Closed decko closed 2 years ago
This PR bumps ejs version to 3.1.8 to avoid CVE-2022-29078 which affects any version < 3.1.6.
I just run the unit tests of the package (npm test) and all tests passed. Don't know if any other test is needed for this.
npm test
master
Closing it since seems that ejs was bumped in the master branch.
ejs
Description
This PR bumps ejs version to 3.1.8 to avoid CVE-2022-29078 which affects any version < 3.1.6.
Testing
I just run the unit tests of the package (
npm test
) and all tests passed. Don't know if any other test is needed for this.Checklist
master