Bump bandit from 0.7.3 to 0.7.6

[dependabot[bot]]

Bumps bandit from 0.7.3 to 0.7.6.

Changelog

Sourced from bandit's changelog.

0.7.6 (9 Apr 2023)

Changes

• BREAKING CHANGE Rename top-level options field to thousand_island_options
• BREAKING CHANGE Rename deflate_opts to deflate_options where used
• Massive overhaul of documentation to use types where possible
• Bandit now uses a term of the form {Bandit, ref()} for id in our child spec
• Bumped to Thousand Island 0.6.7. num_connections is now 16384 by default

Enhancements

• Added top level support for the following convenience parameters:
  • port can now be set at the top level of your configuration
  • ip can now be set at the top level of your configuration
  • keyfile and certfile can now be set at the top level of your configuration
• Transport options are now validated by Plug.SSL.configure/1 when starting an HTTPS server
• Rely on Thousand Island to validate options specified in thousand_island_options. This should avoid cases like #125 in the future.

0.7.5 (4 Apr 2023)

Changes

• Drop explicit support for Elixir 1.11 since we no longer test it in CI (should still work, just that it's now at-your-own-risk)
• Add logo to ex_doc and README

Fixes

• Allow access to Thousand Island's underlying shutdown_timeout option
• Fix test errors that cropped up in OTP 26

0.7.4 (27 Mar 2023)

Changes

• Calling Plug.Conn adapter functions for HTTP/2 based requests are no longer restricted to being called from the process which called Plug.call/2

Enhancements

• Added startup_log to control whether / how Bandit logs the bound host & port at startup (Thanks @​danschultzer)
• Improved logging when the configured port is in use at startup (Thanks @​danschultzer)
• Update to Thousand Island 0.6.5

Commits

• 5b9c916 Version bump to 0.7.6
• 1f1c409 Config cleanup (#126)
• 585a92f Version bump to 0.7.5
• 03c78c8 Add shutdown_timeout to the supported list of passthrough options
• 0a77113 Bump ex_doc from 0.29.3 to 0.29.4 (#124)
• 0f988e8 Add logos & logo source
• 953bcd4 Fix test for OTP 26 (#123)
• 75f4ab4 Require Elixir 1.12 (#122)
• db86d64 Fix racy log capturing test
• 171a42a Version bump to 0.7.4
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

Superseded by #67.