chore(deps): update dependency phoenix_html to v4

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
phoenix_html (source)	prod	major	~> 2.11 -> ~> 4.0

---

Release Notes

phoenixframework/phoenix_html (phoenix_html)

v4.3.0

Compare Source

• Enhancements

  • Implement Phoenix.HTML.Safe for Duration
  • Add function head for argument names of normalize_value/2 to improve documentation
  • Allow custom tags in options_for_select
  • Allow datetime as form option values

• Bug fixes

  • Avoid false positive warnings on Elixir v1.19

v4.2.1

Compare Source

• Enhancements
  • Add type to Phoenix.HTML.FormField
  • Allow keyword lists in options to use nil as key/value

v4.2.0

Compare Source

• Enhancements

  • Add Phoenix.HTML.css_escape/1 to escape strings for use inside CSS selectors
  • Add the ability to pass :hr to options_for_select/2 to render a horizontal rule

• Bug fixes

  • Pass form action through in FormData implementation

v4.1.1

Compare Source

• Fix dependency resolution error

v4.1.0

Compare Source

• Enhancements
  • Introduce form :action and consider input as changed if action changes to support better change tracking

v4.0.0

Compare Source

This version removes deprecated functionality and moved all HTML helpers to a separate library. HTML Helpers are no longer used in new apps from Phoenix v1.7, instead it relies on function components from Phoenix.LiveView. Older applications who wish to maintain compatibility, add {:phoenix_html_helpers, "~> 1.0"} to your mix.exs and then replace use Phoenix.HTML in your applications by:

import Phoenix.HTML
import Phoenix.HTML.Form
use PhoenixHTMLHelpers

v3.3.4

Compare Source

v3.3.3

Compare Source

• Enhancements
  • Allow string fields on input_changed?

v3.3.2

Compare Source

• Enhancements

  • Address deprecations in Elixir v1.16+

• Deprecations

  • Deprecate inputs_for/2 and inputs_for/3 (without anonymous functions)

v3.3.1

Compare Source

• Bug fix
  • Set display to none on generated forms
  • Warn for maps with atom keys

v3.3.0

Compare Source

• Enhancements

  • Support deeply nested class lists
  • Implement Phoenix.HTML.Safe for URI
  • Implement Phoenix.HTML.FormData for Map

• Bug fix

  • Generate unique IDs for checkboxes based on the value
  • Use artificial button click instead of form.submit in JavaScript to trigger all relevant events
  • Fix a bug where nil/false/true attributes in aria/data/phx would emit empty or literal values, such as "true" and "false". This release aligns them with all other attributes so both nil and false emit nothing. true emits the attribute with no value.

• Deprecations

  • Phoenix.HTML.Tag.attributes_escape/1 is deprecated in favor of Phoenix.HTML.attributes_escape/1

v3.2.0

Compare Source

• Enhancements
  • Raise if the id attribute is set to a number. This is actually an invalid value according to the HTML spec and it can lead to problematic client behaviour, especially in LiveView and other client frameworks.
  • Allow phx attributes to be nested, similar to aria and data attributes
  • Allow hidden fields in forms to be a list of values

v3.1.0

Compare Source

• Bug fix
  • Do not submit data-method links if default has been prevented
• Deprecations
  • Deprecate ~E and Phoenix.HTML.Tag.attributes_escape/1
  • Remove deprecated Phoenix.HTML.Link.link/1

v3.0.4

Compare Source

• Bug fix
  • Ensure class={@​class} in HEEx templates and :class attribute in content_tag are properly escaped against XSS

v3.0.3

Compare Source

• Bug fix
  • Fix sorting of attributes in tag/content_tag

v3.0.2

Compare Source

• Enhancements
  • Support maps on Phoenix.HTML.Tag.attributes_escape/1

v3.0.1

Compare Source

• Enhancements
  • Add Phoenix.HTML.Tag.csrf_input_tag/2

v3.0.0

Compare Source

• Enhancements

  • Allow extra html attributes on the :prompt option in select
  • Make Plug an optional dependency
  • Prefix form id on inputs when it is given to form_for/3
  • Allow %URI{} to be passed to link/2 and button/2 as :to
  • Expose Phoenix.HTML.Tag.csrf_token_value/1
  • Add Phoenix.HTML.Tag.attributes_escape/1

• Bug fixes

  • Honor the form attribute when creating hidden checkbox input
  • Use to_iso8601 as the standard implementation for safe dates and times

• Deprecations

  • form_for without an anonymous function has been deprecated. v3.0 has deprecated the usage, v3.1 will emit warnings, and v3.2 will fully remove the functionality

• Backwards incompatible changes

  • Strings given as attributes keys in tag and content_tag are now emitted as is (without being dasherized) and are also HTML escaped
  • Prefix form id on inputs when it is given to form_for/3
  • By default dates and times will format to the to_iso8601 functions provided by their implementation
  • Do not include csrf-param and method-param in generated csrf_meta_tag
  • Remove deprecated escape_javascript in favor of javascript_escape
  • Remove deprecated field_value in favor of input_value
  • Remove deprecated field_name in favor of input_name
  • Remove deprecated field_id in favor of input_id

---

Configuration

📅 Schedule: Branch creation - "before 6am on Monday" in timezone Europe/Paris, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

⚠ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: mix.lock

Command failed: mix deps.update phoenix_html
** (Mix) Hex dependency resolution failed

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: mix.lock

Command failed: mix deps.update phoenix_html
** (Mix) Hex dependency resolution failed