⬆️ Bump the npm_and_yarn group across 1 directory with 28 updates

[dependabot]

Bumps the npm_and_yarn group with 13 updates in the / directory:

Package	From	To
semantic-release	17.0.4	19.0.3
@babel/traverse	7.8.6	7.24.7
braces	3.0.2	3.0.3
jest	25.1.0	29.7.0
glob-parent	5.1.1	5.1.2
handlebars	4.7.3	4.7.8
json-schema	0.2.3	0.4.0
jsprim	1.4.1	1.4.2
json5	2.1.2	2.2.3
lodash	4.17.15	4.17.21
qs	6.5.2	6.5.3
parse-path	4.0.1	7.0.0
semantic-release-gitmoji	1.3.3	1.6.5

Updates semantic-release from 17.0.4 to 19.0.3

Release notes

Sourced from semantic-release's releases.

v19.0.3

19.0.3 (2022-06-09)

Bug Fixes

• log-repo: use the original form of the repo url to remove the need to mask credentials (#2459) (58a226f), closes #2449

v19.0.2

19.0.2 (2022-01-18)

Bug Fixes

• npm-plugin: upgraded to the stable version (0eca144)

v19.0.1

19.0.1 (2022-01-18)

Bug Fixes

• npm-plugin: upgraded to the latest beta version (8097afb)

v19.0.0

19.0.0 (2022-01-18)

Bug Fixes

• npm-plugin: upgraded to the beta, which upgrades npm to v8 (f634b8c)
• upgrade marked to resolve ReDos vulnerability (#2330) (d9e5bc0)

BREAKING CHANGES

• npm-plugin: @semantic-release/npm has also dropped support for node v15
• node v15 has been removed from our defined supported versions of node. this was done to upgrade to compatible versions of marked and marked-terminal that resolved the ReDoS vulnerability. removal of support of this node version should be low since it was not an LTS version and has been EOL for several months already.

v19.0.0-beta.2

19.0.0-beta.2 (2022-01-17)

Bug Fixes

• npm-plugin: upgraded to the beta, which upgrades npm to v8 (f634b8c)

... (truncated)

Commits

• 58a226f fix(log-repo): use the original form of the repo url to remove the need to ma...
• 17d60d3 build(deps): bump npm from 8.3.1 to 8.12.0 (#2447)
• ab45ab1 chore(lint): disabled rules that dont apply to this project (#2408)
• ea389c3 chore(deps): update dependency yargs-parser to 13.1.2 [security] (#2402)
• fa994db build(deps): bump node-fetch from 2.6.1 to 2.6.7 (#2399)
• b79116b build(deps): bump trim-off-newlines from 1.0.1 to 1.0.3
• 6fd7e56 build(deps): bump minimist from 1.2.5 to 1.2.6
• 2b94bb4 docs: update broken link to CI config recipes (#2378)
• b4bc191 docs: Correct circleci workflow (#2365)
• 2c30e26 Merge pull request #2333 from semantic-release/next
• Additional commits viewable in compare view

Updates @babel/traverse from 7.8.6 to 7.24.7

Release notes

Sourced from @​babel/traverse's releases.

v7.24.7 (2024-06-05)

🐛 Bug Fix

• babel-node
  • #16554 Allow extra flags in babel-node (@​nicolo-ribaudo)
• babel-traverse
  • #16522 fix: incorrect constantViolations with destructuring (@​liuxingbaoyu)
• babel-helper-transform-fixture-test-runner, babel-plugin-proposal-explicit-resource-management
  • #16524 fix: Transform using in switch correctly (@​liuxingbaoyu)

🏠 Internal

• babel-helpers, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
  • #16525 Delete unused array helpers (@​blakewilson)

Committers: 7

• Amjad Yahia Robeen Hassan (@​amjed-98)
• Babel Bot (@​babel-bot)
• Blake Wilson (@​blakewilson)
• Huáng Jùnliàng (@​JLHwung)
• Nicolò Ribaudo (@​nicolo-ribaudo)
• Sukka (@​SukkaW)
• @​liuxingbaoyu

v7.24.6 (2024-05-24)

Thanks @​amjed-98, @​blakewilson, @​coelhucas, and @​SukkaW for your first PRs!

🐛 Bug Fix

• babel-helper-create-class-features-plugin, babel-plugin-transform-class-properties
  • #16514 Fix source maps for private member expressions (@​nicolo-ribaudo)
• babel-core, babel-generator, babel-plugin-transform-modules-commonjs
  • #16515 Fix source maps for template literals (@​nicolo-ribaudo)
• babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators
  • #16485 Support undecorated static accessor in anonymous classes (@​JLHwung)
  • #16484 Fix decorator bare yield await (@​JLHwung)
• babel-helpers, babel-plugin-proposal-decorators, babel-runtime-corejs3
  • #16483 Fix: throw TypeError if addInitializer is called after finished (@​JLHwung)
• babel-parser, babel-plugin-transform-typescript
  • #16476 fix: Correctly parse cls.fn<C> = x (@​liuxingbaoyu)

🏠 Internal

• babel-core, babel-helpers, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
  • #16501 Generate helper metadata at build time (@​nicolo-ribaudo)
• babel-helpers
  • #16499 Add tsconfig.json for @babel/helpers/src/helpers (@​nicolo-ribaudo)
• babel-cli, babel-helpers, babel-plugin-external-helpers, babel-plugin-proposal-decorators, babel-plugin-transform-class-properties, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-systemjs, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
  • #16495 Move all runtime helpers to individual files (@​nicolo-ribaudo)
• babel-parser, babel-traverse
  • #16482 Statically generate boilerplate for bitfield accessors (@​nicolo-ribaudo)
• Other

... (truncated)

Changelog

Sourced from @​babel/traverse's changelog.

v7.24.7 (2024-06-05)

🐛 Bug Fix

• babel-node
  • #16554 Allow extra flags in babel-node (@​nicolo-ribaudo)
• babel-traverse
  • #16522 fix: incorrect constantViolations with destructuring (@​liuxingbaoyu)
• babel-helper-transform-fixture-test-runner, babel-plugin-proposal-explicit-resource-management
  • #16524 fix: Transform using in switch correctly (@​liuxingbaoyu)

🏠 Internal

• babel-helpers, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
  • #16525 Delete unused array helpers (@​blakewilson)

v7.24.6 (2024-05-24)

🐛 Bug Fix

• babel-helper-create-class-features-plugin, babel-plugin-transform-class-properties
  • #16514 Fix source maps for private member expressions (@​nicolo-ribaudo)
• babel-core, babel-generator, babel-plugin-transform-modules-commonjs
  • #16515 Fix source maps for template literals (@​nicolo-ribaudo)
• babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators
  • #16485 Support undecorated static accessor in anonymous classes (@​JLHwung)
  • #16484 Fix decorator bare yield await (@​JLHwung)
• babel-helpers, babel-plugin-proposal-decorators, babel-runtime-corejs3
  • #16483 Fix: throw TypeError if addInitializer is called after finished (@​JLHwung)
• babel-parser, babel-plugin-transform-typescript
  • #16476 fix: Correctly parse cls.fn<C> = x (@​liuxingbaoyu)

🏠 Internal

• babel-core, babel-helpers, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
  • #16501 Generate helper metadata at build time (@​nicolo-ribaudo)
• babel-helpers
  • #16499 Add tsconfig.json for @babel/helpers/src/helpers (@​nicolo-ribaudo)
• babel-cli, babel-helpers, babel-plugin-external-helpers, babel-plugin-proposal-decorators, babel-plugin-transform-class-properties, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-systemjs, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
  • #16495 Move all runtime helpers to individual files (@​nicolo-ribaudo)
• babel-parser, babel-traverse
  • #16482 Statically generate boilerplate for bitfield accessors (@​nicolo-ribaudo)
• Other
  • #16466 Migrate import assertions syntax (@​JLHwung)

v7.24.5 (2024-04-29)

