Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency handlebars to v4.0.12 #53

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Update dependency handlebars to v4.0.12 #53

wants to merge 1 commit into from

Conversation

dev-mend-for-github-com[bot]
Copy link

@dev-mend-for-github-com dev-mend-for-github-com bot commented Jan 12, 2025
edited
Loading

This PR contains the following updates:

Package Type Update Change
handlebars (source) dependencies patch 4.0.11 -> 4.0.12

By merging this PR, the issue #7 will be automatically resolved and closed:

Severity CVSS Score CVE Reachability
Critical Critical 9.8 CVE-2019-19919
High High 8.1 CVE-2019-20920
High High 7.5 CVE-2019-20922
High High 7.5 WS-2020-0450
High High 7.3 WS-2019-0064
Medium Medium 5.6 CVE-2021-23369
Medium Medium 5.6 CVE-2021-23383
Medium Medium 5.6 WS-2019-0103

By merging this PR, the issue #7 will be automatically resolved and closed:

Severity CVSS Score CVE Reachability
Critical Critical 9.8 CVE-2021-44906
Medium Medium 5.6 CVE-2020-7598

Release Notes

handlebars-lang/handlebars.js (handlebars)

v4.0.12

Compare Source

New features:

  • none

Various dependency updates

  • #​1464 - Bump versions of grunt-plugins to 1.x
  • #​1398 - Chore: updated various dev dependencies
  • upgrade uglify-js - d3d3942
  • Update grunt-eslint to 20.1.0 - 7729aa9
  • Update dependencies "async" to 2.5.0 and "source-map" to 0.6.1 (73d5637)

Bugfixes:

Removed obsolete code:

Compatibility notes:

  • No compatibility issues are to be expected

Commits

  • If you want to rebase/retry this PR, check this box

@dev-mend-for-github-com dev-mend-for-github-com bot added the security fix Security fix generated by Mend label Jan 12, 2025
@dev-mend-for-github-com dev-mend-for-github-com bot force-pushed the whitesource-remediate/handlebars-4.x-lockfile branch from a94fb13 to ee0df99 Compare January 14, 2025 09:19
@dev-mend-for-github-com dev-mend-for-github-com bot changed the title Update dependency handlebars to v4.5.3 Update dependency handlebars to v4.7.4 Jan 14, 2025
@dev-mend-for-github-com dev-mend-for-github-com bot changed the title Update dependency handlebars to v4.7.4 Update dependency handlebars to v4.0.12 Jan 20, 2025
@dev-mend-for-github-com dev-mend-for-github-com bot force-pushed the whitesource-remediate/handlebars-4.x-lockfile branch 2 times, most recently from 9529fe9 to 21c860c Compare January 23, 2025 20:42
@dev-mend-for-github-com dev-mend-for-github-com bot force-pushed the whitesource-remediate/handlebars-4.x-lockfile branch from 21c860c to fa2c126 Compare March 3, 2025 14:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
security fix Security fix generated by Mend
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants