Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump dustjs-linkedin from 2.5.0 to 3.0.0 #189

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Sep 13, 2023

Bumps dustjs-linkedin from 2.5.0 to 3.0.0.

Release notes

Sourced from dustjs-linkedin's releases.

v3.0.0

What's Changed

New Contributors

Full Changelog: linkedin/dustjs@v2.7.2...v3.0.0

v2.7.2

Notable Changes

Filters

Dust filter functions previously took one argument, the string to filter. They now accept a second argument, which is the current context.

Helpers

Dust helpers can now return primitives.

Helpers act like references or sections depending on if they have a body. When they have no body, they act like a reference and look in params.filters for filters to use. When they have a body, they act like a section. You can return thenables and streams normally.

{@return value="" filters="|s" /} 
{@return value=""}{.} World{/return}

v2.7.1

Notable Changes

dust.config.cache

In previous versions, setting dust.config.cache to false would blow away the entire cache on every render. Now, setting it to false just prevents new templates from being added and cached templates from being used. Setting it back to true means that previously-cached templates will be ready to use.

dust.onLoad

We have added a callback(null, compiledTemplate) signature to dust.onLoad.

Calling the onLoad callback with a compiled template function will use this template to satisfy the load request. The template is not automatically registered under any name when passed to the callback, so the onLoad function should handle registration as it needs.

You can still call the callback with uncompiled template source and Dust will compile and store it, while respecting your dust.config.cache setting.

... (truncated)

Changelog

Sourced from dustjs-linkedin's changelog.

v3.0.0 (2021/10/20 22:56 +00:00)

list (2016/12/08 20:15 +00:00)

v2.7.4 (2016/09/13 02:52 +00:00)

  • #744 Don't use instanceof to determine if a Context is a Context. Instead use a flag on the instance itself so it can survive object merges. (@​sethkinast)

v2.6.3 (2016/07/26 18:03 +00:00)

v2.7.2 (2015/06/08 20:41 +00:00)

  • #673 Pass the current context to filters (@​sethkinast)
  • #676 If a Promise is resolved with an array, iterate over it instead of rendering the whole array at once.

Closes #674 (@​sethkinast)

  • #647 Allow helpers to return primitives

Previously returning a primitive would crash rendering with no way to recover. You can still return a Chunk and do more complex work if you need to.

Helpers act like references or sections depending on if they have a body. When they have no body, they act like a reference and look in params.filters for filters to use. When they have a body, they act like a section. You can return thenables and streams normally.

{@​return value="" filters="|s" /} {@​return value=""}{.} World{/return}

Closes #645 (@​sethkinast)

  • #664 Be slightly pickier about what Dust thinks a Stream is.

Closes #663 (@​sethkinast)

Closes #649 Closes #602 Closes #642 (@​sethkinast)

  • #660 Grammar: s/char/character/ to avoid using a reserved name

Closes #659 (@​sethkinast)

v2.7.1 (2015/04/30 20:32 +00:00)

  • #655 Update CommonJS example to make use of new onLoad behavior (@​sethkinast)
  • #653 Fix array iteration when context is undefined (@​sethkinast)
  • #641 Add a cb(null, compiledTemplate) signature to dust.onLoad

Calling the onLoad callback with a compiled template function will use this template to satisfy the load request. The template is not automatically registered under any name when passed to the callback, so the onLoad function should handle registration as it needs.

dust.cache behavior has been changed slightly. Before, setting it to false would blow away the entire cache on every render. Now, setting it to false just prevents new templates from being added and cached templates from being used, but if it's set to true again previously-cached templates will be ready to use. (@​sethkinast)

v2.7.0 (2015/04/17 23:23 +00:00)

  • dust.render and dust.stream now accept a compiled template function in addition to a template name.
  • dust.compile no longer requires a template name, and will compile an anonymous template without one (so --name is no longer required for dustc either)
  • dust.load is removed from the public API
  • dust.renderSource is moved to the compiler, so it's only included in dust-full now (Fixes #412)
  • dust.compileFn is moved to the compiler, so it's only included in dust-full now
  • add dust.isTemplateFn
  • add dust.config.cache = true, set to false to disable caching and load templates again every time (Fixes #451)
  • add dust.config.cjs = false, set to true to compile templates as CommonJS modules
  • add --cjs flag to dustc
  • Move a bunch of exposed compiler stuff under dust.compiler (but leave it exposed until 2.8) (@​sethkinast)

... (truncated)

Commits
  • 2e8795c Release v3.0.0
  • 6f98371 merge from 2.7
  • db6d8b9 Merge pull request #805 from sumeetkakkar/fix/proto-pollution
  • ddb6523 fix for prototype pollution vulnerability
  • 822222e Release v2.7.5
  • d0f955d Decrease security vulnerabilities by upgrading cli dependency (#754 #748)
  • e0e25f7 Merge pull request #756 from danactive/master
  • eeb1c17 Decrease security vulnerabilities by upgrading cli dependency (#754 #748)
  • d485a72 {?exists} and {^exists} resolve Promises and check if the result exists (#753)
  • 9a08207 Release v2.7.4
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by krakenjs, a new releaser for dustjs-linkedin since your current version.


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [dustjs-linkedin](https://github.com/linkedin/dustjs) from 2.5.0 to 3.0.0.
- [Release notes](https://github.com/linkedin/dustjs/releases)
- [Changelog](https://github.com/linkedin/dustjs/blob/master/CHANGELOG.md)
- [Commits](linkedin/dustjs@v2.5.0...v3.0.0)

---
updated-dependencies:
- dependency-name: dustjs-linkedin
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Sep 13, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants