Update Mend: high confidence minor and patch dependency updates

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
async (source)	`2.6.1` -> `2.6.4`
body-parser	`1.18.3` -> `1.20.3`
consolidate	`^0.14.1` -> `^0.16.0`
cross-env	`7.0.2` -> `7.0.3`
csurf	`1.9.0` -> `1.11.0`
express (source)	`4.16.4` -> `4.21.1`
express-session	`1.15.6` -> `1.18.1`
grunt (source)	`1.0.3` -> `1.6.1`
grunt-cli	`1.3.2` -> `1.5.0`
jshint (source)	`2.12.0` -> `2.13.6`
nodemon (source)	`1.19.1` -> `1.19.4`
underscore (source)	`1.9.1` -> `1.13.7`

Release Notes

caolan/async (async)

### [`v2.6.4`](https://redirect.github.com/caolan/async/compare/v2.6.3...v2.6.4) [Compare Source](https://redirect.github.com/caolan/async/compare/v2.6.3...v2.6.4) ### [`v2.6.3`](https://redirect.github.com/caolan/async/compare/v2.6.2...v2.6.3) [Compare Source](https://redirect.github.com/caolan/async/compare/v2.6.2...v2.6.3) ### [`v2.6.2`](https://redirect.github.com/caolan/async/compare/v2.6.1...v2.6.2) [Compare Source](https://redirect.github.com/caolan/async/compare/v2.6.1...v2.6.2)

expressjs/body-parser (body-parser)

### [`v1.20.3`](https://redirect.github.com/expressjs/body-parser/blob/HEAD/HISTORY.md#1203--2024-09-10) [Compare Source](https://redirect.github.com/expressjs/body-parser/compare/1.20.2...1.20.3) \=================== - deps: qs@6.13.0 - add `depth` option to customize the depth level in the parser - IMPORTANT: The default `depth` level for parsing URL-encoded data is now `32` (previously was `Infinity`) ### [`v1.20.2`](https://redirect.github.com/expressjs/body-parser/blob/HEAD/HISTORY.md#1202--2023-02-21) [Compare Source](https://redirect.github.com/expressjs/body-parser/compare/1.20.1...1.20.2) \=================== - Fix strict json error message on Node.js 19+ - deps: content-type@~1.0.5 - perf: skip value escaping when unnecessary - deps: raw-body@2.5.2 ### [`v1.20.1`](https://redirect.github.com/expressjs/body-parser/blob/HEAD/HISTORY.md#1201--2022-10-06) [Compare Source](https://redirect.github.com/expressjs/body-parser/compare/1.20.0...1.20.1) \=================== - deps: qs@6.11.0 - perf: remove unnecessary object clone ### [`v1.20.0`](https://redirect.github.com/expressjs/body-parser/blob/HEAD/HISTORY.md#1200--2022-04-02) [Compare Source](https://redirect.github.com/expressjs/body-parser/compare/1.19.2...1.20.0) \=================== - Fix error message for json parse whitespace in `strict` - Fix internal error when inflated body exceeds limit - Prevent loss of async hooks context - Prevent hanging when request already read - deps: depd@2.0.0 - Replace internal `eval` usage with `Function` constructor - Use instance methods on `process` to check for listeners - deps: http-errors@2.0.0 - deps: depd@2.0.0 - deps: statuses@2.0.1 - deps: on-finished@2.4.1 - deps: qs@6.10.3 - deps: raw-body@2.5.1 - deps: http-errors@2.0.0 ### [`v1.19.2`](https://redirect.github.com/expressjs/body-parser/blob/HEAD/HISTORY.md#1192--2022-02-15) [Compare Source](https://redirect.github.com/expressjs/body-parser/compare/1.19.1...1.19.2) \=================== - deps: bytes@3.1.2 - deps: qs@6.9.7 - Fix handling of `__proto__` keys - deps: raw-body@2.4.3 - deps: bytes@3.1.2 ### [`v1.19.1`](https://redirect.github.com/expressjs/body-parser/blob/HEAD/HISTORY.md#1191--2021-12-10) [Compare Source](https://redirect.github.com/expressjs/body-parser/compare/1.19.0...1.19.1) \=================== - deps: bytes@3.1.1 - deps: http-errors@1.8.1 - deps: inherits@2.0.4 - deps: toidentifier@1.0.1 - deps: setprototypeof@1.2.0 - deps: qs@6.9.6 - deps: raw-body@2.4.2 - deps: bytes@3.1.1 - deps: http-errors@1.8.1 - deps: safe-buffer@5.2.1 - deps: type-is@~1.6.18 ### [`v1.19.0`](https://redirect.github.com/expressjs/body-parser/blob/HEAD/HISTORY.md#1190--2019-04-25) [Compare Source](https://redirect.github.com/expressjs/body-parser/compare/1.18.3...1.19.0) \=================== - deps: bytes@3.1.0 - Add petabyte (`pb`) support - deps: http-errors@1.7.2 - Set constructor name when possible - deps: setprototypeof@1.1.1 - deps: statuses@'>= 1.5.0 < 2' - deps: iconv-lite@0.4.24 - Added encoding MIK - deps: qs@6.7.0 - Fix parsing array brackets after index - deps: raw-body@2.4.0 - deps: bytes@3.1.0 - deps: http-errors@1.7.2 - deps: iconv-lite@0.4.24 - deps: type-is@~1.6.17 - deps: mime-types@~2.1.24 - perf: prevent internal `throw` on invalid type

ladjs/consolidate (consolidate)

### [`v0.16.0`](https://redirect.github.com/ladjs/consolidate/compare/11efc65852c7e7d36abf6f5fb770668db3ce7da6...cfe53bdf5001625424db269bfa7ae5ec4c5ed522) [Compare Source](https://redirect.github.com/ladjs/consolidate/compare/11efc65852c7e7d36abf6f5fb770668db3ce7da6...cfe53bdf5001625424db269bfa7ae5ec4c5ed522) ### [`v0.15.1`](https://redirect.github.com/ladjs/consolidate/blob/HEAD/HISTORY.md#0151--2018-03-19) [Compare Source](https://redirect.github.com/ladjs/consolidate/compare/e7acbf2e6107569323d5a0404253dbf8d3e80bc1...11efc65852c7e7d36abf6f5fb770668db3ce7da6) - add support for underscore partials - updating metadata and configurations - lint and cleanup code and tests ### [`v0.15.0`](https://redirect.github.com/ladjs/consolidate/blob/HEAD/HISTORY.md#0150--2017-11-01) [Compare Source](https://redirect.github.com/ladjs/consolidate/compare/894b0de2fa9dcd2bde72ee14d6b36aa4ffb65f27...e7acbf2e6107569323d5a0404253dbf8d3e80bc1) - add plates support - add teacup support - add liquid-node support - add velocityjs support - allow absolute and relative partial paths - extend dot options - support layouts in vash

kentcdodds/cross-env (cross-env)

### [`v7.0.3`](https://redirect.github.com/kentcdodds/cross-env/releases/tag/v7.0.3) [Compare Source](https://redirect.github.com/kentcdodds/cross-env/compare/v7.0.2...v7.0.3) ##### Bug Fixes - add maintenance mode notice ([fe80c84](https://redirect.github.com/kentcdodds/cross-env/commit/fe80c849bba0dc3c4f5930c45e70a34952aa961f))

expressjs/csurf (csurf)

### [`v1.11.0`](https://redirect.github.com/expressjs/csurf/blob/HEAD/HISTORY.md#1110--2020-01-18) [Compare Source](https://redirect.github.com/expressjs/csurf/compare/1.10.0...1.11.0) \=================== - deps: cookie@0.4.0 - Add `SameSite=None` support - deps: http-errors@~1.7.3 - deps: inherits@2.0.4 ### [`v1.10.0`](https://redirect.github.com/expressjs/csurf/blob/HEAD/HISTORY.md#1100--2019-04-22) [Compare Source](https://redirect.github.com/expressjs/csurf/compare/1.9.0...1.10.0) \=================== - deps: csrf@3.1.0 - Remove `base64-url` dependency - deps: tsscmp@1.0.6 - deps: uid-safe@2.1.5 - deps: http-errors@~1.7.2 - Make `message` property enumerable for `HttpError`s - Set constructor name when possible - deps: depd@~1.1.2 - deps: inherits@2.0.3 - deps: setprototypeof@1.1.1 - deps: statuses@'>= 1.5.0 < 2' - perf: remove argument reassignment - perf: use plain object for internal cookie options

expressjs/express (express)

### [`v4.21.1`](https://redirect.github.com/expressjs/express/releases/tag/4.21.1) [Compare Source](https://redirect.github.com/expressjs/express/compare/4.21.0...4.21.1) #### What's Changed - Backport a fix for CVE-2024-47764 to the 4.x branch by [@joshbuker](https://redirect.github.com/joshbuker) in [https://github.com/expressjs/express/pull/6029](https://redirect.github.com/expressjs/express/pull/6029) - Release: 4.21.1 by [@UlisesGascon](https://redirect.github.com/UlisesGascon) in [https://github.com/expressjs/express/pull/6031](https://redirect.github.com/expressjs/express/pull/6031) **Full Changelog**: https://github.com/expressjs/express/compare/4.21.0...4.21.1 ### [`v4.21.0`](https://redirect.github.com/expressjs/express/releases/tag/4.21.0) [Compare Source](https://redirect.github.com/expressjs/express/compare/4.20.0...4.21.0) #### What's Changed - Deprecate `"back"` magic string in redirects by [@blakeembrey](https://redirect.github.com/blakeembrey) in [https://github.com/expressjs/express/pull/5935](https://redirect.github.com/expressjs/express/pull/5935) - finalhandler@1.3.1 by [@wesleytodd](https://redirect.github.com/wesleytodd) in [https://github.com/expressjs/express/pull/5954](https://redirect.github.com/expressjs/express/pull/5954) - fix(deps): serve-static@1.16.2 by [@wesleytodd](https://redirect.github.com/wesleytodd) in [https://github.com/expressjs/express/pull/5951](https://redirect.github.com/expressjs/express/pull/5951) - Upgraded dependency qs to 6.13.0 to match qs in body-parser by [@agadzinski93](https://redirect.github.com/agadzinski93) in [https://github.com/expressjs/express/pull/5946](https://redirect.github.com/expressjs/express/pull/5946) #### New Contributors - [@agadzinski93](https://redirect.github.com/agadzinski93) made their first contribution in [https://github.com/expressjs/express/pull/5946](https://redirect.github.com/expressjs/express/pull/5946) **Full Changelog**: https://github.com/expressjs/express/compare/4.20.0...4.21.0 ### [`v4.20.0`](https://redirect.github.com/expressjs/express/blob/HEAD/History.md#4200--2024-09-10) [Compare Source](https://redirect.github.com/expressjs/express/compare/4.19.2...4.20.0) \========== - deps: serve-static@0.16.0 - Remove link renderization in html while redirecting - deps: send@0.19.0 - Remove link renderization in html while redirecting - deps: body-parser@0.6.0 - add `depth` option to customize the depth level in the parser - IMPORTANT: The default `depth` level for parsing URL-encoded data is now `32` (previously was `Infinity`) - Remove link renderization in html while using `res.redirect` - deps: path-to-regexp@0.1.10 - Adds support for named matching groups in the routes using a regex - Adds backtracking protection to parameters without regexes defined - deps: encodeurl@~2.0.0 - Removes encoding of `\`, `|`, and `^` to align better with URL spec - Deprecate passing `options.maxAge` and `options.expires` to `res.clearCookie` - Will be ignored in v5, clearCookie will set a cookie with an expires in the past to instruct clients to delete the cookie ### [`v4.19.2`](https://redirect.github.com/expressjs/express/blob/HEAD/History.md#4192--2024-03-25) [Compare Source](https://redirect.github.com/expressjs/express/compare/4.19.1...4.19.2) \========== - Improved fix for open redirect allow list bypass ### [`v4.19.1`](https://redirect.github.com/expressjs/express/blob/HEAD/History.md#4191--2024-03-20) [Compare Source](https://redirect.github.com/expressjs/express/compare/4.19.0...4.19.1) \========== - Allow passing non-strings to res.location with new encoding handling checks ### [`v4.19.0`](https://redirect.github.com/expressjs/express/blob/HEAD/History.md#4190--2024-03-20) [Compare Source](https://redirect.github.com/expressjs/express/compare/4.18.3...4.19.0) \========== - Prevent open redirect allow list bypass due to encodeurl - deps: cookie@0.6.0 ### [`v4.18.3`](https://redirect.github.com/expressjs/express/blob/HEAD/History.md#4183--2024-02-29) [Compare Source](https://redirect.github.com/expressjs/express/compare/4.18.2...4.18.3) \========== - Fix routing requests without method - deps: body-parser@1.20.2 - Fix strict json error message on Node.js 19+ - deps: content-type@~1.0.5 - deps: raw-body@2.5.2 - deps: cookie@0.6.0 - Add `partitioned` option ### [`v4.18.2`](https://redirect.github.com/expressjs/express/blob/HEAD/History.md#4182--2022-10-08) [Compare Source](https://redirect.github.com/expressjs/express/compare/4.18.1...4.18.2) \=================== - Fix regression routing a large stack in a single route - deps: body-parser@1.20.1 - deps: qs@6.11.0 - perf: remove unnecessary object clone - deps: qs@6.11.0 ### [`v4.18.1`](https://redirect.github.com/expressjs/express/blob/HEAD/History.md#4181--2022-04-29) [Compare Source](https://redirect.github.com/expressjs/express/compare/4.18.0...4.18.1) \=================== - Fix hanging on large stack of sync routes ### [`v4.18.0`](https://redirect.github.com/expressjs/express/blob/HEAD/History.md#4180--2022-04-25) [Compare Source](https://redirect.github.com/expressjs/express/compare/4.17.3...4.18.0) \=================== - Add "root" option to `res.download` - Allow `options` without `filename` in `res.download` - Deprecate string and non-integer arguments to `res.status` - Fix behavior of `null`/`undefined` as `maxAge` in `res.cookie` - Fix handling very large stacks of sync middleware - Ignore `Object.prototype` values in settings through `app.set`/`app.get` - Invoke `default` with same arguments as types in `res.format` - Support proper 205 responses using `res.send` - Use `http-errors` for `res.format` error - deps: body-parser@1.20.0 - Fix error message for json parse whitespace in `strict` - Fix internal error when inflated body exceeds limit - Prevent loss of async hooks context - Prevent hanging when request already read - deps: depd@2.0.0 - deps: http-errors@2.0.0 - deps: on-finished@2.4.1 - deps: qs@6.10.3 - deps: raw-body@2.5.1 - deps: cookie@0.5.0 - Add `priority` option - Fix `expires` option to reject invalid dates - deps: depd@2.0.0 - Replace internal `eval` usage with `Function` constructor - Use instance methods on `process` to check for listeners - deps: finalhandler@1.2.0 - Remove set content headers that break response - deps: on-finished@2.4.1 - deps: statuses@2.0.1 - deps: on-finished@2.4.1 - Prevent loss of async hooks context - deps: qs@6.10.3 - deps: send@0.18.0 - Fix emitted 416 error missing headers property - Limit the headers removed for 304 response - deps: depd@2.0.0 - deps: destroy@1.2.0 - deps: http-errors@2.0.0 - deps: on-finished@2.4.1 - deps: statuses@2.0.1 - deps: serve-static@1.15.0 - deps: send@0.18.0 - deps: statuses@2.0.1 - Remove code 306 - Rename `425 Unordered Collection` to standard `425 Too Early` ### [`v4.17.3`](https://redirect.github.com/expressjs/express/blob/HEAD/History.md#4173--2022-02-16) [Compare Source](https://redirect.github.com/expressjs/express/compare/4.17.2...4.17.3) \=================== - deps: accepts@~1.3.8 - deps: mime-types@~2.1.34 - deps: negotiator@0.6.3 - deps: body-parser@1.19.2 - deps: bytes@3.1.2 - deps: qs@6.9.7 - deps: raw-body@2.4.3 - deps: cookie@0.4.2 - deps: qs@6.9.7 - Fix handling of `__proto__` keys - pref: remove unnecessary regexp for trust proxy ### [`v4.17.2`](https://redirect.github.com/expressjs/express/blob/HEAD/History.md#4172--2021-12-16) [Compare Source](https://redirect.github.com/expressjs/express/compare/4.17.1...4.17.2) \=================== - Fix handling of `undefined` in `res.jsonp` - Fix handling of `undefined` when `"json escape"` is enabled - Fix incorrect middleware execution with unanchored `RegExp`s - Fix `res.jsonp(obj, status)` deprecation message - Fix typo in `res.is` JSDoc - deps: body-parser@1.19.1 - deps: bytes@3.1.1 - deps: http-errors@1.8.1 - deps: qs@6.9.6 - deps: raw-body@2.4.2 - deps: safe-buffer@5.2.1 - deps: type-is@~1.6.18 - deps: content-disposition@0.5.4 - deps: safe-buffer@5.2.1 - deps: cookie@0.4.1 - Fix `maxAge` option to reject invalid values - deps: proxy-addr@~2.0.7 - Use `req.socket` over deprecated `req.connection` - deps: forwarded@0.2.0 - deps: ipaddr.js@1.9.1 - deps: qs@6.9.6 - deps: safe-buffer@5.2.1 - deps: send@0.17.2 - deps: http-errors@1.8.1 - deps: ms@2.1.3 - pref: ignore empty http tokens - deps: serve-static@1.14.2 - deps: send@0.17.2 - deps: setprototypeof@1.2.0 ### [`v4.17.1`](https://redirect.github.com/expressjs/express/blob/HEAD/History.md#4171--2019-05-25) [Compare Source](https://redirect.github.com/expressjs/express/compare/4.17.0...4.17.1) \=================== - Revert "Improve error message for `null`/`undefined` to `res.status`" ### [`v4.17.0`](https://redirect.github.com/expressjs/express/blob/HEAD/History.md#4170--2019-05-16) [Compare Source](https://redirect.github.com/expressjs/express/compare/4.16.4...4.17.0) \=================== - Add `express.raw` to parse bodies into `Buffer` - Add `express.text` to parse bodies into string - Improve error message for non-strings to `res.sendFile` - Improve error message for `null`/`undefined` to `res.status` - Support multiple hosts in `X-Forwarded-Host` - deps: accepts@~1.3.7 - deps: body-parser@1.19.0 - Add encoding MIK - Add petabyte (`pb`) support - Fix parsing array brackets after index - deps: bytes@3.1.0 - deps: http-errors@1.7.2 - deps: iconv-lite@0.4.24 - deps: qs@6.7.0 - deps: raw-body@2.4.0 - deps: type-is@~1.6.17 - deps: content-disposition@0.5.3 - deps: cookie@0.4.0 - Add `SameSite=None` support - deps: finalhandler@~1.1.2 - Set stricter `Content-Security-Policy` header - deps: parseurl@~1.3.3 - deps: statuses@~1.5.0 - deps: parseurl@~1.3.3 - deps: proxy-addr@~2.0.5 - deps: ipaddr.js@1.9.0 - deps: qs@6.7.0 - Fix parsing array brackets after index - deps: range-parser@~1.2.1 - deps: send@0.17.1 - Set stricter CSP header in redirect & error responses - deps: http-errors@~1.7.2 - deps: mime@1.6.0 - deps: ms@2.1.1 - deps: range-parser@~1.2.1 - deps: statuses@~1.5.0 - perf: remove redundant `path.normalize` call - deps: serve-static@1.14.1 - Set stricter CSP header in redirect response - deps: parseurl@~1.3.3 - deps: send@0.17.1 - deps: setprototypeof@1.1.1 - deps: statuses@~1.5.0 - Add `103 Early Hints` - deps: type-is@~1.6.18 - deps: mime-types@~2.1.24 - perf: prevent internal `throw` on invalid type

expressjs/session (express-session)

### [`v1.18.1`](https://redirect.github.com/expressjs/session/blob/HEAD/HISTORY.md#1181--2024-10-08) [Compare Source](https://redirect.github.com/expressjs/session/compare/v1.18.0...v1.18.1) \========== - deps: cookie@0.7.2 - Fix object assignment of `hasOwnProperty` - deps: cookie@0.7.1 - Allow leading dot for domain - Although not permitted in the spec, some users expect this to work and user agents ignore the leading dot according to spec - Add fast path for `serialize` without options, use `obj.hasOwnProperty` when parsing - deps: cookie@0.7.0 - perf: parse cookies ~10% faster - fix: narrow the validation of cookies to match RFC6265 - fix: add `main` to `package.json` for rspack ### [`v1.18.0`](https://redirect.github.com/expressjs/session/blob/HEAD/HISTORY.md#1180--2024-01-28) [Compare Source](https://redirect.github.com/expressjs/session/compare/v1.17.3...v1.18.0) \=================== - Add debug log for pathname mismatch - Add `partitioned` to `cookie` options - Add `priority` to `cookie` options - Fix handling errors from setting cookie - Support any type in `secret` that `crypto.createHmac` supports - deps: cookie@0.6.0 - Fix `expires` option to reject invalid dates - perf: improve default decode speed - perf: remove slow string split in parse - deps: cookie-signature@1.0.7 ### [`v1.17.3`](https://redirect.github.com/expressjs/session/blob/HEAD/HISTORY.md#1173--2022-05-11) [Compare Source](https://redirect.github.com/expressjs/session/compare/v1.17.2...v1.17.3) \=================== - Fix resaving already-saved new session at end of request - deps: cookie@0.4.2 ### [`v1.17.2`](https://redirect.github.com/expressjs/session/blob/HEAD/HISTORY.md#1172--2021-05-19) [Compare Source](https://redirect.github.com/expressjs/session/compare/v1.17.1...v1.17.2) \=================== - Fix `res.end` patch to always commit headers - deps: cookie@0.4.1 - deps: safe-buffer@5.2.1 ### [`v1.17.1`](https://redirect.github.com/expressjs/session/blob/HEAD/HISTORY.md#1171--2020-04-16) [Compare Source](https://redirect.github.com/expressjs/session/compare/v1.17.0...v1.17.1) \=================== - Fix internal method wrapping error on failed reloads ### [`v1.17.0`](https://redirect.github.com/expressjs/session/blob/HEAD/HISTORY.md#1170--2019-10-10) [Compare Source](https://redirect.github.com/expressjs/session/compare/v1.16.2...v1.17.0) \=================== - deps: cookie@0.4.0 - Add `SameSite=None` support - deps: safe-buffer@5.2.0 ### [`v1.16.2`](https://redirect.github.com/expressjs/session/blob/HEAD/HISTORY.md#1162--2019-06-12) [Compare Source](https://redirect.github.com/expressjs/session/compare/v1.16.1...v1.16.2) \=================== - Fix restoring `cookie.originalMaxAge` when store returns `Date` - deps: parseurl@~1.3.3 ### [`v1.16.1`](https://redirect.github.com/expressjs/session/blob/HEAD/HISTORY.md#1161--2019-04-11) [Compare Source](https://redirect.github.com/expressjs/session/compare/v1.16.0...v1.16.1) \=================== - Fix error passing `data` option to `Cookie` constructor - Fix uncaught error from bad session data ### [`v1.16.0`](https://redirect.github.com/expressjs/session/blob/HEAD/HISTORY.md#1160--2019-04-10) [Compare Source](https://redirect.github.com/expressjs/session/compare/v1.15.6...v1.16.0) \=================== - Catch invalid `cookie.maxAge` value earlier - Deprecate setting `cookie.maxAge` to a `Date` object - Fix issue where `resave: false` may not save altered sessions - Remove `utils-merge` dependency - Use `safe-buffer` for improved Buffer API - Use `Set-Cookie` as cookie header name for compatibility - deps: depd@~2.0.0 - Replace internal `eval` usage with `Function` constructor - Use instance methods on `process` to check for listeners - perf: remove argument reassignment - deps: on-headers@~1.0.2 - Fix `res.writeHead` patch missing return value

gruntjs/grunt (grunt)

### [`v1.6.1`](https://redirect.github.com/gruntjs/grunt/releases/tag/v1.6.1) [Compare Source](https://redirect.github.com/gruntjs/grunt/compare/v1.6.0...v1.6.1) - Changelog updates [`72f6f03`](https://redirect.github.com/gruntjs/grunt/commit/72f6f03) - Merge pull request [#1755](https://redirect.github.com/gruntjs/grunt/issues/1755) from gruntjs/rm-dep [`8d4c183`](https://redirect.github.com/gruntjs/grunt/commit/8d4c183) - Add recursive [`1c7d483`](https://redirect.github.com/gruntjs/grunt/commit/1c7d483) - Merge pull request [#1756](https://redirect.github.com/gruntjs/grunt/issues/1756) from gruntjs/downgrade-glob [`2d4fd38`](https://redirect.github.com/gruntjs/grunt/commit/2d4fd38) - Downgrade glob [`902db7c`](https://redirect.github.com/gruntjs/grunt/commit/902db7c) - Fix syntax [`494f243`](https://redirect.github.com/gruntjs/grunt/commit/494f243) - remove mkdirp [`b01389e`](https://redirect.github.com/gruntjs/grunt/commit/b01389e) - remove dep on rimraf and mkdirp [`0072510`](https://redirect.github.com/gruntjs/grunt/commit/0072510) ### [`v1.6.0`](https://redirect.github.com/gruntjs/grunt/releases/tag/v1.6.0) [Compare Source](https://redirect.github.com/gruntjs/grunt/compare/v1.5.3...v1.6.0) - Merge pull request [#1750](https://redirect.github.com/gruntjs/grunt/issues/1750) from gruntjs/dep-update-jan28 [`2805dc3`](https://redirect.github.com/gruntjs/grunt/commit/2805dc3) - README updates [`3f1e423`](https://redirect.github.com/gruntjs/grunt/commit/3f1e423) - Bump to 16 [`8fd096d`](https://redirect.github.com/gruntjs/grunt/commit/8fd096d) - Update more deps [`42c5f95`](https://redirect.github.com/gruntjs/grunt/commit/42c5f95) - Bump eslint and node version [`1d88050`](https://redirect.github.com/gruntjs/grunt/commit/1d88050) ### [`v1.5.3`](https://redirect.github.com/gruntjs/grunt/releases/tag/v1.5.3) [Compare Source](https://redirect.github.com/gruntjs/grunt/compare/v1.5.2...v1.5.3) - Merge pull request [#1745](https://redirect.github.com/gruntjs/grunt/issues/1745) from gruntjs/fix-copy-op [`572d79b`](https://redirect.github.com/gruntjs/grunt/commit/572d79b) - Patch up race condition in symlink copying. [`58016ff`](https://redirect.github.com/gruntjs/grunt/commit/58016ff) - Merge pull request [#1746](https://redirect.github.com/gruntjs/grunt/issues/1746) from JamieSlome/patch-1 [`0749e1d`](https://redirect.github.com/gruntjs/grunt/commit/0749e1d) - Create SECURITY.md [`69b7c50`](https://redirect.github.com/gruntjs/grunt/commit/69b7c50) ### [`v1.5.2`](https://redirect.github.com/gruntjs/grunt/releases/tag/v1.5.2) [Compare Source](https://redirect.github.com/gruntjs/grunt/compare/v1.5.1...v1.5.2) - Update Changelog [`7f15fd5`](https://redirect.github.com/gruntjs/grunt/commit/7f15fd5) - Merge pull request [#1743](https://redirect.github.com/gruntjs/grunt/issues/1743) from gruntjs/cleanup-link [`b0ec6e1`](https://redirect.github.com/gruntjs/grunt/commit/b0ec6e1) - Clean up link handling [`433f91b`](https://redirect.github.com/gruntjs/grunt/commit/433f91b) ### [`v1.5.1`](https://redirect.github.com/gruntjs/grunt/releases/tag/v1.5.1) [Compare Source](https://redirect.github.com/gruntjs/grunt/compare/v1.5.0...v1.5.1) - Merge pull request [#1742](https://redirect.github.com/gruntjs/grunt/issues/1742) from gruntjs/update-symlink-test [`ad22608`](https://redirect.github.com/gruntjs/grunt/commit/ad22608) - Fix symlink test [`0652305`](https://redirect.github.com/gruntjs/grunt/commit/0652305) ### [`v1.5.0`](https://redirect.github.com/gruntjs/grunt/releases/tag/v1.5.0) [Compare Source](https://redirect.github.com/gruntjs/grunt/compare/v1.4.1...v1.5.0) - Updated changelog [`b2b2c2b`](https://redirect.github.com/gruntjs/grunt/commit/b2b2c2b) - Merge pull request [#1740](https://redirect.github.com/gruntjs/grunt/issues/1740) from gruntjs/update-deps-22-10 [`3eda6ae`](https://redirect.github.com/gruntjs/grunt/commit/3eda6ae) - Update testing matrix [`47d32de`](https://redirect.github.com/gruntjs/grunt/commit/47d32de) - More updates [`2e9161c`](https://redirect.github.com/gruntjs/grunt/commit/2e9161c) - Remove console log [`04b960e`](https://redirect.github.com/gruntjs/grunt/commit/04b960e) - Update dependencies, tests... [`aad3d45`](https://redirect.github.com/gruntjs/grunt/commit/aad3d45) - Merge pull request [#1736](https://redirect.github.com/gruntjs/grunt/issues/1736) from justlep/main [`fdc7056`](https://redirect.github.com/gruntjs/grunt/commit/fdc7056) - support .cjs extension [`e35fe54`](https://redirect.github.com/gruntjs/grunt/commit/e35fe54) ### [`v1.4.1`](https://redirect.github.com/gruntjs/grunt/releases/tag/v1.4.1) [Compare Source](https://redirect.github.com/gruntjs/grunt/compare/v1.4.0...v1.4.1) - Update Changelog [`e7625e5`](https://redirect.github.com/gruntjs/grunt/commit/e7625e5) - Merge pull request [#1731](https://redirect.github.com/gruntjs/grunt/issues/1731) from gruntjs/update-options [`5d67e34`](https://redirect.github.com/gruntjs/grunt/commit/5d67e34) - Fix ci install [`d13bf88`](https://redirect.github.com/gruntjs/grunt/commit/d13bf88) - Switch to Actions [`08896ae`](https://redirect.github.com/gruntjs/grunt/commit/08896ae) - Update grunt-known-options [`eee0673`](https://redirect.github.com/gruntjs/grunt/commit/eee0673) - Add note about a breaking change [`1b6e288`](https://redirect.github.com/gruntjs/grunt/commit/1b6e288) ### [`v1.4.0`](https://redirect.github.com/gruntjs/grunt/releases/tag/v1.4.0) [Compare Source](https://redirect.github.com/gruntjs/grunt/compare/v1.3.0...v1.4.0) - Merge pull request [#1728](https://redirect.github.com/gruntjs/grunt/issues/1728) from gruntjs/update-deps-changelog [`63b2e89`](https://redirect.github.com/gruntjs/grunt/commit/63b2e89) - Update changelog and util dep [`106ed17`](https://redirect.github.com/gruntjs/grunt/commit/106ed17) - Merge pull request [#1727](https://redirect.github.com/gruntjs/grunt/issues/1727) from gruntjs/update-deps-apr [`49de70b`](https://redirect.github.com/gruntjs/grunt/commit/49de70b) - Update CLI and nodeunit [`47cf8b6`](https://redirect.github.com/gruntjs/grunt/commit/47cf8b6) - Merge pull request [#1722](https://redirect.github.com/gruntjs/grunt/issues/1722) from gruntjs/update-through [`e86db1c`](https://redirect.github.com/gruntjs/grunt/commit/e86db1c) - Update deps [`4952368`](https://redirect.github.com/gruntjs/grunt/commit/4952368) ### [`v1.3.0`](https://redirect.github.com/gruntjs/grunt/releases/tag/v1.3.0) [Compare Source](https://redirect.github.com/gruntjs/grunt/compare/v1.2.1...v1.3.0) - Merge pull request [#1720](https://redirect.github.com/gruntjs/grunt/issues/1720) from gruntjs/update-changelog-deps [`faab6be`](https://redirect.github.com/gruntjs/grunt/commit/faab6be) - Update Changelog and legacy-util dependency [`520fedb`](https://redirect.github.com/gruntjs/grunt/commit/520fedb) - Merge pull request [#1719](https://redirect.github.com/gruntjs/grunt/issues/1719) from gruntjs/yaml-refactor [`7e669ac`](https://redirect.github.com/gruntjs/grunt/commit/7e669ac) - Switch to use `safeLoad` for loading YML files via `file.readYAML`. [`e350cea`](https://redirect.github.com/gruntjs/grunt/commit/e350cea) - Merge pull request [#1718](https://redirect.github.com/gruntjs/grunt/issues/1718) from gruntjs/legacy-log-bumo [`7125f49`](https://redirect.github.com/gruntjs/grunt/commit/7125f49) - Bump legacy-log [`00d5907`](https://redirect.github.com/gruntjs/grunt/commit/00d5907) ### [`v1.2.1`](https://redirect.github.com/gruntjs/grunt/releases/tag/v1.2.1) [Compare Source](https://redirect.github.com/gruntjs/grunt/compare/v1.2.0...v1.2.1) - Changelog update [`ae11839`](https://redirect.github.com/gruntjs/grunt/commit/ae11839) - Merge pull request [#1715](https://redirect.github.com/gruntjs/grunt/issues/1715) from sibiraj-s/remove-path-is-absolute [`9d23cb6`](https://redirect.github.com/gruntjs/grunt/commit/9d23cb6) - Remove path-is-absolute dependency [`e789b1f`](https://redirect.github.com/gruntjs/grunt/commit/e789b1f) ### [`v1.2.0`](https://redirect.github.com/gruntjs/grunt/releases/tag/v1.2.0) [Compare Source](https://redirect.github.com/gruntjs/grunt/compare/v1.1.0...v1.2.0) - Allow usage of grunt plugins that are located in any location that is visible to Node.js and NPM, instead of node_modules directly inside package that have a dev dependency to these plugin[https://github.com/gruntjs/grunt/pull/1677](https://redirect.github.com/gruntjs/grunt/pull/1677)nt/pull/1677) - Removed coffeescript from dependencies. To ease transition, if coffeescript is still around, Grunt will attempt to load it. If it is not, and the user loads a CoffeeScript file, Grunt will print a useful error indicating that the coffeescript package should be installed as a dev dependency. This is considerably more user-friendly than dropping the require entirely, but doing so is feasible with the latest grunt-cli as users may simply use grunt --require [https://github.com/gruntjs/grunt/pull/1675](https://redirect.github.com/gruntjs/grunt/pull/1675)thub.com/gruntjs/grunt/pull/1675) - Exposes Grunt Option keys for ease of use. ([https://github.com/gruntjs/grunt/pull/1570](https://redirect.github.com/gruntjs/grunt/pull/1570)1570) - Avoiding infinite loop on very long command names. ([https://github.com/gruntjs/grunt/pull/1697](https://redirect.github.com/gruntjs/grunt/pull/1697)1697) ### [`v1.1.0`](https://redirect.github.com/gruntjs/grunt/releases/tag/v1.1.0) [Compare Source](https://redirect.github.com/gruntjs/grunt/compare/v1.0.4...v1.1.0) - Update to mkdirp ~1.0.3 - Only support versions of Node >= 8 ### [`v1.0.4`](https://redirect.github.com/gruntjs/grunt/compare/v1.0.3...v1.0.4) [Compare Source](https://redirect.github.com/gruntjs/grunt/compare/v1.0.3...v1.0.4)

gruntjs/grunt-cli (grunt-cli)

### [`v1.5.0`](https://redirect.github.com/gruntjs/grunt-cli/releases/tag/v1.5.0) [Compare Source](https://redirect.github.com/gruntjs/grunt-cli/compare/v1.4.3...v1.5.0) - package version for np [`7f5c4e8`](https://redirect.github.com/gruntjs/grunt-cli/commit/7f5c4e8) - v1.5.0 ([#157](https://redirect.github.com/gruntjs/grunt-cli/issues/157)) [`bd5917d`](https://redirect.github.com/gruntjs/grunt-cli/commit/bd5917d) - Update from nopt 4.x to nopt 5.0.0 ([#156](https://redirect.github.com/gruntjs/grunt-cli/issues/156)) [`f33cc6a`](https://redirect.github.com/gruntjs/grunt-cli/commit/f33cc6a) - Updated dependencies on v8flags to latest, v8flags no longer uses an md5 hash. ([#154](https://redirect.github.com/gruntjs/grunt-cli/issues/154)) [`670029a`](https://redirect.github.com/gruntjs/grunt-cli/commit/670029a) ### [`v1.4.3`](https://redirect.github.com/gruntjs/grunt-cli/releases/tag/v1.4.3) [Compare Source](https://redirect.github.com/gruntjs/grunt-cli/compare/v1.4.2...v1.4.3) - Fix preload option ([#147](https://redirect.github.com/gruntjs/grunt-cli/issues/147)) [`07f3b0d`](https://redirect.github.com/gruntjs/grunt-cli/commit/07f3b0d) - Revert liftoff ([#144](https://redirect.github.com/gruntjs/grunt-cli/issues/144)) [`4d691e2`](https://redirect.github.com/gruntjs/grunt-cli/commit/4d691e2) - Revert liftoff changes due to [https://github.com/gruntjs/grunt/issues/1725](https://redirect.github.com/gruntjs/grunt/issues/1725) ([#143](https://redirect.github.com/gruntjs/grunt-cli/issues/143)) [`e820858`](https://redirect.github.com/gruntjs/grunt-cli/commit/e820858) ### [`v1.4.2`](https://redirect.github.com/gruntjs/grunt-cli/releases/tag/v1.4.2) [Compare Source](https://redirect.github.com/gruntjs/grunt-cli/compare/v1.4.1...v1.4.2) - Revert liftoff ([#144](https://redirect.github.com/gruntjs/grunt-cli/issues/144)) [`4d691e2`](https://redirect.github.com/gruntjs/grunt-cli/commit/4d691e2) - Revert liftoff changes due to [https://github.com/gruntjs/grunt/issues/1725](https://redirect.github.com/gruntjs/grunt/issues/1725) ([#143](https://redirect.github.com/gruntjs/grunt-cli/issues/143)) [`e820858`](https://redirect.github.com/gruntjs/grunt-cli/commit/e820858) ### [`v1.4.1`](https://redirect.github.com/gruntjs/grunt-cli/releases/tag/v1.4.1) [Compare Source](https://redirect.github.com/gruntjs/grunt-cli/compare/v1.4.0...v1.4.1) - Revert liftoff changes due to [https://github.com/gruntjs/grunt/issues/1725](https://redirect.github.com/gruntjs/grunt/issues/1725) ([#143](https://redirect.github.com/gruntjs/grunt-cli/issues/143)) [`e820858`](https://redirect.github.com/gruntjs/grunt-cli/commit/e820858) ### [`v1.4.0`](https://redirect.github.com/gruntjs/grunt-cli/releases/tag/v1.4.0) [Compare Source](https://redirect.github.com/gruntjs/grunt-cli/compare/v1.3.2...v1.4.0) - Update changelog [`bbc4400`](https://redirect.github.com/gruntjs/grunt-cli/commit/bbc4400) - Ignore package-lock [`3fa5bf6`](https://redirect.github.com/gruntjs/grunt-cli/commit/3fa5bf6) - Update deps, switch to actions ([#141](https://redirect.github.com/gruntjs/grunt-cli/issues/141)) [`c271173`](https://redirect.github.com/gruntjs/grunt-cli/commit/c271173) - Bump deps, required node version and ci ([#137](https://redirect.github.com/gruntjs/grunt-cli/issues/137)) [`84ebcb8`](https://redirect.github.com/gruntjs/grunt-cli/commit/84ebcb8)

jshint/jshint (jshint)

### [`v2.13.6`](https://redirect.github.com/jshint/jshint/blob/HEAD/CHANGELOG.md#2136-2022-11-11) [Compare Source](https://redirect.github.com/jshint/jshint/compare/2.13.5...2.13.6) ##### Bug Fixes - Allow initializing const bindings to undef ([fedaf6f](https://redirect.github.com/jshint/jshint/commit/fedaf6f)) - Correct error message ([03b1a06](https://redirect.github.com/jshint/jshint/commit/03b1a06)) ### [`v2.13.5`](https://redirect.github.com/jshint/jshint/blob/HEAD/CHANGELOG.md#2135-2022-07-08) [Compare Source](https://redirect.github.com/jshint/jshint/compare/2.13.4...2.13.5) ##### Bug Fixes - Tolerate late definition of async function ([#3618](https://redirect.github.com/jshint/jshint/issues/3618)) ([5c256a2](https://redirect.github.com/jshint/jshint/commit/5c256a2)) ### [`v2.13.4`](https://redirect.github.com/jshint/jshint/blob/HEAD/CHANGELOG.md#2134-2022-01-24) [Compare Source](https://redirect.github.com/jshint/jshint/compare/2.13.3...2.13.4) ##### Bug Fixes - Remove shelljs ([eb4609a](https://redirect.github.com/jshint/jshint/commit/eb4609a)) ### [`v2.13.3`](https://redirect.github.com/jshint/jshint/blob/HEAD/CHANGELOG.md#2133-2022-01-05) [Compare Source](https://redirect.github.com/jshint/jshint/compare/2.13.2...2.13.3) ##### Bug Fixes - Recognize ES2020 globals ([b1426f1](https://redirect.github.com/jshint/jshint/commit/b1426f1)) ### [`v2.13.2`](https://redirect.github.com/jshint/jshint/blob/HEAD/CHANGELOG.md#2132-2021-12-27) [Compare Source](https://redirect.github.com/jshint/jshint/compare/2.13.1...2.13.2) ##### Bug Fixes - Add missing well-known globals ([#3582](https://redirect.github.com/jshint/jshint/issues/3582)) ([cc1adf6](https://redirect.github.com/jshint/jshint/commit/cc1adf6)) - add URL for node in src/vars.js ([#3570](https://redirect.github.com/jshint/jshint/issues/3570)) ([ca06e6a](https://redirect.github.com/jshint/jshint/commit/ca06e6a)) - change escape-sequence handler for double quotes (") ([#3566](https://redirect.github.com/jshint/jshint/issues/3566)) ([75e48b7](https://redirect.github.com/jshint/jshint/commit/75e48b7)) - Limit "Too many Errors" (E043) to errors only ([#3562](https://redirect.github.com/jshint/jshint/issues/3562)) ([4a681b9](https://redirect.github.com/jshint/jshint/commit/4a681b9)) - Tolerate keyword in object shorthand ([057b1c6](https://redirect.github.com/jshint/jshint/commit/057b1c6)) - Tolerate unterminated nullish coalescing ([ecae54a](https://redirect.github.com/jshint/jshint/commit/ecae54a)) ### [`v2.13.1`](https://redirect.github.com/jshint/jshint/blob/HEAD/CHANGELOG.md#2131-2021-08-10) [Compare Source](https://redirect.github.com/jshint/jshint/compare/2.13.0...2.13.1) ##### Bug Fixes - Allow invoking result of optional chaining ([71ec395](https://redirect.github.com/jshint/jshint/commit/71ec395)) - Allow optional chaining call as satement ([11dc0a6](https://redirect.github.com/jshint/jshint/commit/11dc0a6)) - Tolerate dangling NewExpression ([7c890aa](https://redirect.github.com/jshint/jshint/commit/7c890aa)) ### [`v2.13.0`](https://redirect.github.com/jshint/jshint/blob/HEAD/CHANGELOG.md#2130-2021-05-30) [Compare Source](https://redirect.github.com/jshint/jshint/compare/2.12.0...2.13.0) ##### Bug Fixes - Allow comma expression in MemberExpression ([f05c8d1](https://redirect.github.com/jshint/jshint/commit/f05c8d1)) - Consider all exported bindings "used" ([90228b7](https://redirect.github.com/jshint/jshint/commit/90228b7)) - Correct interpretation of ImportSpecifier ([72a8102](https://redirect.github.com/jshint/jshint/commit/72a8102)) - Correct location for error ([e831188](https://redirect.github.com/jshint/jshint/commit/e831188)) - Correct location reported for directive ([ee6aa68](https://redirect.github.com/jshint/jshint/commit/ee6aa68)) - Detect duplicate exported bindings ([916c230](https://redirect.github.com/jshint/jshint/commit/916c230)) - Don't warn when Function() is used without 'new'. ([#3531](https://redirect.github.com/jshint/jshint/issues/3531)) ([c13c5cc](https://redirect.github.com/jshint/jshint/commit/c13c5cc)) - Don't warn when RegExp() is used without 'new'. ([#3529](https://redirect.github.com/jshint/jshint/issues/3529)) ([c18a6e4](https://redirect.github.com/jshint/jshint/commit/c18a6e4)) - Enforce restrictions on `new` operand ([c2719eb](https://redirect.github.com/jshint/jshint/commit/c2719eb)) - Graduate BigInt support to `esversion: 11` ([553f816](https://redirect.github.com/jshint/jshint/commit/553f816)) - Improve declaration parsing ([a9bdc93](https://redirect.github.com/jshint/jshint/commit/a9bdc93)) - Report early reference with warning ([2c1a5f8](https://redirect.github.com/jshint/jshint/commit/2c1a5f8)) - Support RegExp Unicode property escapes ([e7fa785](https://redirect.github.com/jshint/jshint/commit/e7fa785)) ##### Features - Add support for "export \* as ns from" ([c46f464](https://redirect.github.com/jshint/jshint/commit/c46f464)) - Add support for `import.meta` ([73d7e0d](https://redirect.github.com/jshint/jshint/commit/73d7e0d)) - Add support for dynamic import ([6bfcaed](https://redirect.github.com/jshint/jshint/commit/6bfcaed)) - Add support for optional chaining ([b125dbe](https://redirect.github.com/jshint/jshint/commit/b125dbe)) - Implement support for nullish coalescing ([f50b14d](https://redirect.github.com/jshint/jshint/commit/f50b14d))

remy/nodemon (nodemon)

### [`v1.19.4`](https://redirect.github.com/remy/nodemon/releases/tag/v1.19.4) [Compare Source](https://redirect.github.com/remy/nodemon/compare/v1.19.3...v1.19.4) ##### Bug Fixes - Replace `jade` references by `pug` ([7d6c1a8](https://redirect.github.com/remy/nodemon/commit/7d6c1a8)), closes [#1595](https://redirect.github.com/remy/nodemon/issues/1595) ### [`v1.19.3`](https://redirect.github.com/remy/nodemon/releases/tag/v1.19.3) [Compare Source](https://redirect.github.com/remy/nodemon/compare/v1.19.2...v1.19.3) ##### Bug Fixes - to avoid confusion like in [#1528](https://redirect.github.com/remy/nodemon/issues/1528), always report used extension ([eead311](https://redirect.github.com/remy/nodemon/commit/eead311)) ### [`v1.19.2`](https://redirect.github.com/remy/nodemon/releases/tag/v1.19.2) [Compare Source](https://redirect.github.com/remy/nodemon/compare/v1.19.1...v1.19.2) ##### Bug Fixes - langauge around "watching" ([#1591](https://redirect.github.com/remy/nodemon/issues/1591)) ([12b66cd](https://redirect.github.com/remy/nodemon/commit/12b66cd))

jashkenas/underscore (underscore)

### [`v1.13.7`](https://redirect.github.com/jashkenas/underscore/compare/1.13.6...1.13.7) [Compare Source](https://redirect.github.com/jashkenas/underscore/compare/1.13.6...1.13.7) ### [`v1.13.6`](https://redirect.github.com/jashkenas/underscore/compare/1.13.5...1.13.6) [Compare Source](https://redirect.github.com/jashkenas/underscore/compare/1.13.5...1.13.6) ### [`v1.13.5`](https://redirect.github.com/jashkenas/underscore/compare/1.13.4...1.13.5) [Compare Source](https://redirect.github.com/jashkenas/underscore/compare/1.13.4...1.13.5) ### [`v1.13.4`](https://redirect.github.com/jashkenas/underscore/compare/1.13.3...1.13.4) [Compare Source](https://redirect.github.com/jashkenas/underscore/compare/1.13.3...1.13.4) ### [`v1.13.3`](https://redirect.github.com/jashkenas/underscore/compare/1.13.2...1.13.3) [Compare Source](https://redirect.github.com/jashkenas/underscore/compare/1.13.2...1.13.3) ### [`v1.13.2`](https://redirect.github.com/jashkenas/underscore/compare/1.13.1...1.13.2) [Compare Source](https://redirect.github.com/jashkenas/underscore/compare/1.13.1...1.13.2) ### [`v1.13.1`](https://redirect.github.com/jashkenas/underscore/compare/1.13.0...1.13.1) [Compare Source](https://redirect.github.com/jashkenas/underscore/compare/1.13.0...1.13.1) ### [`v1.13.0`](https://redirect.github.com/jashkenas/underscore/compare/1.12.1...1.13.0) [Compare Source](https://redirect.github.com/jashkenas/underscore/compare/1.12.1...1.13.0) ### [`v1.12.1`](https://redirect.github.com/jashkenas/underscore/compare/1.12.0...1.12.1) [Compare Source](https://redirect.github.com/jashkenas/underscore/compare/1.12.0...1.12.1) ### [`v1.12.0`](https://redirect.github.com/jashkenas/underscore/compare/1.11.0...1.12.0) [Compare Source](https://redirect.github.com/jashkenas/underscore/compare/1.11.0...1.12.0) ### [`v1.11.0`](https://redirect.github.com/jashkenas/underscore/compare/1.10.2...1.11.0) [Compare Source](https://redirect.github.com/jashkenas/underscore/compare/1.10.2...1.11.0) ### [`v1.10.2`](https://redirect.github.com/jashkenas/underscore/compare/1.10.1...1.10.2) [Compare Source](https://redirect.github.com/jashkenas/underscore/compare/1.10.1...1.10.2) ### [`v1.10.1`](https://redirect.github.com/jashkenas/underscore/compare/1.10.0...1.10.1) [Compare Source](https://redirect.github.com/jashkenas/underscore/compare/1.10.0...1.10.1) ### [`v1.10.0`](https://redirect.github.com/jashkenas/underscore/compare/1.9.2...1.10.0) [Compare Source](https://redirect.github.com/jashkenas/underscore/compare/1.9.2...1.10.0) ### [`v1.9.2`](https://redirect.github.com/jashkenas/underscore/compare/1.9.1...1.9.2) [Compare Source](https://redirect.github.com/jashkenas/underscore/compare/1.9.1...1.9.2)

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

[ ] If you want to rebase/retry this PR, check this box

MendDemoOrg / VulnerableJS

Update Mend: high confidence minor and patch dependency updates #3

Release Notes

Configuration