Bump corsica from 1.3.0 to 2.0.0

[dependabot]

Bumps corsica from 1.3.0 to 2.0.0.

Changelog

Sourced from corsica's changelog.

v2.0.0

Breaking changes

• The :origins option is now required. Not having this option used to warn before this version.
• The :log option was removed in favor of Corsica.Telemetry.

Improvements

• Start emitting Telemetry events (see Corsica.Telemetry).
• Bump Elixir requirement to 1.11+.
• Response headers that contain lists (such as access-control-expose-headers) are now joined without spaces, so what could be GET, POST, DELETE before is now GET,POST,DELETE. Every byte's important.

Upgrading from 1.x to 2.0.0 is a matter of these things:

• If you're not specifying the :origins options when using Corsica, add origins: "*" to all the places you're using Corsica (as a plug, through Corsica.Router, or through the functions in the Corsica module).

• If you were using the :log option, remove it and call this in your application's start/2 callback:

  log_levels = # what you were using before as the :log option
  Corsica.Telemetry.attach_default_handler(log_levels: log_levels)
  Supervisor.start_link(...)

Commits

• 526cc43 Release v2.0.0
• e842918 Re-haul docs a little bit
• c8b32c1 Introduce Corsica.Telemetry
• 264803e Make the :origins option required
• e770762 Bump Elixir requirement to 1.11+
• 7fdf6f6 Join headers without spaces
• 72b6d08 Update Elixir and Erlang versions in CI (#65)
• cdd2a1e Use Plug.run/2 in tests
• a918233 Add @​impl attribute to Corsica plug
• fbc9199 Update picture in the README
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[coveralls]

coverage: 95.349% (-0.04%) from 95.389% when pulling 575c868 on dependabot/hex/corsica-2.0.0 into dd58373 on master.

[dependabot]

Superseded by #977.