auth0 / node-samlp

SAML Protocol support for node (only IdP for now)
MIT License
136 stars 117 forks source link

Bump ejs to 3.1.8 #130

Closed decko closed 2 years ago

decko commented 2 years ago

Description

This PR bumps ejs version to 3.1.8 to avoid CVE-2022-29078 which affects any version < 3.1.6.

Testing

I just run the unit tests of the package (npm test) and all tests passed. Don't know if any other test is needed for this.

Checklist

decko commented 2 years ago

Closing it since seems that ejs was bumped in the master branch.