Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

build(deps): bump the npm_and_yarn group across 1 directory with 47 updates #15

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Oct 13, 2024

Bumps the npm_and_yarn group with 28 updates in the / directory:

Package From To
dustjs-linkedin 2.5.0 3.0.0
ejs 1.0.0 3.1.10
express-fileupload 0.0.5 1.4.0
hbs 4.0.4 4.2.0
jquery 2.2.4 3.5.0
marked 0.3.5 4.0.10
moment 2.15.1 2.29.4
mongodb 3.5.9 3.5.10
mongoose 4.2.4 5.13.20
ms 0.7.3 2.1.3
express 4.12.4 4.21.1
humanize-ms 1.0.1 1.2.1
st 0.2.4 1.2.2
typeorm 0.2.24 0.3.0
validator 13.5.2 13.7.0
snyk 1.278.1 1.1064.0
ajv 6.10.2 6.12.6
cached-path-relative 1.0.2 1.1.0
ini 1.3.5 1.3.8
npmconf 0.0.24 2.1.3
diff 1.4.0 5.2.0
tap 11.1.5 21.0.1
elliptic 6.4.1 6.5.7
qs 2.2.4 6.13.0
body-parser 1.9.0 1.20.3
shell-quote 1.6.1 1.8.1
underscore 1.9.1 1.12.1
cfenv 1.2.2 1.2.4

Updates dustjs-linkedin from 2.5.0 to 3.0.0

Release notes

Sourced from dustjs-linkedin's releases.

v3.0.0

What's Changed

New Contributors

Full Changelog: linkedin/dustjs@v2.7.2...v3.0.0

v2.7.2

Notable Changes

Filters

Dust filter functions previously took one argument, the string to filter. They now accept a second argument, which is the current context.

Helpers

Dust helpers can now return primitives.

Helpers act like references or sections depending on if they have a body. When they have no body, they act like a reference and look in params.filters for filters to use. When they have a body, they act like a section. You can return thenables and streams normally.

{@return value="" filters="|s" /} 
{@return value=""}{.} World{/return}

v2.7.1

Notable Changes

dust.config.cache

In previous versions, setting dust.config.cache to false would blow away the entire cache on every render. Now, setting it to false just prevents new templates from being added and cached templates from being used. Setting it back to true means that previously-cached templates will be ready to use.

dust.onLoad

We have added a callback(null, compiledTemplate) signature to dust.onLoad.

Calling the onLoad callback with a compiled template function will use this template to satisfy the load request. The template is not automatically registered under any name when passed to the callback, so the onLoad function should handle registration as it needs.

You can still call the callback with uncompiled template source and Dust will compile and store it, while respecting your dust.config.cache setting.

... (truncated)

Changelog

Sourced from dustjs-linkedin's changelog.

v3.0.0 (2021/10/20 22:56 +00:00)

list (2016/12/08 20:15 +00:00)

v2.7.4 (2016/09/13 02:52 +00:00)

  • #744 Don't use instanceof to determine if a Context is a Context. Instead use a flag on the instance itself so it can survive object merges. (@​sethkinast)

v2.6.3 (2016/07/26 18:03 +00:00)

v2.7.2 (2015/06/08 20:41 +00:00)

  • #673 Pass the current context to filters (@​sethkinast)
  • #676 If a Promise is resolved with an array, iterate over it instead of rendering the whole array at once.

Closes #674 (@​sethkinast)

  • #647 Allow helpers to return primitives

Previously returning a primitive would crash rendering with no way to recover. You can still return a Chunk and do more complex work if you need to.

Helpers act like references or sections depending on if they have a body. When they have no body, they act like a reference and look in params.filters for filters to use. When they have a body, they act like a section. You can return thenables and streams normally.

{@​return value="" filters="|s" /} {@​return value=""}{.} World{/return}

Closes #645 (@​sethkinast)

  • #664 Be slightly pickier about what Dust thinks a Stream is.

Closes #663 (@​sethkinast)

Closes #649 Closes #602 Closes #642 (@​sethkinast)

  • #660 Grammar: s/char/character/ to avoid using a reserved name

Closes #659 (@​sethkinast)

v2.7.1 (2015/04/30 20:32 +00:00)

  • #655 Update CommonJS example to make use of new onLoad behavior (@​sethkinast)
  • #653 Fix array iteration when context is undefined (@​sethkinast)
  • #641 Add a cb(null, compiledTemplate) signature to dust.onLoad

Calling the onLoad callback with a compiled template function will use this template to satisfy the load request. The template is not automatically registered under any name when passed to the callback, so the onLoad function should handle registration as it needs.

dust.cache behavior has been changed slightly. Before, setting it to false would blow away the entire cache on every render. Now, setting it to false just prevents new templates from being added and cached templates from being used, but if it's set to true again previously-cached templates will be ready to use. (@​sethkinast)

v2.7.0 (2015/04/17 23:23 +00:00)

  • dust.render and dust.stream now accept a compiled template function in addition to a template name.
  • dust.compile no longer requires a template name, and will compile an anonymous template without one (so --name is no longer required for dustc either)
  • dust.load is removed from the public API
  • dust.renderSource is moved to the compiler, so it's only included in dust-full now (Fixes #412)
  • dust.compileFn is moved to the compiler, so it's only included in dust-full now
  • add dust.isTemplateFn
  • add dust.config.cache = true, set to false to disable caching and load templates again every time (Fixes #451)
  • add dust.config.cjs = false, set to true to compile templates as CommonJS modules
  • add --cjs flag to dustc
  • Move a bunch of exposed compiler stuff under dust.compiler (but leave it exposed until 2.8) (@​sethkinast)

... (truncated)

Commits
  • 2e8795c Release v3.0.0
  • 6f98371 merge from 2.7
  • db6d8b9 Merge pull request #805 from sumeetkakkar/fix/proto-pollution
  • ddb6523 fix for prototype pollution vulnerability
  • 822222e Release v2.7.5
  • d0f955d Decrease security vulnerabilities by upgrading cli dependency (#754 #748)
  • e0e25f7 Merge pull request #756 from danactive/master
  • eeb1c17 Decrease security vulnerabilities by upgrading cli dependency (#754 #748)
  • d485a72 {?exists} and {^exists} resolve Promises and check if the result exists (#753)
  • 9a08207 Release v2.7.4
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by krakenjs, a new releaser for dustjs-linkedin since your current version.


Updates ejs from 1.0.0 to 3.1.10

Release notes

Sourced from ejs's releases.

v3.1.10

Version 3.1.10

v3.1.9

Version 3.1.9

v3.1.8

Version 3.1.8

v3.1.7

Version 3.1.7

v3.1.6

Version 3.1.6

v3.1.5

Version 3.1.5

v3.0.2

No release notes provided.

v2.7.4

Bug fixes

v2.7.3

Bug fixes

v2.7.2

Features

Bug Fixes

  • The error message when async != true now correctly mention the existence of the async option (#460, @​ExE-Boss)
  • Improved performance of HTML output generation (#470, @​nwoltman)

v2.7.1

Deprecated:

  • Added deprecation notice for use of require.extensions (@​mde)

v2.6.2

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by mde, a new releaser for ejs since your current version.


Updates express-fileupload from 0.0.5 to 1.4.0

Release notes

Sourced from express-fileupload's releases.

v1.4.0

What's Changed

New Contributors

Full Changelog: richardgirges/express-fileupload@v1.3.1...v1.4.0

1.3.1

Updates

  • Have promiseCallback make callbacks and promises behave the same (#302)
  • Fix prototype pollution in utilities.js (#301)
  • Switch to CircleCI (ddf553060a1041c1f36a696b1ae8b52d24083140)
  • End support for Node versions < 12 (ab3d252a28c8eb1c003528fecc5e1ef38f8954c3)

1.2.1

Updates:

  • (Fix) Stopped additional responses from being sent if a limit handler exists (#264)
  • Unhandled promise rejection warning (#257)
  • Changed example (#255)
  • Passing a Buffer body will pollute req.body when used along with processNested (#291)

1.2.0

Bug Fixes

#241 Cleanup temporary files - @​nusu

1.1.10

Updates:

Additional prototype-pollution security fix when using processNested (#239)

1.1.9

Updates:

Second prototype pollution security vulnerability fix when using processNested (#236)

1.1.8

Updates:

Fixed prototype pollution security vulnerability when using processNested (#236)

1.1.7-alpha.4

Updates:

Fixes:

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by richardgirges, a new releaser for express-fileupload since your current version.


Updates hbs from 4.0.4 to 4.2.0

Changelog

Sourced from hbs's changelog.

4.2.0 / 2021-11-16

  • Add rename option to registerPartials
  • Ensure all partials are registered before rendering
  • Fix function context in async helpers
  • deps: walk@2.3.15

4.1.2 / 2021-04-15

  • deps: handlebars@4.7.7

4.1.1 / 2020-04-03

  • deps: handlebars@4.7.6

4.1.0 / 2020-01-14

  • deps: handlebars@4.5.3
    • Add handlebars.parseWithoutProcessing
    • Add support for iterable objects in #each helper
    • Block access to non-enumerable special properties on objects
    • Fix error when helper defined with array properties
    • Fix parsing of empty raw blocks
    • Fix work-around for constructor blocking
    • Validate arguments to #if, #unless and #with helpers

4.0.6 / 2019-10-09

  • deps: handlebars@4.3.5
    • Fix error object inheritance
    • Fix work-around for constructor blocking

4.0.5 / 2019-09-27

  • Fix async helpers not working when cache enabled
  • Fix handling of exceptions from layout
  • Fix handling of exceptions when cache enabled
  • deps: handlebars@4.3.3
    • Block calling helperMissing and blockHelperMissing from templates
    • Fix work-around for constructor blocking
  • deps: walk@2.3.14
Commits

Updates jquery from 2.2.4 to 3.5.0

Release notes

Sourced from jquery's releases.

jQuery 3.5.0 Released!

See the blog post: https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/ and the upgrade guide: https://jquery.com/upgrade-guide/3.5/

NOTE: Despite being a minor release, this update includes a breaking change that we had to make to fix a security issue ( CVE-2020-11022). Please follow the blog post & the upgrade guide for more details.

Commits
  • 7a0a850 3.5.0
  • 8570a08 Release: Update AUTHORS.txt
  • da3dd85 Ajax: Do not execute scripts for unsuccessful HTTP responses
  • 065143c Ajax: Overwrite s.contentType with content-type header value, if any
  • 1a4f10d Tests: Blacklist one focusin test in IE
  • 9e15d6b Event: Use only one focusin/out handler per matching window & document
  • 966a709 Manipulation: Skip the select wrapper for <option> outside of IE 9
  • 1d61fd9 Manipulation: Make jQuery.htmlPrefilter an identity function
  • 04bf577 Selector: Update Sizzle from 2.3.4 to 2.3.5
  • 7506c9c Build: Resolve Travis config warnings
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by mgol, a new releaser for jquery since your current version.


Updates marked from 0.3.5 to 4.0.10

Release notes

Sourced from marked's releases.

v4.0.10

4.0.10 (2022-01-13)

Bug Fixes

  • security: fix redos vulnerabilities (8f80657)

v4.0.9

4.0.9 (2022-01-06)

Bug Fixes

v4.0.8

4.0.8 (2021-12-19)

Bug Fixes

v4.0.7

4.0.7 (2021-12-09)

Bug Fixes

v4.0.6

4.0.6 (2021-12-02)

Bug Fixes

v4.0.5

4.0.5 (2021-11-25)

Bug Fixes

  • table after paragraph without blank line (#2298) (5714212)

v4.0.4

4.0.4 (2021-11-19)

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by tonybrix, a new releaser for marked since your current version.


Updates moment from 2.15.1 to 2.29.4

Changelog

Sourced from moment's changelog.

2.29.4

  • Release Jul 6, 2022
    • #6015 [bugfix] Fix ReDoS in preprocessRFC2822 regex

2.29.3 Full changelog

  • Release Apr 17, 2022
    • #5995 [bugfix] Remove const usage
    • #5990 misc: fix advisory link

2.29.2 See full changelog

  • Release Apr 3 2022

Address GHSA-8hfj-j24r-96c4

2.29.1 See full changelog

  • Release Oct 6, 2020

Updated deprecation message, bugfix in hi locale

2.29.0 See full changelog

  • Release Sept 22, 2020

New locales (es-mx, bn-bd). Minor bugfixes and locale improvements. More tests. Moment is in maintenance mode. Read more at this link: https://momentjs.com/docs/#/-project-status/

2.28.0 See full changelog

  • Release Sept 13, 2020

Fix bug where .format() modifies original instance, and locale updates

2.27.0 See full changelog

  • Release June 18, 2020

Added Turkmen locale, other locale improvements, slight TypeScript fixes

2.26.0 See full changelog

  • Release May 19, 2020

... (truncated)

Commits

Updates mongodb from 3.5.9 to 3.5.10

Release notes

Sourced from mongodb's releases.

v3.5.10

The MongoDB Node.js team is pleased to announce version 3.5.10 of the driver

NOTE: This will be the final release in the 3.5.x branch, please consider upgrading to 3.6.0

Release Highlights

TypeError: Cannot read property 'documents' of null

@​adrian-gierakowski helped us identify a bug with our ChangeStreamCursor, specifically when the cursor was complete it would not return a valid document but instead a null value.

Command helper not respecting server selection specification rules

The server selection specification indicates that the "runCommand" helper should act as a read operation for the purposes of server selection, and that it should use a default read preference of "primary" which can only be overridden by the helper itself. The driver had a bug where it would inherit the read preference from its "parent" type (Collection, Db, MongoClient) which is at odds with the specified behavior.

mongodb+srv invalid IPv6 support

Due to a bug in how we referred to ipv6 addresses internal to the driver, if a mongodb+srv connection string was provided with an ipv6 address the driver would never be able to connect and would result in a the following error RangeError: Maximum call stack size exceeded.

maxStalenessSeconds not accepted when provided via options

There was a bug in our connection string and MongoClient options parsing where a value provided for maxStalenessSeconds would not end up being reflected in the ReadPreference used internal to the driver.

Sessions are prohibited with unacknowledged writes

MongoDB can provide no guarantees around unacknowledged writes when used within a session. The driver will now silently remove the lsid field from all writes issued with { w: 0 }, and will return an error in these situations in the upcoming 4.0 major release.

Documentation

Reference: http://mongodb.github.io/node-mongodb-native/3.5/ API: http://mongodb.github.io/node-mongodb-native/3.5/api/ Changelog: https://github.com/mongodb/node-mongodb-native/blob/3.5/HISTORY.md

We invite you to try the driver immediately, and report any issues to the NODE project.

Thanks very much to all the community members who contributed to this release!

Release Notes

... (truncated)

Commits
  • 40b1d17 chore(release): 3.5.10
  • 8f1ea7b fix: silently ignore session with unacknowledged write
  • 72a743d fix: ReadPreference maxStalenessSeconds from options
  • 53cbdb0 docs: add link to new reference docs
  • a1be593 fix: ipv6 is not supported when using dns service discovery
  • c3b36cd chore: parameterize sdam_viz write workloads
  • eeea8ac chore: update sdam_viz to include a write workload
  • f7a50e2 fix: db.command to not inherit options from parent
  • 5082971 test: adds SPEC-1511 to lift restriction on authSource option
  • 2d39822 test: use sinon mock timers for determinstic timer testing
  • Additional commits viewable in compare view

Updates mongoose from 4.2.4 to 5.13.20

Changelog

Sourced from mongoose's changelog.

8.7.1 / 2024-10-09

  • fix: set flattenObjectIds to false when calling toObject() for internal purposes #14938
  • fix: add mongodb 8 to test matrix #14937
  • fix: handle buffers stored in MongoDB as EJSON representation with { $binary } #14932
  • docs: indicate that Mongoose 8.7 is required for full MongoDB 8 support #14937

8.7.0 / 2024-09-27

  • feat(model): add Model.applyVirtuals() to apply virtuals to a POJO #14905 #14818
  • feat: upgrade mongodb -> 6.9.0 #14914
  • feat(query): cast $rename to string #14887 #3027
  • feat(SchemaType): add getEmbeddedSchemaType() method to SchemaTypes #14880 #8389
  • fix(model): throw MongooseBulkSaveIncompleteError if bulkSave() didn't completely succeed #14884 #14763
  • fix(connection): avoid returning readyState = connected if connection state is stale #14812 #14727
  • fix: depopulate if push() or addToSet() with an ObjectId on a populated array #14883 #1635
  • types: make __v a number, only set __v on top-level documents #14892

8.6.4 / 2024-09-26

  • fix(document): avoid massive perf degradation when saving new doc with 10 level deep subdocs #14910 #14897
  • fix(model): skip applying static hooks by default if static name conflicts with aggregate middleware #14904 dragontaek-lee
  • fix(model): filter applying static hooks by default if static name conflicts with mongoose middleware #14908 dragontaek-lee

7.8.2 / 2024-09-25

  • fix(projection): avoid setting projection to unknown exclusive/inclusive if elemMatch on a Date, ObjectId, etc. #14894 #14893

8.6.3 / 2024-09-17

  • fix: make getters convert uuid to string when calling toObject() and toJSON() #14890 #14869
  • fix: fix missing Aggregate re-exports for ESM #14886 wongsean
  • types(document): add generic param to depopulate() to allow updating properties #14891 #14876

6.13.2 / 2024-09-12

  • fix(document): make set() respect merge option on deeply nested objects #14870 #14878

8.6.2 / 2024-09-11

8.6.1 / 2024-09-03

  • fix(document): avoid unnecessary clone() in applyGetters() that was preventing getters from running on 3-level deep subdocuments #14844 #14840 #14835
  • fix(model): throw error if bulkSave() did not insert or update any documents #14837 #14763
  • fix(cursor): throw error in ChangeStream constructor if changeStreamThunk() throws a sync error #14846

... (truncated)

Commits
  • 0f3997a chore: release 5.13.20
  • f1efabf fix: avoid prototype pollution on init
  • 98e0762 chore: release 5.13.19
  • 7e36d21 chore: release 5.13.18
  • 6759c60 undo accidental changes and actually pin @​types/json-schema
  • 4ed4a89 chore: pin version of @​types/json-schema because of install issues on node v4...
  • 9a9536d Merge pull request #13535 from lorand-horvath/patch-12
  • 26424d5 5.x - bump mongodb driver to 3.7.4
  • 4b8b0a9 add versionNumber to 5.x
  • 1bc07ec chore: release 5.13.17
  • Additional commits viewable in compare view

Updates ms from 0.7.3 to 2.1.3

Release notes

Sourced from ms's releases.

2.1.3

Patches

  • Rename zeit to vercel: #151
  • Bump eslint from 4.12.1 to 4.18.2: #122
  • Add prettier as a dev dependency: #135 #153
  • Use GitHub Actions CI: #154

Credits

Huge thanks to @​getsnoopy for helping!

2.1.2

Patches

  • Fixed negative decimals less than -10 don&#39;t work: #111
  • Support error in case of Infinity: #116
  • Update regexp for 10-.5 is invalid input: #117
  • Update chat badge: #119

Credits

Huge thanks to @​yuler and @​7ma7X for helping!

2.1.1

Patches

  • Add full support for negative numbers: #104

Credits

Huge thanks to @​thevtm for helping!

2.1.0

Minor Changes

  • Add "week" / "w" support: a2caead13ac7f9931338a1a51ab4e36ddb505e00
  • Fixed match regex to support negative numbers: #96

Patches

  • Applied a few text improvements: 15dc8c5b5a9e8372555400485a749ec04cc02444
  • Fixed spelling of “millisecond” in description: #95
  • Lockfile added: 2425ebdefcdd1c2b726c06f6a65c4f2dea58dee7

Credits

Huge thanks to @​yoavmmn and @​binki for helping!

2.0.0

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by styfle, a new releaser for ms since your current version.


Updates express from 4.12.4 to 4.21.1

Release notes

Sourced from express's releases.

4.21.1<...

Description has been truncated

…pdates

Bumps the npm_and_yarn group with 28 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [dustjs-linkedin](https://github.com/linkedin/dustjs) | `2.5.0` | `3.0.0` |
| [ejs](https://github.com/mde/ejs) | `1.0.0` | `3.1.10` |
| [express-fileupload](https://github.com/richardgirges/express-fileupload) | `0.0.5` | `1.4.0` |
| [hbs](https://github.com/pillarjs/hbs) | `4.0.4` | `4.2.0` |
| [jquery](https://github.com/jquery/jquery) | `2.2.4` | `3.5.0` |
| [marked](https://github.com/markedjs/marked) | `0.3.5` | `4.0.10` |
| [moment](https://github.com/moment/moment) | `2.15.1` | `2.29.4` |
| [mongodb](https://github.com/mongodb/node-mongodb-native) | `3.5.9` | `3.5.10` |
| [mongoose](https://github.com/Automattic/mongoose) | `4.2.4` | `5.13.20` |
| [ms](https://github.com/vercel/ms) | `0.7.3` | `2.1.3` |
| [express](https://github.com/expressjs/express) | `4.12.4` | `4.21.1` |
| [humanize-ms](https://github.com/node-modules/humanize-ms) | `1.0.1` | `1.2.1` |
| [st](https://github.com/isaacs/st) | `0.2.4` | `1.2.2` |
| [typeorm](https://github.com/typeorm/typeorm) | `0.2.24` | `0.3.0` |
| [validator](https://github.com/validatorjs/validator.js) | `13.5.2` | `13.7.0` |
| [snyk](https://github.com/snyk/snyk) | `1.278.1` | `1.1064.0` |
| [ajv](https://github.com/ajv-validator/ajv) | `6.10.2` | `6.12.6` |
| [cached-path-relative](https://github.com/ashaffer/cached-path-relative) | `1.0.2` | `1.1.0` |
| [ini](https://github.com/npm/ini) | `1.3.5` | `1.3.8` |
| [npmconf](https://github.com/npm/npmconf) | `0.0.24` | `2.1.3` |
| [diff](https://github.com/kpdecker/jsdiff) | `1.4.0` | `5.2.0` |
| [tap](https://github.com/tapjs/tapjs) | `11.1.5` | `21.0.1` |
| [elliptic](https://github.com/indutny/elliptic) | `6.4.1` | `6.5.7` |
| [qs](https://github.com/ljharb/qs) | `2.2.4` | `6.13.0` |
| [body-parser](https://github.com/expressjs/body-parser) | `1.9.0` | `1.20.3` |
| [shell-quote](https://github.com/ljharb/shell-quote) | `1.6.1` | `1.8.1` |
| [underscore](https://github.com/jashkenas/underscore) | `1.9.1` | `1.12.1` |
| [cfenv](https://github.com/cloudfoundry-community/node-cfenv) | `1.2.2` | `1.2.4` |



Updates `dustjs-linkedin` from 2.5.0 to 3.0.0
- [Release notes](https://github.com/linkedin/dustjs/releases)
- [Changelog](https://github.com/linkedin/dustjs/blob/master/CHANGELOG.md)
- [Commits](linkedin/dustjs@v2.5.0...v3.0.0)

Updates `ejs` from 1.0.0 to 3.1.10
- [Release notes](https://github.com/mde/ejs/releases)
- [Commits](https://github.com/mde/ejs/commits/v3.1.10)

Updates `express-fileupload` from 0.0.5 to 1.4.0
- [Release notes](https://github.com/richardgirges/express-fileupload/releases)
- [Commits](https://github.com/richardgirges/express-fileupload/commits/v1.4.0)

Updates `hbs` from 4.0.4 to 4.2.0
- [Changelog](https://github.com/pillarjs/hbs/blob/master/HISTORY.md)
- [Commits](pillarjs/hbs@v4.0.4...v4.2.0)

Updates `jquery` from 2.2.4 to 3.5.0
- [Release notes](https://github.com/jquery/jquery/releases)
- [Changelog](https://github.com/jquery/jquery/blob/main/changelog.md)
- [Commits](jquery/jquery@2.2.4...3.5.0)

Updates `marked` from 0.3.5 to 4.0.10
- [Release notes](https://github.com/markedjs/marked/releases)
- [Changelog](https://github.com/markedjs/marked/blob/master/.releaserc.json)
- [Commits](markedjs/marked@v0.3.5...v4.0.10)

Updates `moment` from 2.15.1 to 2.29.4
- [Changelog](https://github.com/moment/moment/blob/develop/CHANGELOG.md)
- [Commits](moment/moment@2.15.1...2.29.4)

Updates `mongodb` from 3.5.9 to 3.5.10
- [Release notes](https://github.com/mongodb/node-mongodb-native/releases)
- [Changelog](https://github.com/mongodb/node-mongodb-native/blob/main/HISTORY.md)
- [Commits](mongodb/node-mongodb-native@v3.5.9...v3.5.10)

Updates `mongoose` from 4.2.4 to 5.13.20
- [Release notes](https://github.com/Automattic/mongoose/releases)
- [Changelog](https://github.com/Automattic/mongoose/blob/master/CHANGELOG.md)
- [Commits](Automattic/mongoose@4.2.4...5.13.20)

Updates `ms` from 0.7.3 to 2.1.3
- [Release notes](https://github.com/vercel/ms/releases)
- [Commits](vercel/ms@0.7.3...2.1.3)

Updates `express` from 4.12.4 to 4.21.1
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/4.21.1/History.md)
- [Commits](expressjs/express@4.12.4...4.21.1)

Updates `humanize-ms` from 1.0.1 to 1.2.1
- [Changelog](https://github.com/node-modules/humanize-ms/blob/master/History.md)
- [Commits](node-modules/humanize-ms@1.0.1...1.2.1)

Updates `st` from 0.2.4 to 1.2.2
- [Commits](isaacs/st@v0.2.4...v1.2.2)

Updates `typeorm` from 0.2.24 to 0.3.0
- [Release notes](https://github.com/typeorm/typeorm/releases)
- [Changelog](https://github.com/typeorm/typeorm/blob/master/CHANGELOG.md)
- [Commits](typeorm/typeorm@0.2.24...0.3.0)

Updates `validator` from 13.5.2 to 13.7.0
- [Release notes](https://github.com/validatorjs/validator.js/releases)
- [Changelog](https://github.com/validatorjs/validator.js/blob/master/CHANGELOG.md)
- [Commits](validatorjs/validator.js@13.5.2...13.7.0)

Updates `snyk` from 1.278.1 to 1.1064.0
- [Release notes](https://github.com/snyk/snyk/releases)
- [Commits](snyk/cli@v1.278.1...v1.1064.0)

Updates `ajv` from 6.10.2 to 6.12.6
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](ajv-validator/ajv@v6.10.2...v6.12.6)

Updates `async` from 0.9.0 to 1.5.2
- [Release notes](https://github.com/caolan/async/releases)
- [Changelog](https://github.com/caolan/async/blob/master/CHANGELOG.md)
- [Commits](caolan/async@0.9.0...v1.5.2)

Updates `bl` from 2.2.0 to 1.2.3
- [Release notes](https://github.com/rvagg/bl/releases)
- [Changelog](https://github.com/rvagg/bl/blob/master/CHANGELOG.md)
- [Commits](rvagg/bl@v2.2.0...v1.2.3)

Updates `bson` from 0.4.23 to 1.1.6
- [Release notes](https://github.com/mongodb/js-bson/releases)
- [Changelog](https://github.com/mongodb/js-bson/blob/v1.1.6/HISTORY.md)
- [Commits](mongodb/js-bson@V0.4.23...v1.1.6)

Updates `cached-path-relative` from 1.0.2 to 1.1.0
- [Commits](https://github.com/ashaffer/cached-path-relative/commits)

Updates `ini` from 1.3.5 to 1.3.8
- [Release notes](https://github.com/npm/ini/releases)
- [Changelog](https://github.com/npm/ini/blob/main/CHANGELOG.md)
- [Commits](npm/ini@v1.3.5...v1.3.8)

Updates `npmconf` from 0.0.24 to 2.1.3
- [Commits](https://github.com/npm/npmconf/commits)

Updates `debug` from 2.2.0 to 2.6.9
- [Release notes](https://github.com/debug-js/debug/releases)
- [Changelog](https://github.com/debug-js/debug/blob/2.6.9/CHANGELOG.md)
- [Commits](debug-js/debug@2.2.0...2.6.9)

Updates `diff` from 1.4.0 to 5.2.0
- [Changelog](https://github.com/kpdecker/jsdiff/blob/master/release-notes.md)
- [Commits](kpdecker/jsdiff@v1.4.0...v5.2.0)

Updates `tap` from 11.1.5 to 21.0.1
- [Release notes](https://github.com/tapjs/tapjs/releases)
- [Commits](https://github.com/tapjs/tapjs/compare/v11.1.5...tap@21.0.1)

Updates `dot-prop` from 4.2.0 to 5.3.0
- [Release notes](https://github.com/sindresorhus/dot-prop/releases)
- [Commits](sindresorhus/dot-prop@v4.2.0...v5.3.0)

Updates `elliptic` from 6.4.1 to 6.5.7
- [Commits](indutny/elliptic@v6.4.1...v6.5.7)

Updates `qs` from 2.2.4 to 6.13.0
- [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md)
- [Commits](ljharb/qs@v2.2.4...v6.13.0)

Updates `body-parser` from 1.9.0 to 1.20.3
- [Release notes](https://github.com/expressjs/body-parser/releases)
- [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md)
- [Commits](expressjs/body-parser@1.9.0...1.20.3)

Updates `got` from 6.7.1 to 9.6.0
- [Release notes](https://github.com/sindresorhus/got/releases)
- [Commits](sindresorhus/got@v6.7.1...v9.6.0)

Updates `handlebars` from 4.0.11 to 4.7.7
- [Release notes](https://github.com/handlebars-lang/handlebars.js/releases)
- [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/master/release-notes.md)
- [Commits](handlebars-lang/handlebars.js@v4.0.11...v4.7.7)

Updates `highlight.js` from 9.18.1 to 10.7.3
- [Release notes](https://github.com/highlightjs/highlight.js/releases)
- [Changelog](https://github.com/highlightjs/highlight.js/blob/10.7.3/CHANGES.md)
- [Commits](highlightjs/highlight.js@9.18.1...10.7.3)

Updates `hosted-git-info` from 2.6.0 to 7.0.2
- [Release notes](https://github.com/npm/hosted-git-info/releases)
- [Changelog](https://github.com/npm/hosted-git-info/blob/main/CHANGELOG.md)
- [Commits](npm/hosted-git-info@v2.6.0...v7.0.2)

Updates `http-cache-semantics` from 4.1.0 to 4.1.1
- [Commits](kornelski/http-cache-semantics@v4.1.0...v4.1.1)

Updates `kind-of` from 2.0.1 to 3.2.2
- [Changelog](https://github.com/jonschlinkert/kind-of/blob/master/CHANGELOG.md)
- [Commits](jonschlinkert/kind-of@2.0.1...3.2.2)

Updates `minimatch` from 3.0.4 to 3.1.2
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v3.0.4...v3.1.2)

Updates `minimist` from 0.0.8 to 1.2.8
- [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md)
- [Commits](minimistjs/minimist@v0.0.8...v1.2.8)

Updates `mpath` from 0.1.1 to 0.8.4
- [Changelog](https://github.com/mongoosejs/mpath/blob/master/History.md)
- [Commits](mongoosejs/mpath@0.1.1...0.8.4)

Updates `mquery` from 1.6.3 to 3.2.5
- [Changelog](https://github.com/mongoosejs/mquery/blob/master/History.md)
- [Commits](mongoosejs/mquery@1.6.3...3.2.5)

Updates `decode-uri-component` from 0.2.0 to 0.2.2
- [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases)
- [Commits](SamVerschueren/decode-uri-component@v0.2.0...v0.2.2)

Updates `mixin-deep` from 1.3.1 to 1.3.2
- [Commits](jonschlinkert/mixin-deep@1.3.1...1.3.2)

Updates `set-value` from 0.4.3 to 2.0.1
- [Commits](jonschlinkert/set-value@0.4.3...2.0.1)

Updates `yargs-parser` from 8.1.0 to 20.2.9
- [Release notes](https://github.com/yargs/yargs-parser/releases)
- [Changelog](https://github.com/yargs/yargs-parser/blob/main/CHANGELOG.md)
- [Commits](yargs/yargs-parser@v8.1.0...yargs-parser-v20.2.9)

Updates `shell-quote` from 1.6.1 to 1.8.1
- [Changelog](https://github.com/ljharb/shell-quote/blob/main/CHANGELOG.md)
- [Commits](ljharb/shell-quote@v1.6.1...v1.8.1)

Updates `underscore` from 1.9.1 to 1.12.1
- [Commits](jashkenas/underscore@1.9.1...1.12.1)

Updates `cfenv` from 1.2.2 to 1.2.4
- [Commits](cloudfoundry-community/node-cfenv@1.2.2...1.2.4)

---
updated-dependencies:
- dependency-name: dustjs-linkedin
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: ejs
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: express-fileupload
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: hbs
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: jquery
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: marked
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: moment
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: mongodb
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: mongoose
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: ms
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: express
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: humanize-ms
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: st
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: typeorm
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: validator
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: snyk
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: ajv
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: async
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: bl
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: bson
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: cached-path-relative
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ini
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: npmconf
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: debug
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: diff
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: tap
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: dot-prop
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: elliptic
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: qs
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: body-parser
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: got
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: handlebars
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: highlight.js
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: hosted-git-info
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: http-cache-semantics
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: kind-of
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimist
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: mpath
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: mquery
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: decode-uri-component
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: mixin-deep
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: set-value
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: yargs-parser
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: shell-quote
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: underscore
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: cfenv
  dependency-type: direct:production
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Oct 13, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants