)
• 0f31c95 feat(custom option tags): allow custom tags in options_for_select (#467)
• 0229e74 Add function head for argument names of normalize_value/2 (#466)
• 49bb6e5 Add Phoenix.HTML.Safe to Duration (#463)
• ddaf11e Update CI (#464)
• c11a9e3 Implement Access for form fields
• See full diff in compare view

Updates phoenix_live_view from 1.0.9 to 1.1.17

Changelog

Sourced from phoenix_live_view's changelog.

v1.1.17 (2025-11-04)

Bug fixes

• noop in empty live reloader config

v1.1.16 (2025-10-22)

Bug fixes

• Fix phx-disable-with restoring whitespace improperly (regression in 1.1.15)

v1.1.15 (2025-10-21)

Bug fixes

• Fix form recovery not sending elements with form="..." attribute when using Firefox (#4021)
• Fix keyed comprehension merging in LiveComponents (#4027)
• Use textContent instead of innerText when restoring phx-disable-with text to avoid issues with CSS transforms (#4015)

Enhancements

• Allow attaching handle_async hooks on LiveComponents (#4018)

v1.1.14 (2025-10-07)

Bug fixes

• Fix form recovery not working when form is teleported (#4009)
• Fix handle_event hook not being able to return {:halt, reply, socket} in LiveComponents (#4006)
• Only set title to default when it is set to empty by the main view, not by nested or sticky views (#4003)

Enhancements

• Automatically update esbuild version when using Igniter upgrader from 1.0 to 1.1 (#4011)
• Fix unused require warnings on Elixir 1.19

v1.1.13 (2025-09-18)

Bug fixes

• Fix invalid stream merging in LiveViewTest (#3993)
• Fix extra spaces when formatting nested inline tags (#3995)
• Ensure error reasons are serialized into message on the client (#3984)
• Prevent JavaScript exception when passing "*" to JS.ignore_attributes/3 (#3996)

v1.1.12 (2025-09-14)

Bug fixes

• Prevent HEEx line from being reported as uncovered when using a pattern in :let={} (#3989)

... (truncated)

Commits

• 8632ec2 Release 1.1.17
• 251229d noop in empty live reloader config
• 2a1b860 release v1.1.16
• 2055315 fix test
• 6b2b6ac Update assets
• 7765544 fix phx-disable-with restore to properly use textContent
• 8dba70c add missing function
• f775adc release v1.1.15
• dc672d7 use npm trusted publishing (#4032)
• fc598e1 Update assets
• Additional commits viewable in compare view

Updates phoenix_pubsub from 2.1.3 to 2.2.0

Changelog

Sourced from phoenix_pubsub's changelog.

2.2.0 (2025-10-22)

Enhancements

• Allow the registry size to be set separate from pool size
• Introduce :broadcast_pool_size option to allow safe pool size migration

Bug fixes

• Only restart shards if they terminate unexpectedly

2.1.4 (2024-09-27)

Enhancements

• Add :permdown_on_shutdown option

Commits

• 086e0af Release v2.2.0
• f442cb1 Remove unused require
• 0176ce6 Fix dialyzer Shard module warning (#201)
• fff23f8 Separate Registry pool size configuration (#198)
• 95b4ad2 Introduce broadcast_pool_size option to allow safe pool size migration (#197)
• 420a87a Update ExDoc
• 2c466f3 Remove deprecation warnings on latest Elixir
• 95eb7cc update CI
• 4f0b4ba mix format
• 148ae10 Only restart shards if they terminate unexpectedly (#195)
• Additional commits viewable in compare view

Updates postgrex from 0.20.0 to 0.21.1

Changelog

Sourced from postgrex's changelog.

v0.21.1 (2025-08-03)

• Bug fixes
  • Fix ssl: true with missing ssl_opts handling

v0.21.0 (2025-07-31)

This release requires Erlang/OTP 25+

• Enhancements

  • Add query timeout option on ReplicationConnection

• Bug fixes

  • PGHOST option does not override explicitly given endpoint configuration
  • Add ltxtquery support

Commits

• b419aff Release v0.21.1
• 567ea8a Fix ssl: true with missing ssl_opts handling (#749)
• 0eb228f Release v0.21.0
• 2660c6b List options given when setopts fail
• d990017 Add query timeout option on ReplicationConnection (#748)
• 412b555 Prioritize explicit endpoint options over PGHOST-derived defaults (#742)
• 257daa7 Require Erlang/OTP 25 for cacerts (#741)
• 14a8a58 Update CI (#740)
• 3bb2ee2 Add example with ANY() (#736)
• f7f9a4e Add ltxtquery support (#735)
• Additional commits viewable in compare view

Updates req_embed from 0.2.1 to 0.3.3

Changelog

Sourced from req_embed's changelog.

0.3.3 - 2025-10-09

Added

• Add usage-rules.md for LLMs

0.3.2 - 2025-09-30

Added

• Added providers: Audius, ElevenLabs, GOOD FOR JOB.

0.3.1 - 2025-08-13

Changed

• Add https://elixircasts.io/reqembed in documentation
• Improve documentation in overall

0.3.0 - 2025-08-12

Added

• Add providers Beta QuellenSuche, Carbon, Everwall, Filestage, Form-Data, GW2 Fashions, Kubit, Naver Clip, QuellenSuche, SOOP,

Changed

• Breaking: Remove provider afreecaTV
• Breaking: Require minimum Elixir 1.15
• Update providers: Medienarchiv, Supercut, Webcrumbs

0.2.3 - 2025-05-30

Added

• Ignite provider support
• marimo provider support

Fixed

• Compilation error on Elixir 1.18.14 and OTP 28

0.2.2 - 2025-04-24

Fixed

• Installation without :phoenix_live_view dependency

Commits

• 138d950 v0.3.3
• 7bc46cd chore: update deps
• d22e4db Add ElixirCasts episode link to usage rules

[dependabot]

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot recreate.