chore(deps): bump the production-dependencies group with 2 updates

[dependabot]

Bumps the production-dependencies group with 2 updates: ash and ash_money.

Updates ash from 3.4.47 to 3.4.49

Changelog

Sourced from ash's changelog.

v3.4.49 (2024-12-22)

Improvements:

• [read actions] - add support for strict? in Ash.read options. (#1669)

Bug Fixes:

• [Ash.Policy.Authorizer] ensure that old config applies all aggregate policies

If you've upgraded to the following configuration this does not affect you:

config :ash, :policies, no_filter_static_forbidden_reads?: false

You should upgrade regardless, and adopt that new configuration.

v3.4.48 (2024-12-20)

Bug Fixes:

• [calculations] properly update sort calculation expressions

• [Ash.Type.Module] handle nil values in Ash.Type.Module

• [Ash.Resource] ensure that select_by_default? is honored on loads

• [Ash.Type.Union] Verify union types constraint on init

• [loading data] ensure tenant is set on reselection query

Improvements:

• [Igniter] handle igniter not being compiled, and make it optional

• [Ash.Generator] add Ash.Generator.next_in_sequence/3

• [performance] don't reselect unnecessary attributes

• [pagination] add show_keysets_for_all_actions? configuration

  Set config :ash, show_keysets_for_all_actions?, false for significant performance improvements when reading resources that support keyset pagination. This causes keysets to only be shown for actions that are actively being paginated with keyset pagination.

Commits

• cf34d92 chore: release version v3.4.49
• d54227c fix: ensure that old config applies all aggregate policies
• 4fd521e chore: release version v3.4.48
• 538e1f2 chore: update igniter
• b672f9d chore: format
• 2e1639f fix: ensure that aggregates in calculation sorts are authorized
• 8b77f21 fix: properly update sort calculation expressions
• acb1c61 fix: handle nil values in Ash.Type.Module
• 354e714 chore: run format --migrate
• a504872 improvement: upgrade to elixir 1.18
• Additional commits viewable in compare view

Updates ash_money from 0.1.14 to 0.1.15

Changelog

Sourced from ash_money's changelog.

v0.1.15 (2024-12-20)

Bug Fixes:

• multiplication returns a money

Improvements:

• make igniter optional

• prefer decimals in type signatures

Commits

• de1d97b chore: release version v0.1.15
• 7431981 chore: update deps
• 926d6da chore(deps): bump the production-dependencies group with 2 updates (#95)
• b9562e4 chore: remove unused module attribute
• e4479c6 chore: fix tool versions
• 0e12cdd improvement: make igniter optional
• ae3e06b chore(deps): bump the production-dependencies group with 3 updates (#94)
• 4454cbf chore(deps): bump ash_graphql in the production-dependencies group (#93)
• e98669e chore: update tests
• 668feee chore: remove old test
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions