Snowddl

- Added CLI options `--refresh-stage-encryption` and `--refresh-secrets` to SingleDB mode.

- Prevented SingleDB mode from asking for `--destroy-without-prefix` CLI option which is not possible to set on "destroy" action.
- Ensured schemas are correctly "destroyed" even when `DatabaseResolver` is not present in resolver sequence. Most schema objects are still being ignored.

- Added browser-based SSO authentication (thanks to Joseph Niblo).

- Implemented `HYBRID_TABLE` object type using short hash.
- Switched `depends_on` implementation from list to set, which should help to avoid deduplication problem entirely.
- Added SQL comment with specific replace reasons when replace table is required.
- Adjusted replace table logic to avoid unnecessary type casting when data type was not changed.
- Added some tests for `HYBRID_TABLE`.

- Skipped all new fancy table types while working on normal `TABLE` in resolver, converter and during cloning.
- Added explicit `MONITOR`, `OPERATE` and `SELECT` privileges for `DYNAMIC_TABLE` for schema owner role.
- Added explicit `SELECT` privilege for `DYNAMIC_TABLE` for schema read role.
- Updated handling of metadata for optional arguments in `FUNCTION` and `PROCEDURE`. Snowflake replaced brackets-syntax `[, NUMBER]` with more traditional `, DEFAULT NUMBER`.

You may have to run SnowDDL with flag `--refresh-future-grants` to apply new privileges to existing dynamic tables.

- Added `owner_integration_usage` parameter for `SCHEMA`. It grants usage privilege to schema owner role on integrations pre-configured outside SnowDDL.