Bump bandit from 1.7.0 to 1.8.0 (#2289)

Bumps [bandit](https://github.com/mtrudel/bandit) from 1.7.0 to 1.8.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/mtrudel/bandit/blob/main/CHANGELOG.md">bandit's
changelog</a>.</em></p>
<blockquote>
<h2>1.8.0 (18 Aug 2025)</h2>
<h3>Enhancements</h3>
<ul>
<li>If the user has set a <code>content-length</code> header when
calling <code>send_chunked/3</code>,
the response is streamed via content-length delimited framing and not
chunked (<a
href="https://redirect.github.com/mtrudel/bandit/issues/510">#510</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/mtrudel/bandit/commit/d15dd87082a0cc48530b5ad71f5e270fd94c69c9"><code>d15dd87</code></a>
Version bump to 1.8.0</li>
<li><a
href="https://github.com/mtrudel/bandit/commit/441573bc1c4adc33202b280bdc3db6bf4f78cf23"><code>441573b</code></a>
Bump dialyxir from 1.4.5 to 1.4.6 (<a
href="https://redirect.github.com/mtrudel/bandit/issues/513">#513</a>)</li>
<li><a
href="https://github.com/mtrudel/bandit/commit/a0110ac39151d4c2a1126c9ddfb3a7acfd419d8a"><code>a0110ac</code></a>
Bump actions/checkout from 4 to 5 (<a
href="https://redirect.github.com/mtrudel/bandit/issues/512">#512</a>)</li>
<li><a
href="https://github.com/mtrudel/bandit/commit/619e53610370a9d2d16f95d5f82f7f4b0ec7fc7f"><code>619e536</code></a>
Add support for streaming responses if content-length is set when
chunking (#...</li>
<li><a
href="https://github.com/mtrudel/bandit/commit/e3f29e8465602d73c5df6a843cabb21ba8fc7ba4"><code>e3f29e8</code></a>
Bump req from 0.5.12 to 0.5.15 (<a
href="https://redirect.github.com/mtrudel/bandit/issues/507">#507</a>)</li>
<li><a
href="https://github.com/mtrudel/bandit/commit/b812b2d94e00ebc9fea58d3daae07b0454d49274"><code>b812b2d</code></a>
Bump plug from 1.18.0 to 1.18.1 (<a
href="https://redirect.github.com/mtrudel/bandit/issues/506">#506</a>)</li>
<li><a
href="https://github.com/mtrudel/bandit/commit/112ff4331ab27eab4d89d9abf2fe6d68facad9b7"><code>112ff43</code></a>
Add changelog link to package metadata (<a
href="https://redirect.github.com/mtrudel/bandit/issues/505">#505</a>)</li>
<li><a
href="https://github.com/mtrudel/bandit/commit/b1ec62bde883c5a3606b33239794c9d3da8034ad"><code>b1ec62b</code></a>
Bump req from 0.5.11 to 0.5.12 (<a
href="https://redirect.github.com/mtrudel/bandit/issues/504">#504</a>)</li>
<li><a
href="https://github.com/mtrudel/bandit/commit/82ffbbf75adc2057a2d56343866be1cfef5de5a0"><code>82ffbbf</code></a>
Bump req from 0.5.10 to 0.5.11 (<a
href="https://redirect.github.com/mtrudel/bandit/issues/501">#501</a>)</li>
<li><a
href="https://github.com/mtrudel/bandit/commit/98918c67792b0f27e5bfcc1c295d2ed37d52a3c6"><code>98918c6</code></a>
Bump mix_test_watch from 1.2.0 to 1.3.0 (<a
href="https://redirect.github.com/mtrudel/bandit/issues/500">#500</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/mtrudel/bandit/compare/1.7.0...1.8.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=bandit&package-manager=hex&previous-version=1.7.0&new-version=1.8.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Nate Shoemaker <[email protected]>

Author: dependabot[bot]