chore(deps): bump the production-dependencies group with 3 updates

[dependabot]

Bumps the production-dependencies group with 3 updates: ash, phoenix and phoenix_live_view.

Updates ash from 3.19.0 to 3.23.1

Release notes

Sourced from ash's releases.

v3.23.1

Bug Fixes:

• ensure is/_not/_distinct_from cast parameters to the same type by @​zachdaniel

v3.23.0

Features:

• add pipelines DSL for reusable action logic composition (#2652) by @​nallwhy [(#2652)](ash-project/ash#2652)

Bug Fixes:

• ensure that update timestamps are properly updated in atomic updates by @​zachdaniel

• ensure get_data raises on data not available by @​zachdaniel

Improvements:

• Add resource metadata to Ash.NotLoaded struct (#2653) by @​nallwhy [(#2653)](ash-project/ash#2653)

v3.22.1

Bug Fixes:

• just to be extra-safe also prevent when loading modules by @​zachdaniel

v3.22.0

Features:

• add batch_validate callback to Ash.Resource.Validation (#2650) by @​RylandBangerter85

Bug Fixes:

• remove Module.concat from Ash.Type.Module.cast_input/2 by @​zachdaniel

... (truncated)

Changelog

Sourced from ash's changelog.

v3.23.1 (2026-04-01)

Bug Fixes:

• ensure is/_not/_distinct_from cast parameters to the same type by @​zachdaniel

Improvements:

• add init/1 callback to Ash.Policy.Check (#2655) by @​nallwhy [(#2655)](ash-project/ash#2655)

v3.23.0 (2026-03-31)

Features:

• add pipelines DSL for reusable action logic composition (#2652) by @​nallwhy [(#2652)](ash-project/ash#2652)

Bug Fixes:

• ensure that update timestamps are properly updated in atomic updates by @​zachdaniel

• ensure get_data raises on data not available by @​zachdaniel

Improvements:

• Add resource metadata to Ash.NotLoaded struct (#2653) by @​nallwhy [(#2653)](ash-project/ash#2653)

v3.22.2 (2026-03-31)

Bug Fixes:

• handle more :no_rollback cases in Ash.DataLayer.destroy/2 by @​zachdaniel

• handle {:array, :same} in data layer and expression type resolution by @​zachdaniel

• more specific types for has and intersects functions by @​zachdaniel

• add test for intersects function type resolution with {:array, :same} by @​zachdaniel

v3.22.1 (2026-03-29)

... (truncated)

Commits

• 490caf6 chore: release version v3.23.1
• d2df163 fix: ensure is/_not/_distinct_from cast parameters to the same type
• 80331de docs: add docs for pipelines
• efe10ce chore: release version v3.23.0
• 05814f9 fix: ensure that update timestamps are properly updated in atomic updates
• 7519947 fix: ensure get_data raises on data not available
• 851d78e improvement: Add resource metadata to Ash.NotLoaded struct (#2653)
• 45a2467 feat: add pipelines DSL for reusable action logic composition (#2652)
• 62ab733 chore: release version v3.22.2
• 68634fc fix: handle more :no_rollback cases in Ash.DataLayer.destroy/2
• Additional commits viewable in compare view

Updates phoenix from 1.8.4 to 1.8.5

Changelog

Sourced from phoenix's changelog.

1.8.5 (2026-03-05)

JavaScript Client Bug Fixes

• Fix socket connecting on visibility change when never established

Enhancements

• Fix warnings on Elixir 1.20

Commits

• 850162d Release v1.8.5
• 9b20e66 update changelog
• 49d90f3 Update assets
• 84607a4 ensure visibilitychange does not connect if never connected (#6621)
• f286d69 Address warnings from Elixir 1.20 (#6616)
• 05f2d1a Bump erlef/setup-beam from 1.20.4 to 1.21.0 (#6610)
• ae8b3c6 update eslint (#6615)
• a1e9ac4 Bump the minor-and-patch group with 2 updates (#6611)
• bb1bd84 Use custom migration module for auth migration. (#6605)
• d4ec4b7 Minor Spelling fix in readme (#6606)
• Additional commits viewable in compare view

Updates phoenix_live_view from 1.1.25 to 1.1.28

Release notes

Sourced from phoenix_live_view's releases.

v1.1.28

Bug fixes

• Fix race condition that could lead to a JS exception when nested LiveView is removed while it is joining (#4177)

Enhancements

• A bunch of small performance and documentation improvements (thank you @​preciz!)

v1.1.27

Bug fixes

• Workaround Chrome bug when patching \<template> elements (#4163)
• Fix more type warnings on Elixir 1.20

v1.1.26

Bug fixes

• Fix phx-click-away for nested portals
• Fix type warnings on Elixir 1.20

Changelog

Sourced from phoenix_live_view's changelog.

v1.1.28 (2026-03-27)

Bug fixes

• Fix race condition that could lead to a JS exception when nested LiveView is removed while it is joining (#4177)

Enhancements

• A bunch of small performance and documentation improvements (thank you @​preciz!)

v1.1.27 (2026-03-10)

Bug fixes

• Workaround Chrome bug when patching \<template> elements (#4163)
• Fix more type warnings on Elixir 1.20

v1.1.26 (2026-03-04)

Bug fixes

• Fix phx-click-away for nested portals
• Fix type warnings on Elixir 1.20

Commits

• df3e88c Release v1.1.28
• f50f39c Update assets
• e032e51 Ensure root is set early (#4184)
• f9ac0d8 Optimize class_attribute_list/1 using an IO data tree (#4172)
• bfd8d93 Fix docs: reset does not accept list of keys to reset (#4178)
• f768468 Fix docs: allow_upload :writer expects a 3-arity anonymous function, not a mo...
• d07ea5a Fix docs: correct typo JS.ignore_attributes/0 to JS.ignore_attributes/1 (#4180)
• a6408e5 Fix docs: <.link> component does not generate a form for non-get requests (#4...
• 068692e Optimize implicit inner block slots_defs check (#4176)
• 39b59a0 Optimize Enum.map |> Enum.filter |> Enum.map pipeline to a for comprehension ...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions