search

Sultan-saas / lvp-simple4

0 stars 0 forks source link

Update dependency ejs to v3 #93

Open mend-for-github-com[bot] opened 6 months ago

mend-for-github-com[bot] commented 6 months ago

This PR contains the following updates:

Package Type Update Change
ejs dependencies major 0.8.8 -> 3.1.10

By merging this PR, the issue #14 will be automatically resolved and closed:

Severity CVSS Score CVE
Critical Critical 9.8 CVE-2017-1000228
High High 8.8 CVE-2024-33883

Release Notes

mde/ejs (ejs) ### [`v3.1.10`](https://redirect.github.com/mde/ejs/releases/tag/v3.1.10) [Compare Source](https://redirect.github.com/mde/ejs/compare/v3.1.9...v3.1.10) Version 3.1.10 ### [`v3.1.9`](https://redirect.github.com/mde/ejs/releases/tag/v3.1.9) [Compare Source](https://redirect.github.com/mde/ejs/compare/v3.1.8...v3.1.9) Version 3.1.9 ### [`v3.1.8`](https://redirect.github.com/mde/ejs/releases/tag/v3.1.8) [Compare Source](https://redirect.github.com/mde/ejs/compare/v3.1.7...v3.1.8) Version 3.1.8 ### [`v3.1.7`](https://redirect.github.com/mde/ejs/releases/tag/v3.1.7) [Compare Source](https://redirect.github.com/mde/ejs/compare/v3.1.6...v3.1.7) Version 3.1.7 ### [`v3.1.6`](https://redirect.github.com/mde/ejs/releases/tag/v3.1.6) [Compare Source](https://redirect.github.com/mde/ejs/compare/v3.1.5...v3.1.6) Version 3.1.6 ### [`v3.1.5`](https://redirect.github.com/mde/ejs/releases/tag/v3.1.5) Version 3.1.5 ### [`v3.1.3`](https://redirect.github.com/mde/ejs/compare/v3.1.2...v3.1.3) [Compare Source](https://redirect.github.com/mde/ejs/compare/v3.1.2...v3.1.3) ### [`v3.1.2`](https://redirect.github.com/mde/ejs/compare/v3.0.2...v3.1.2) [Compare Source](https://redirect.github.com/mde/ejs/compare/v3.0.2...v3.1.2) ### [`v3.0.2`](https://redirect.github.com/mde/ejs/compare/v3.0.1...v3.0.2) [Compare Source](https://redirect.github.com/mde/ejs/compare/v3.0.1...v3.0.2) ### [`v3.0.1`](https://redirect.github.com/mde/ejs/compare/v2.7.4...v3.0.1) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.7.4...v3.0.1) ### [`v2.7.4`](https://redirect.github.com/mde/ejs/releases/tag/v2.7.4) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.7.3...v2.7.4) ##### Bug fixes - Fixed Node 4 support, which broke in v2.7.3 (https://github.com/mde/ejs/commit/5e42d6cef15ae6f2c7d29ef55a455e8e49b5e76e, [@​mde](https://redirect.github.com/mde)) ### [`v2.7.3`](https://redirect.github.com/mde/ejs/releases/tag/v2.7.3) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.7.2...v2.7.3) ##### Bug fixes - Made the post-install message more discreet by following the example of [opencollective-postinstall](https://redirect.github.com/opencollective/opencollective-postinstall) (https://github.com/mde/ejs/commit/228d8e45b7ced2afd3e596c13d44aed464e57e43, [@​mde](https://redirect.github.com/mde)) ### [`v2.7.2`](https://redirect.github.com/mde/ejs/releases/tag/v2.7.2) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.7.1...v2.7.2) ##### Features - Added support for destructuring locals ([#​452](https://redirect.github.com/mde/ejs/issues/452), [@​ExE-Boss](https://redirect.github.com/ExE-Boss)) - Added support for disabling legacy `include` directives ([#​458](https://redirect.github.com/mde/ejs/issues/458), [#​459](https://redirect.github.com/mde/ejs/issues/459), [@​ExE-Boss](https://redirect.github.com/ExE-Boss)) - Compiled functions are now shown in the debugger ([#​456](https://redirect.github.com/mde/ejs/issues/456), [@​S2-](https://redirect.github.com/S2-)) - `function.name` is now set to the file base name in environments that support this ([#​466](https://redirect.github.com/mde/ejs/issues/466), [@​ExE-Boss](https://redirect.github.com/ExE-Boss)) ##### Bug Fixes - The error message when `async != true` now correctly mention the existence of the `async` option ([#​460](https://redirect.github.com/mde/ejs/issues/460), [@​ExE-Boss](https://redirect.github.com/ExE-Boss)) - Improved performance of HTML output generation ([#​470](https://redirect.github.com/mde/ejs/issues/470), [@​nwoltman](https://redirect.github.com/nwoltman)) ### [`v2.7.1`](https://redirect.github.com/mde/ejs/releases/tag/v2.7.1) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.6.2...v2.7.1) ##### Deprecated: - Added deprecation notice for use of `require.extensions` ([@​mde](https://redirect.github.com/mde)) ### [`v2.6.2`](https://redirect.github.com/mde/ejs/releases/tag/v2.6.2) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.6.1...v2.6.2) - Correctly pass custom escape function to includes ([@​alecgibson](https://redirect.github.com/alecgibson)) - Fixes for rmWhitespace ([@​nwoltman](https://redirect.github.com/nwoltman)) - Examples for client-side EJS compiled with Express middleware ([@​mjgs](https://redirect.github.com/mjgs)) - Make Template constructor public ([@​ThisNameWasTaken](https://redirect.github.com/ThisNameWasTaken)) - Added `remove` function to cache ([@​S2-](https://redirect.github.com/S2-)) - Recognize both 'Nix and Windows absolute paths ([@​mde](https://redirect.github.com/mde)) ### [`v2.6.1`](https://redirect.github.com/mde/ejs/compare/v2.5.9...v2.6.1) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.5.9...v2.6.1) ### [`v2.5.9`](https://redirect.github.com/mde/ejs/compare/v2.5.8...v2.5.9) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.5.8...v2.5.9) ### [`v2.5.8`](https://redirect.github.com/mde/ejs/releases/tag/v2.5.8) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.5.7...v2.5.8) - Add filename to error when include file cannot be found ([@​Leon](https://redirect.github.com/Leon)) - Node v9 in CI ([@​Thomas](https://redirect.github.com/Thomas)) - Fixed special case for Express caching ([@​mde](https://redirect.github.com/mde)) - Added Promise/async-await support to `renderFile` ([@​mde](https://redirect.github.com/mde)) - Added notes on IDE support to README ([@​Betanu701](https://redirect.github.com/Betanu701)) ### [`v2.5.7`](https://redirect.github.com/mde/ejs/releases/tag/v2.5.7) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.5.6...v2.5.7) - Pass configured escape function to `rethrow` ([@​straker](https://redirect.github.com/straker)) - Added vulnerabilities info into README ([@​mde](https://redirect.github.com/mde)) - Avoid creating function object in hot execution path ([@​User4martin](https://redirect.github.com/User4martin)) - Added benchmark ([@​User4martin](https://redirect.github.com/User4martin)) - Tests for looped includes ([@​User4martin](https://redirect.github.com/User4martin)) ### [`v2.5.6`](https://redirect.github.com/mde/ejs/releases/tag/v2.5.6) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.5.5...v2.5.6) - Use configured escape function for filenames in errors ([@​mde](https://redirect.github.com/mde)) - Make file-loader configurable to allow template pre-processing ([@​hacke2](https://redirect.github.com/hacke2)) - Improved `renderFile` performance ([@​nwoltman](https://redirect.github.com/nwoltman)) ### [`v2.5.5`](https://redirect.github.com/mde/ejs/releases/tag/v2.5.5) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.5.4...v2.5.5) - Allow 'filename' for opts-in-data, but sanitize when rendered ([@​mde](https://redirect.github.com/mde)) ### [`v2.5.4`](https://redirect.github.com/mde/ejs/releases/tag/v2.5.4) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.5.3...v2.5.4) - Blackist more options from opts-in-data ([@​mde](https://redirect.github.com/mde)) - Allow trailing comments in output modes ([@​mde](https://redirect.github.com/mde)) - Added 'name' attribute for easy identification ([@​designfrontier](https://redirect.github.com/designfrontier)) ### [`v2.5.3`](https://redirect.github.com/mde/ejs/releases/tag/v2.5.3) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.5.2...v2.5.3) - Blackist 'root' option from opts-in-data ([@​mde](https://redirect.github.com/mde)) ### [`v2.5.2`](https://redirect.github.com/mde/ejs/releases/tag/v2.5.2) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.5.1...v2.5.2) - Added link to EJS Playground ([@​RyanZim](https://redirect.github.com/RyanZim)) - Revert express auto 'root' option ([@​RyanZim](https://redirect.github.com/RyanZim)) ### [`v2.5.1`](https://redirect.github.com/mde/ejs/releases/tag/v2.5.1) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.4.2...v2.5.1) - Output literal `%>` with `%%>` (Roy Miloh) - Allow setting project root for includes ([@​cnwhy](https://redirect.github.com/cnwhy)) - UMD support for the browser ([@​RyanZim](https://redirect.github.com/RyanZim)) - Exported `escapeXML` method to allow manual escaping of output - Tests for strict mode ([@​RyanZim](https://redirect.github.com/RyanZim), [@​mde](https://redirect.github.com/mde)) - Added ESLint for project source code ([@​mde](https://redirect.github.com/mde)) - Whitespace slurp in preprocessor include ([@​mmis1000](https://redirect.github.com/mmis1000)) - Improved line-number handling in errors ([@​Spikef](https://redirect.github.com/Spikef)) - Various doc improvements ([@​RyanZim](https://redirect.github.com/RyanZim), Ionică Bizău) ### [`v2.4.2`](https://redirect.github.com/mde/ejs/releases/tag/v2.4.2) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.4.1...v2.4.2) - Added LICENSE file to release package - Various documentation improvements ([@​RyanZim](https://redirect.github.com/RyanZim)) - Better line-numbers in errors ([@​dgofman](https://redirect.github.com/dgofman)) ### [`v2.4.1`](https://redirect.github.com/mde/ejs/releases/tag/v2.4.1) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.3.4...v2.4.1) - Strict-mode support ([@​mde](https://redirect.github.com/mde)) - Express 4 support ([@​mde](https://redirect.github.com/mde)) - Configurable localsName option ([@​mde](https://redirect.github.com/mde)) ### [`v2.3.4`](https://redirect.github.com/mde/ejs/releases/tag/v2.3.4) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.3.3...v2.3.4) - Whitespace slurp tag syntax -- `<%_ _%>` ([@​andidev](https://redirect.github.com/andidev)) ### [`v2.3.3`](https://redirect.github.com/mde/ejs/compare/v2.3.2...v2.3.3) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.3.2...v2.3.3) ### [`v2.3.2`](https://redirect.github.com/mde/ejs/compare/v2.3.1...v2.3.2) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.3.1...v2.3.2) ### [`v2.3.1`](https://redirect.github.com/mde/ejs/compare/v2.2.4...v2.3.1) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.2.4...v2.3.1) ### [`v2.2.4`](https://redirect.github.com/mde/ejs/releases/tag/v2.2.4) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.2.3...v2.2.4) - Ability to customize name of the locals object with `ejs.localsName` ([@​mde](https://redirect.github.com/mde)) - Ability to override `resolveInclude` for include-path lookup ([@​olivierkaisin](https://redirect.github.com/olivierkaisin)) - Only bundle rethrow() in client scripts when compileDebug is enabled ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Copy `_with` from locals object to options object ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Removed deprecation warnings ([@​mde](https://redirect.github.com/mde)) - Significantly increased performance ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Defer execution for `renderFile` callback, ensure async ([@​TimothyGu](https://redirect.github.com/TimothyGu)) ### [`v2.2.3`](https://redirect.github.com/mde/ejs/releases/tag/v2.2.3) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.2.2...v2.2.3) - Better filtering for deprecation notice when called from Express ([@​mde](https://redirect.github.com/mde)) ### [`v2.2.2`](https://redirect.github.com/mde/ejs/releases/tag/v2.2.2) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.2.1...v2.2.2) - Fix handling of variable output containing semicolons ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Fix included files caching ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Simplified caching routine ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Filter out deprecation warning for `renderFile` when called from Express ([@​mde](https://redirect.github.com/mde)) ### [`v2.2.1`](https://redirect.github.com/mde/ejs/releases/tag/v2.2.1) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.1.4...v2.2.1) - 4x faster HTML escaping function, especially beneficial if you use lots of escaped locals ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Up to 4x faster compiled functions in addition to above ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Fix `//` in an expanded string ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Fix literal mode without an end tag ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Fix setting options to renderFile() through the legacy 3-argument interface (as is the case for Express.js) ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Added version string to exported object for use in browsers ([@​mde](https://redirect.github.com/mde)) ### [`v2.1.4`](https://redirect.github.com/mde/ejs/releases/tag/v2.1.4) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.1.3...v2.1.4) - Fix harmony mode ([@​mde](https://redirect.github.com/mde)) ### [`v2.1.3`](https://redirect.github.com/mde/ejs/releases/tag/v2.1.3): Version 2.1.3 [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.1.2...v2.1.3) - Fix `debug` option ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Fix two consecutive tags together ([@​TimothyGu](https://redirect.github.com/TimothyGu)) ### [`v2.1.2`](https://redirect.github.com/mde/ejs/releases/tag/v2.1.2): Version 2.1.2 [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.1.1...v2.1.2) - Fix `scope` option handling - Improve testing coverage ([@​TimothyGu](https://redirect.github.com/TimothyGu)) ### [`v2.1.1`](https://redirect.github.com/mde/ejs/releases/tag/v2.1.1) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.0.8...v2.1.1) - Add `_with` option to control whether or not to use `with() {}` constructs ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Revert hack for Etherpad Lite ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Do not claim node < 0.10.0 support ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Pin dependencies more loosely ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Fix client function generation without using locals ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Fix error case where the callback be called twice ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Improve test coverage ([@​mde](https://redirect.github.com/mde) & [@​TimothyGu](https://redirect.github.com/TimothyGu)) - Add `"use strict";` to all JS files ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Add a few more metadata fields to `package.json` ([@​TimothyGu](https://redirect.github.com/TimothyGu)) - Fix absolute path inclusion ([@​TimothyGu](https://redirect.github.com/TimothyGu)) ([#​11](https://redirect.github.com/mde/ejs/issues/11)) ### [`v2.0.8`](https://redirect.github.com/mde/ejs/releases/tag/v2.0.8): Version 2.0.8 [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.0.7...v2.0.8) - Fix crash on missing file ### [`v2.0.7`](https://redirect.github.com/mde/ejs/compare/v2.0.6...v2.0.7) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.0.6...v2.0.7) ### [`v2.0.6`](https://redirect.github.com/mde/ejs/compare/v2.0.5...v2.0.6) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.0.5...v2.0.6) ### [`v2.0.5`](https://redirect.github.com/mde/ejs/compare/v2.0.4...v2.0.5) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.0.4...v2.0.5) ### [`v2.0.4`](https://redirect.github.com/mde/ejs/compare/v2.0.3...v2.0.4) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.0.3...v2.0.4) ### [`v2.0.3`](https://redirect.github.com/mde/ejs/compare/v2.0.2...v2.0.3) [Compare Source](https://redirect.github.com/mde/ejs/compare/v2.0.2...v2.0.3)