chore(changeset): downgrade slow-signin fixes from minor to patch

Both `par-heartbeat-keeps-slow-signins-alive` and
`clean-exit-on-expired-signin` were authored as `feat:` commits,
so they got `minor` bumps by reflex. Reviewing them against the
bump-type guide in `docs/PUBLISHING.md`:

- The PAR heartbeat is internal mechanism (a `/auth/ping` route +
  a browser interval) introduced solely to stop a 5-minute
  upstream `AUTHORIZATION_INACTIVITY_TIMEOUT` from kicking out
  users who are reading their inbox at human speed. No new env
  var, no new client metadata, no new operator surface — just
  fixing a dead-end. The "feature" is invisible; the visible
  effect is "slow sign-ins no longer time out", which is a bug
  fix.
- The clean-exit work removes a UX dead-end (broken Resend offer,
  no way back to the OAuth client) on already-failed sign-ins.
  Users gain no capability they didn't already conceptually have
  — they just stop hitting a wall.

Both are user-observable bug fixes rather than additive features.
Flip the frontmatter to `patch`.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

Author: aspiers

.changeset/clean-exit-on-expired-signin.md

@@ -1,5 +1,5 @@
 ---
-'ePDS': minor
+'ePDS': patch
 ---
 
 Sign-in pages no longer strand users on a "session expired" dead end, and Resend no longer offers codes that won't work.

.changeset/par-heartbeat-keeps-slow-signins-alive.md

@@ -1,5 +1,5 @@
 ---
-'ePDS': minor
+'ePDS': patch
 ---
 
 Slow sign-ins are less likely to time out before you finish entering your code.