foundation / panini

A super simple flat file generator.
Other
592 stars 105 forks source link

[Snyk] Upgrade handlebars from 4.0.10 to 4.7.0 #208

Closed snyk-bot closed 4 years ago

snyk-bot commented 4 years ago

Snyk has created this PR to upgrade handlebars from 4.0.10 to 4.7.0.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


The recommended version fixes:

Severity Issue Exploit Maturity
Prototype Pollution
SNYK-JS-HANDLEBARS-534988
No Known Exploit
Arbitrary Code Execution
SNYK-JS-HANDLEBARS-534478
No Known Exploit
Denial of Service (DoS)
SNYK-JS-HANDLEBARS-480388
No Known Exploit
Prototype Pollution
SNYK-JS-HANDLEBARS-469063
No Known Exploit
Prototype Pollution
SNYK-JS-HANDLEBARS-174183
No Known Exploit
Prototype Pollution
SNYK-JS-HANDLEBARS-173692
No Known Exploit
Release notes
Package name: handlebars
  • 4.7.0 - 2020-01-10

    v4.7.0

  • 4.6.0 - 2020-01-08

    v4.6.0

  • 4.5.3 - 2019-11-18

    v4.5.3

  • 4.5.2 - 2019-11-13

    v4.5.2

  • 4.5.1 - 2019-10-29

    v4.5.1

  • 4.5.0 - 2019-10-28

    v4.5.0

  • 4.4.5 - 2019-10-20

    v4.4.5

  • 4.4.4 - 2019-10-20

    v4.4.4

  • 4.4.3 - 2019-10-08

    v4.4.3

  • 4.4.2 - 2019-10-02

    v4.4.2

  • 4.4.1 - 2019-10-02
  • 4.4.0 - 2019-09-29
  • 4.3.5 - 2019-10-02
  • 4.3.4 - 2019-09-28
  • 4.3.3 - 2019-09-27
  • 4.3.2 - 2019-09-26
  • 4.3.1 - 2019-09-24
  • 4.3.0 - 2019-09-24
  • 4.2.2 - 2019-10-02
  • 4.2.1 - 2019-09-20
  • 4.2.0 - 2019-09-03
  • 4.1.2 - 2019-04-13
  • 4.1.2-0 - 2019-08-25
  • 4.1.1 - 2019-03-16
  • 4.1.0 - 2019-02-07
  • 4.0.14 - 2019-04-13
  • 4.0.13 - 2019-02-07
  • 4.0.12 - 2018-09-04
  • 4.0.11 - 2017-10-17
  • 4.0.10 - 2017-05-21
from handlebars GitHub release notes
Commit messages
Package name: handlebars
  • 0d5c807 v4.7.0
  • 1f0834b Update release notes
  • 575d877 fix: use "logger" instead of console.error
  • 7af1c12 feat: default options for controlling proto access
  • 91a1b5d v4.6.0
  • 770d746 Update release notes
  • d7f0dcf refactor: fix typo in private test method
  • 187d611 test: add path to nodeJs when running test:bin
  • d337f40 test: show diff when test:bin fails
  • d03b6ec feat: access control to prototype properties via whitelist
  • 164b7ff chore: ignore .nyc_output
  • ac4655e chore: disable "dot-notation" rule
  • 14b621c test/style: remove or hide unused code in git.js, add tests
  • 1ec1737 test/style: refactor remaining grunt tasks to use promises instead of callbacks
  • 1ebce2b test/style: use nyc instead of istanbul, npm audit fix
  • 3a5b65e test/style: refactor parser task
  • dde108e test/style: refactor test-task to make it more readable
  • dc54952 chore: change eslint-rules for tasks/
  • d1fb07b Update (C) year in the LICENSE file
  • 04b1984 chore: try to fix saucelabs credentials (#1627)
  • c40d9f3 chore: active linting and formatting on commit
  • 8901c28 chore: fix task name in build
  • e97685e style: reformat all files using prettier
  • e913dc5 chore: restructure build commands
Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs