chore(deps): update dependency sobelow to ~> 0.14

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
sobelow (source)	dev	minor	~> 0.11 -> ~> 0.14

---

Release Notes

sobelow/sobelow (sobelow)

v0.14.1

Compare Source

• Enhancements
  • Implicitly use .sobelow-conf if detected in the root directory rather than
    require --config switch. The --no-config switch is still supported to
    prevent any settings from being read in from the file if needed.
  • Added guidance for warn_if_outdated option in mix deps
  • Added support for Elixir v1.19.x
  • Bug fixes
    • Handled extra config options for app releases in mix.exs
    • Properly handle the use of CLI switches and config file settings in the same run.
      These would previously clobber each other in unapparent ways leading to
      confusing behavior. CLI switch take precedence.
    • .sobelow-conf now sorted alphabetically
    • Fix edwarning from zero argument functions
    • Fixed broken skip funcationality
    • Fixed broken GitHub Actions CI
  • Misc
    • Typo fix

v0.14.0

Compare Source

• Removed
  • Support for minimum Elixir versions 1.7 - 1.11 (POTENTIALLY BREAKING - only applies if you relied on Elixir 1.7 through 1.11, 1.12+ is still supported)
  • Enhancements
    • Added support for multiple variations of SQL.query()
    • Added support for `System.shell' command introduced in Elixir v1.12
    • Ignore runtime config during Config.HSTS
    • Updated developer dependencies (ex_doc & credo)
  • Bug fixes
    • Fixed is_endpoint? error in main
    • Fixed findings normalization bug
    • Fixed truncation error
  • Misc
    • GitHub Actions test matrix updated (hence the large drop in support for old Elixir versions)
    • Addressed compiler warnings from Elixir v1.18.x
    • Moved from master branch to main

v0.13.0

Compare Source

• Removed
  • Support for minimum Elixir versions 1.5 & 1.6 (POTENTIALLY BREAKING - only applies if you relied on Elixir 1.5 or 1.6, 1.7+ is still supported)
  • Enhancements
    • Fixed all credo warnings
    • Implemented all credo "Code Readability" adjustments
    • Took advantage of some credo refactoring opportunities
    • Added (sub)module documentation that was missing for some vulnerabilities and unified presentation of others
  • Bug fixes
    • Fixed --details / -d not displaying correct information
    • Fixed incompatibility issue with Elixir 1.15
  • Misc
    • Added mix credo --strict to project
    • Improvements to GitHub CI
      • Hex Audit
      • Compiler Warnings as Errors
      • Checks Formatting
    • Added helper mix test.all alias

v0.12.2

Compare Source

• Bug fixes
  • Removed :castore and introduced :verify_none to quiet warning and unblock escript usage, see #​133 for more context on why this is necessary

v0.12.1

Compare Source

• Bug fixes
  • Lowered required version of :castore to remove upgrade path issues
  • Reconfigured :verify_peer to actually use CAStore and remove warning

v0.12.0

• Removed
  • Support for minimum Elixir version 1.4 (POTENTIALLY BREAKING - only applies if you relied on Elixir 1.4, 1.5+ is still supported)
  • Enhancements
    • Adds support for HEEx to XSS.Raw
    • Adds --version CLI flag
    • README Improvements
      • Umbrella App usage
      • Clearer installation process
      • Layout changes
    • Updated dependencies
  • Bug fixes
    • Adds to_string() to exit_on
    • Sets SSL opt verify_peer in version check
    • Reworks -v, --verbose printing to not use the now deprecated Macro.to_string/2
  • Misc
    • Allows atom values for threshold in config file
    • Uses SPDX ID for licenses in mixfile
    • Fixed typo

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.