Bump the production-dependencies group with 6 updates

[dependabot]

Bumps the production-dependencies group with 6 updates:

Package	From	To
ecto_sqlite3	0.21.0	0.22.0
gettext	0.26.2	1.0.0
phoenix_html	4.2.1	4.3.0
phoenix_live_view	1.1.8	1.1.13
swoosh	1.19.5	1.19.8
tailwind	0.3.1	0.4.0

Updates ecto_sqlite3 from 0.21.0 to 0.22.0

Changelog

Sourced from ecto_sqlite3's changelog.

v0.22.0

• added: Ability to use values/1 in ecto queries.
• changed: Updated locked dependencies.

Commits

• 2f9a6ff Bump to v0.22.0
• 2fb2ace Don't run tests that are not supported
• 4e986b5 Bump ecto to 3.13.3
• 3ca7c29 Update changelog
• 380a9c8 Update locked dependencies to latest
• 3724cc5 Implement values (#174)
• 79d94c8 Fix typo in documentation (#172)
• See full diff in compare view

Updates gettext from 0.26.2 to 1.0.0

Changelog

Sourced from gettext's changelog.

v1.0.0

This is the first 1.0 release of Gettext, a silly 10 years (and 6 months) after we started working on it. There are very few changes from the latest 0.26 release, and none of them are breaking.

Here are the new goodies:

• Add support for concatenating sigils if all parts are known at compile time (such as "Hello " <> ~s(world)).
• Significantly increase the timeout for mix gettext.extract to two minutes.
• Add Gettext.put_locale!/1.

Happy 10+ years of Elixir translations everyone! 🎉

Commits

• d1a8c86 Release v1.0.0
• e1df334 Update Elixir/Erlang versions in CI
• 962426d Add new function put_locale!/2 (#420)
• f436de7 Bump erlef/setup-beam from 1.20.2 to 1.20.4 (#418)
• 54ccc9c Don't time out when running the extract task (#417)
• fc89178 Bump erlef/setup-beam from 1.19.0 to 1.20.2 (#415)
• a44a2bf Harden CI (#414)
• 7405f84 Fix concatenation of sigils (#412)
• 6a97765 Update Elixir/Erlang versions in CI (#407)
• 647d27f Improve a deprecation warning (#406)
• Additional commits viewable in compare view

Updates phoenix_html from 4.2.1 to 4.3.0

Changelog

Sourced from phoenix_html's changelog.

4.3.0 (2025-09-28)

• Enhancements

  • Implement Phoenix.HTML.Safe for Duration
  • Add function head for argument names of normalize_value/2 to improve documentation
  • Allow custom tags in options_for_select
  • Allow datetime as form option values

• Bug fixes

  • Avoid false positive warnings on Elixir v1.19

Commits

• 8cfd3e3 Release v4.3.0
• 053861d Avoid false positive in Elixir v1.19
• 671042c allow datetime as form option values (#468)
• 0f31c95 feat(custom option tags): allow custom tags in options_for_select (#467)
• 0229e74 Add function head for argument names of normalize_value/2 (#466)
• 49bb6e5 Add Phoenix.HTML.Safe to Duration (#463)
• ddaf11e Update CI (#464)
• c11a9e3 Implement Access for form fields
• See full diff in compare view

Updates phoenix_live_view from 1.1.8 to 1.1.13

Changelog

Sourced from phoenix_live_view's changelog.

v1.1.13 (2025-09-18)

Bug fixes

• Fix invalid stream merging in LiveViewTest (#3993)
• Fix extra spaces when formatting nested inline tags (#3995)
• Ensure error reasons are serialized into message on the client (#3984)
• Prevent JavaScript exception when passing "*" to JS.ignore_attributes/3 (#3996)

v1.1.12 (2025-09-14)

Bug fixes

• Prevent HEEx line from being reported as uncovered when using a pattern in :let={} (#3989)

Enhancements

• Automatically symlink assets/node_modules folder for colocated hooks (see the documentation for Phoenix.LiveView.ColocatedJS, #3988)

v1.1.11 (2025-09-04)

Bug fixes

• Fix LiveComponents being destroyed when their DOM ID changes, even though they are still rendered (#3981)
• Fix warning when an empty comprehension is rendered in LiveViewTest

Enhancements

• Speed up duplicate ID check in LiveViewTest (#3962)

v1.1.10 (2025-09-03)

Bug fixxes

• Regression in v1.1.9 - fix Phoenix.LiveViewTest.submit_form/2 and Phoenix.LiveViewTest.follow_trigger_action/2 crashing when using keywords lists and not properly handling atom keys (#3975)

v1.1.9 (2025-09-02)

