Update dependency nunjucks to v3.2.4 #4

mend-for-github-com · 2022-07-06T02:35:39Z

This PR contains the following updates:

Package	Type	Update	Change
nunjucks	dependencies	patch	`3.2.1` -> `3.2.4`

By merging this PR, the issue #8 will be automatically resolved and closed:

Severity	CVSS Score	CVE
Medium	6.1	CVE-2023-2142
Medium	5.3	CVE-2020-28469

Release Notes

mozilla/nunjucks (nunjucks)

`v3.2.4`

Compare Source

HTML encode backslashes when expressions are passed through the escape
filter (including when this is done automatically with autoescape). Merge
of #1437.

`v3.2.3`

Compare Source

Add support for nested attributes on
sort filter;
respect throwOnUndefined if sort attribute is undefined.
Add base arg to
int filter.
Move chokidar to peerDependencies and mark it optional in peerDependenciesMeta.
Fix prototype pollution issue for template variables. Merge of
#1330; fixes
#1331. Thanks
ChenKS12138!

`v3.2.2`

Compare Source

Add select and
reject filters.
Merge of #1278 and
#1279; fixes
#282. Thanks
ogonkov!
Fix precompile binary script TypeError: name.replace is not a function.
Fixes #1295.
Add support for nested attributes on
groupby filter;
respect throwOnUndefined option, if the groupby attribute is undefined.
Merge of #1276; fixes
#1198. Thanks
ogonkov!
Fix bug that prevented errors in included templates from being raised when
rendering templates synchronously. Fixes
#1272.
The indent filter no longer appends an additional newline. Fixes
#1231.

If you want to rebase/retry this PR, check this box

mend-for-github-com bot added the security fix Security fix generated by Mend label Jul 6, 2022

mend-for-github-com bot changed the title ~~Update dependency nunjucks to v3.2.2~~ Update dependency nunjucks to v3.2.3 Jul 25, 2022

mend-for-github-com bot force-pushed the whitesource-remediate/nunjucks-3.x-lockfile branch from c782698 to d791b7e Compare July 25, 2022 13:05

mend-for-github-com bot changed the title ~~Update dependency nunjucks to v3.2.3~~ Update dependency nunjucks to v3.2.2 Jul 28, 2022

mend-for-github-com bot force-pushed the whitesource-remediate/nunjucks-3.x-lockfile branch from d791b7e to e1a6ad0 Compare July 28, 2022 02:13

mend-for-github-com bot force-pushed the whitesource-remediate/nunjucks-3.x-lockfile branch 13 times, most recently from 866c18a to 481919a Compare February 8, 2023 15:10

mend-for-github-com bot force-pushed the whitesource-remediate/nunjucks-3.x-lockfile branch 2 times, most recently from f069cdb to 6b77ae7 Compare February 13, 2023 16:27

mend-for-github-com bot changed the title ~~Update dependency nunjucks to v3.2.2~~ Update dependency nunjucks to v3.2.2 - autoclosed Mar 26, 2023

mend-for-github-com bot closed this Mar 26, 2023

mend-for-github-com bot deleted the whitesource-remediate/nunjucks-3.x-lockfile branch March 26, 2023 12:00

mend-for-github-com bot changed the title ~~Update dependency nunjucks to v3.2.2 - autoclosed~~ Update dependency nunjucks to v3.2.2 Mar 31, 2023

mend-for-github-com bot reopened this Mar 31, 2023

mend-for-github-com bot restored the whitesource-remediate/nunjucks-3.x-lockfile branch March 31, 2023 05:45

Update dependency nunjucks to v3.2.4

d5e2e17

mend-for-github-com bot changed the title ~~Update dependency nunjucks to v3.2.2~~ Update dependency nunjucks to v3.2.4 Apr 23, 2023

mend-for-github-com bot force-pushed the whitesource-remediate/nunjucks-3.x-lockfile branch from 6b77ae7 to d5e2e17 Compare April 23, 2023 14:31

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Update dependency nunjucks to v3.2.4 #4

Update dependency nunjucks to v3.2.4 #4

mend-for-github-com bot commented Jul 6, 2022 •

edited

Loading

Update dependency nunjucks to v3.2.4 #4

Are you sure you want to change the base?

Update dependency nunjucks to v3.2.4 #4

Conversation

mend-for-github-com bot commented Jul 6, 2022 • edited Loading

Release Notes

v3.2.4

v3.2.3

v3.2.2

mend-for-github-com bot commented Jul 6, 2022 •

edited

Loading

`v3.2.4`

`v3.2.3`

`v3.2.2`