Update dependency nunjucks to v3.2.4 #3

mend-for-github-com · 2022-07-06T02:35:08Z

This PR contains the following updates:

Package	Type	Update	Change
nunjucks	dependencies	patch	`3.2.1` -> `3.2.4`

By merging this PR, the issue #5 will be automatically resolved and closed:

Severity	CVSS Score	CVE
Medium	6.1	CVE-2023-2142
Medium	5.3	CVE-2020-28469

Release Notes

mozilla/nunjucks (nunjucks)

`v3.2.4`

Compare Source

HTML encode backslashes when expressions are passed through the escape
filter (including when this is done automatically with autoescape). Merge
of #1437.

`v3.2.3`

Compare Source

Add support for nested attributes on
sort filter;
respect throwOnUndefined if sort attribute is undefined.
Add base arg to
int filter.
Move chokidar to peerDependencies and mark it optional in peerDependenciesMeta.
Fix prototype pollution issue for template variables. Merge of
#1330; fixes
#1331. Thanks
ChenKS12138!

`v3.2.2`

Compare Source

Add select and
reject filters.
Merge of #1278 and
#1279; fixes
#282. Thanks
ogonkov!
Fix precompile binary script TypeError: name.replace is not a function.
Fixes #1295.
Add support for nested attributes on
groupby filter;
respect throwOnUndefined option, if the groupby attribute is undefined.
Merge of #1276; fixes
#1198. Thanks
ogonkov!
Fix bug that prevented errors in included templates from being raised when
rendering templates synchronously. Fixes
#1272.
The indent filter no longer appends an additional newline. Fixes
#1231.

If you want to rebase/retry this PR, check this box

mend-for-github-com bot added the security fix Security fix generated by Mend label Jul 6, 2022

mend-for-github-com bot changed the title ~~Update dependency nunjucks to v3.2.2~~ Update dependency nunjucks to v3.2.3 Jul 25, 2022

mend-for-github-com bot force-pushed the whitesource-remediate/nunjucks-3.x-lockfile branch from d84857b to 1a866db Compare July 25, 2022 13:04

mend-for-github-com bot changed the title ~~Update dependency nunjucks to v3.2.3~~ Update dependency nunjucks to v3.2.2 Jul 28, 2022

mend-for-github-com bot force-pushed the whitesource-remediate/nunjucks-3.x-lockfile branch from 1a866db to accf9d4 Compare July 28, 2022 02:13

mend-for-github-com bot force-pushed the whitesource-remediate/nunjucks-3.x-lockfile branch 9 times, most recently from 4d3315b to 2c46c04 Compare February 10, 2023 01:52

mend-for-github-com bot force-pushed the whitesource-remediate/nunjucks-3.x-lockfile branch 6 times, most recently from e4b4ed0 to 0c0c2d5 Compare February 13, 2023 16:30

mend-for-github-com bot changed the title ~~Update dependency nunjucks to v3.2.2~~ Update dependency nunjucks to v3.2.2 - autoclosed Mar 26, 2023

mend-for-github-com bot closed this Mar 26, 2023

mend-for-github-com bot deleted the whitesource-remediate/nunjucks-3.x-lockfile branch March 26, 2023 12:00

mend-for-github-com bot changed the title ~~Update dependency nunjucks to v3.2.2 - autoclosed~~ Update dependency nunjucks to v3.2.2 Mar 31, 2023

mend-for-github-com bot reopened this Mar 31, 2023

mend-for-github-com bot restored the whitesource-remediate/nunjucks-3.x-lockfile branch March 31, 2023 05:48

Update dependency nunjucks to v3.2.4

5897b31

mend-for-github-com bot force-pushed the whitesource-remediate/nunjucks-3.x-lockfile branch from 0c0c2d5 to 5897b31 Compare April 23, 2023 14:30

mend-for-github-com bot changed the title ~~Update dependency nunjucks to v3.2.2~~ Update dependency nunjucks to v3.2.4 Apr 23, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Update dependency nunjucks to v3.2.4 #3

Update dependency nunjucks to v3.2.4 #3

mend-for-github-com bot commented Jul 6, 2022 •

edited

Loading

Update dependency nunjucks to v3.2.4 #3

Are you sure you want to change the base?

Update dependency nunjucks to v3.2.4 #3

Conversation

mend-for-github-com bot commented Jul 6, 2022 • edited Loading

Release Notes

v3.2.4

v3.2.3

v3.2.2

mend-for-github-com bot commented Jul 6, 2022 •

edited

Loading

`v3.2.4`

`v3.2.3`

`v3.2.2`