chore(deps): bump cedar-policy from 4.7.0 to 4.8.2 in /packages/cedar_ffi/src

[dependabot]

Bumps cedar-policy from 4.7.0 to 4.8.2.

Release notes

Sourced from cedar-policy's releases.

v4.8.2

Release 4.8.2, available on crates.io

Changed

• Deprecated entity-manifest experimental feature. Consumers of these functions should migrate to the tpe feature and use PolicySet::is_authorized_batch. (#1945)

Fixed

• Fixed authorization and other error messages to correctly display all diagnostic information. (#1944)

v4.8.1

Release 4.8.1, available on crates.io

Fixed

• Fixed parsing of small negative decimal literals. (#1964)

v4.8.0

Release 4.8.0, available on crates.io

Added

• Added TpeResponse::residual_policies and TpeResponse::nontrivial_residual_policies to get residual policies under experimental feature tpe. (#1906)
• Added PartialEntity::new and PartialEntities::from_partial_entities to programmatically construct PartialEntity and PartialEntities under feature tpe. (#1916)

Changed

• For the tpe experimental feature, PartialEntities::from_concrete now requires a Schema and will validate the entities, ensuring that a PartialEntities object always meets the preconditions required for type aware partial evaluation. (#1903)
• Evaluate has operation when the LHS record is projectable during partial evaluation. (#1912)
• Deprecated schema parsing errors ActionAttributesContainEmptySet, UnsupportedActionAttribute, ActionAttrEval, and ExprEscapeUsed. These errors are never returned, so it is safe to delete any associated error handling code. (#1929)
• Made policy validation for in, ==, and hasTag slightly more permissive to match the formally verified Lean model. (#1931)
• Increase partial evaluation precision for if-then-else, or, and expressions (#1940)

Fixed

• Removed incorrect dependency of feature partial-eval of feature tpe. (#1898)
• Fixed incomplete policy ID renaming by PolicySet::merge. Updated policy IDs were correctly reflected when getting a policy with PolicySet::policy and PolicySet::template, but Policy::id, Template::id, and Policy::template_id continued to return the original id.
• Fixed issue where SchemaFragment::to_cedarschema could return a string that is not a valid Cedar schema.

v4.7.1

Release 4.7.1, available on crates.io

Fixed

• Fixed parsing of small negative decimal literals. (#1966)

Commits

• 447e228 [4.8.x] normalize cedar-policy-symcc changelog on release branch (#2029)
• 9d0b3a6 [4.8.x] Update version numbers to 4.8.2 (#2026)
• 034f033 Merge main into release/4.8.x (#2025)
• cac0b1b adjust symcc dependency
• e23607c Merge remote-tracking branch 'origin/main' into release/4.8.x
• 7301f05 update symcc changelog (#2023)
• 221caad Expand help message for run-tests cli command (#2022)
• 637761e optimization to avoid enforcing in some cases (#2021)
• 09bfdcb ensure that symcc unit tests cover both optimized and unoptimized interfaces ...
• 6b2e750 add function for converting CompiledPolicy directly into CompiledPolicies (#2...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)