Bug fixes

• Fix moved comprehension diff crashing LiveViewTest (#3963)
• Ensure push_patch works during form recovery (#3964)
• Fix diff crash in LiveViewTest when rendering structs (#3970)

Enhancements

• Include form values from DOM in Phoenix.LiveViewTest.submit_form/2 and Phoenix.LiveViewTest.follow_trigger_action/2 to mimic browser behavior (#3885)
• Allow assigning generic hooks to type Hook (#3955)
• Allow typing hook element when using TypeScript (#3956)
• Add more metadata to phx:page-loading-start event in case of errors (#3910)

Commits

• 975bc91 release v1.1.13
• c1f1de9 Update assets
• ff403bb prevent crash when passing * to ignore_attributes (#3997)
• 67a3bc0 Fix extra spaces being continually added when formatting nested inline tags (...
• 68619fb fix merging of streams in LiveViewTest (#3994)
• e898d68 Serialize error reason as JSON (#3984)
• 72189f6 release v1.1.12
• f6c87c4 allow auto-symlinking node_modules for ColocatedJS (#3988)
• a60512c Prevent pattern in :let from leading to uncovered line (#3989)
• 0519193 Fix heading in CHANGELOG (#3986)
• Additional commits viewable in compare view

Updates swoosh from 1.19.5 to 1.19.8

Release notes

Sourced from swoosh's releases.

v1.19.8 🚀

✨ Features

• Encode international domain names (IDNA) @​jiegillet (#1070)

Full Changelog: swoosh/swoosh@v1.19.7...v1.19.8

v1.19.7 🚀

🐛 Bug Fixes

• Fix special "TEMPLATE" from option in CustomerIO adapter @​maltoe (#1069)

New Contributors

• @​maltoe made their first contribution in swoosh/swoosh#1069

Full Changelog: swoosh/swoosh@v1.19.6...v1.19.7

v1.19.6 🚀

✨ Features

• Add Lettermint adapter. @​olivermt (#1064)

⛓️ Dependency

• Bump cowboy from 2.13.0 to 2.14.0 @​dependabot (#1067)
• Bump ex_doc from 0.38.3 to 0.38.4 @​dependabot (#1065)
• Bump tailwind from 0.3.1 to 0.4.0 @​dependabot (#1066)
• Bump mua from 0.2.4 to 0.2.5 @​dependabot (#1063)
• Bump bandit from 1.7.0 to 1.8.0 @​dependabot (#1062)
• Bump ex_doc from 0.38.2 to 0.38.3 @​dependabot (#1061)
• Bump ex_aws from 2.5.10 to 2.5.11 @​dependabot (#1060)

Full Changelog: swoosh/swoosh@v1.19.5...v1.19.6

Changelog

Sourced from swoosh's changelog.

1.19.8

✨ Features

• Encode international domain names (IDNA) @​jiegillet (#1070)

1.19.7

🐛 Bug Fixes

• Fix special "TEMPLATE" from option in CustomerIO adapter @​maltoe (#1069)

1.19.6

✨ Features

• Add Lettermint adapter @​olivermt (#1064)

Commits

• 30febae v1.19.8
• 108a5fa Encode international domain names (IDNA) (#1070)
• d562b96 v1.19.7
• a563e7b Fix special "TEMPLATE" from option in CustomerIO adapter (#1069)
• 65b40fb v1.19.6
• 80b67fa Bump cowboy from 2.13.0 to 2.14.0 (#1067)
• 6ccd9fa Bump ex_doc from 0.38.3 to 0.38.4 (#1065)
• 23e6196 Bump tailwind from 0.3.1 to 0.4.0 (#1066)
• 60d0a08 Add Lettermint adapter. (#1064)
• b3748bc Bump mua from 0.2.4 to 0.2.5 (#1063)
• Additional commits viewable in compare view

Updates tailwind from 0.3.1 to 0.4.0

Changelog

Sourced from tailwind's changelog.

v0.4.0 (2025-09-10)

• No longer copy assets in mix tailwind.install
• Discard empty proxy env vars
• Ensure watcher picks up rule changes on Windows

Commits

• e8e2891 Release v0.4.0
• d09a32b Add comments
• 3e49513 Normalize windows driver
• 5f8a6b9 Update versions
• e988790 Sanitize empty strings when getting Proxy Environment variables (#92)
• 2bf28d7 Revert config
• 327cef3 Remove outdated docs, closes #102
• 21c4b76 Fix path in message, closes #126
• be2c7b6 Update tests, readme, and simplify install
• f7e3037 Update README.md (#132)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}