🐛 Bug Fix

• babel-plugin-transform-classes, babel-traverse
  • #16377 fix: TypeScript annotation affects output (@​liuxingbaoyu)
• babel-helpers, babel-plugin-proposal-explicit-resource-management, babel-runtime-corejs3
  • #16440 Fix suppressed error order (@​sossost)
  • #16408 Await nullish async disposable (@​JLHwung)

💅 Polish

• babel-parser

... (truncated)

Commits

• bf1e9a3 v7.24.7
• 4463aa5 fix: incorrect constantViolations with destructuring (#16522)
• 07bd000 Improve getBindingIdentifiers (#16544)
• 17a5502 [Babel 8] Remove extra.shorthand (#16521)
• 7934963 Use type: module in all package.jsons (#16535)
• 9630250 v7.24.6
• 1f010df Explicitly define NodePath.prototype.* (#16488)
• 6e3539b [babel 8] Publish .d.ts files for every package (#16416)
• e37e64d Use eslint v9 (#16479)
• 3ff20b9 Statically generate boilerplate for bitfield accessors (#16482)
• Additional commits viewable in compare view

Updates ajv from 5.5.2 to 6.12.0

Release notes

Sourced from ajv's releases.

v6.12.0

Improved hostname validation (@​sambauers, #1143) Option keywords to add custom keywords (@​franciscomorais, #1137) Types fixes (@​boenrobot, @​MattiAstedrone) Docs:

• error logging example (@​RadiationSickness)
• TypeScript usage notes (@​thetric)

v6.11.0

Time formats support two digit and colon-less variants of timezone offset (#1061 , @​cjpillsbury) Docs: RegExp related security considerations Tests: Disabled failing typescript test

v6.10.2

Fix: the unknown keywords were ignored with the option strictKeywords: true (instead of failing compilation) in some sub-schemas (e.g. anyOf), when the sub-schema didn't have known keywords.

v6.10.1

Fix types Fix addSchema (#1001) Update dependencies

v6.10.0

Option strictDefaults to report ignored defaults (#957, @​not-an-aardvark) Option strictKeywords to report unknown keywords (#781)

v6.9.0

OpenAPI keyword nullable can be any boolean (and not only true). Custom keyword definition changes:

• dependencies option in to require the presence of keywords in the same schema.
• more strict validation of the definition using JSON Schema.

v6.8.0

Docs: security considerations. Meta-schema for the security assessment of JSON Schemas.

v6.7.0

Option useDefaults: "empty" to replace null and "" (empty strings) with default values (in addition to assigning defaults to missing and undefined properties). Update draft-04 meta-schema to remove incorrect usage of "uri" format.

v6.6.0

Keyword "nullable" from OpenAPI spec Replaced phantomjs with headless chrome

v6.5.0

With option passContext, the context is now passed in recursive/mutually recursive refs (@​cvlab, #768).

v6.4.0

Support URNs in $id - core url package is replaced with url-js (#423, @​sondrele).

v6.3.0

... (truncated)

Commits

• 03d0012 6.12.0
• 1021a00 Merge branch 'RadiationSickness-patch-1'
• 0163e5c docs: error logging code sample
• 52adde5 Merge branch 'patch-1' of git://github.com/RadiationSickness/ajv into Radiati...
• 8fd1e44 Merge branch 'franciscomorais-feature/keywords-options'
• e5bed30 test: update option keywords test
• c90c189 Merge branch 'feature/keywords-options' of git://github.com/franciscomorais/a...
• 38191c2 Update readme with keywords option
• f94db48 Update options validation spec
• 367527c Merge branch 'master' into patch-1
• Additional commits viewable in compare view

Updates ansi-regex from 2.1.1 to 4.1.0

Release notes

Sourced from ansi-regex's releases.

v4.1.0

• Support more escape code like links (#29) 96200bb

chalk/ansi-regex@v4.0.0...v4.1.0

Commits

• a079ab2 4.1.0
• 96200bb Support more escape types like links (#29)
• e076cd1 Add Tidelift mention in the readme
• a1d9246 4.0.0
• ced7421 Require Node.js 6
• eac826a Add option to only match the first occurrence (#24)
• 385eca9 Add scroll escapes (#20)
• 14839a4 Add failing test for #21 (#22)
• 0a8cc19 3.0.0
• d9d806e Minor tweaks
• Additional commits viewable in compare view

Updates braces from 3.0.2 to 3.0.3

Commits

• 74b2db2 3.0.3
• 88f1429 update eslint. lint, fix unit tests.
• 415d660 Snyk js braces 6838727 (#40)
• 190510f fix tests, skip 1 test in test/braces.expand
• 716eb9f readme bump
• a5851e5 Merge pull request #37 from coderaiser/fix/vulnerability
• 2092bd1 feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...
• 9f5b4cf fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)
• 98414f9 remove funding file
• 665ab5d update keepEscaping doc (#27)
• Additional commits viewable in compare view

Updates jest from 25.1.0 to 29.7.0

Release notes

Sourced from jest's releases.

v29.7.0

Features

• [create-jest] Add npm init / yarn create initialiser for Jest projects (#14465)
• [jest-validate] Allow deprecation warnings for unknown options (#14499)

Fixes

• [jest-resolver] Replace unmatched capture groups in moduleNameMapper with empty string instead of undefined (#14507)
• [jest-snapshot] Allow for strings as well as template literals in inline snapshots (#14465)
• [@jest/test-sequencer] Calculate test runtime if perStats.duration is missing (#14473)

Performance

• [@jest/create-cache-key-function] Cache access of NODE_ENV and BABEL_ENV (#14455)

Chore & Maintenance

• [jest-cli] Move internal config initialisation logic to the create-jest package (#14465)

New Contributors

• @​bawjensen made their first contribution in jestjs/jest#14465
• @​malaviya-parth made their first contribution in jestjs/jest#14467
• @​niklasholm made their first contribution in jestjs/jest#14507

Full Changelog: jestjs/jest@v29.6.4...v29.7.0

v29.6.4

Fixes

• [jest-core] Fix typo in scheduleAndRun performance marker (#14434)
• [jest-environment-node] Make sure atob and btoa are writeable in Node 20 (#14446)
• [jest-worker] Additional error wrapper for parentPort.postMessage to fix unhandled DataCloneError. (#14437)

New Contributors

• @​stanleyume made their first contribution in jestjs/jest#14424
• @​dj-stormtrooper made their first contribution in jestjs/jest#14437
• @​thw0rted made their first contribution in jestjs/jest#14444

Full Changelog: jestjs/jest@v29.6.3...v29.6.4

v29.6.3

Fixes

• [expect, @jest/expect-utils] ObjectContaining support symbol as key (#14414)
• [expect] Remove @types/node from dependencies (#14385)
• [jest-core] Use workers in watch mode by default to avoid crashes (#14059 & #14085).
• [jest-reporters] Update istanbul-lib-instrument dependency to v6. (#14401)
• [jest-mock] Revert #13692 as it was a breaking change (#14429)
• [jest-mock] Revert #13866 as it was a breaking change (#14429)

... (truncated)

Changelog

Sourced from jest's changelog.

29.7.0

Features

• [create-jest] Add npm init / yarn create initialiser for Jest projects (#14465)
• [jest-validate] Allow deprecation warnings for unknown options (#14499)

Fixes

• [jest-resolver] Replace unmatched capture groups in moduleNameMapper with empty string instead of undefined (#14507)
• [jest-snapshot] Allow for strings as well as template literals in inline snapshots (#14465)
• [@jest/test-sequencer] Calculate test runtime if perStats.duration is missing (#14473)

Performance

• [@jest/create-cache-key-function] Cache access of NODE_ENV and BABEL_ENV (#14455)

Chore & Maintenance

• [jest-cli] Move internal config initialisation logic to the create-jest package (#14465)

29.6.4

Fixes

• [jest-core] Fix typo in scheduleAndRun performance marker (#14434)
• [jest-environment-node] Make sure atob and btoa are writeable in Node 20 (#14446)
• [jest-worker] Additional error wrapper for parentPort.postMessage to fix unhandled DataCloneError. (#14437)

29.6.3

Fixes

• [expect, @jest/expect-utils] ObjectContaining support sumbol as key (#14414)
• [expect] Remove @types/node from dependencies (#14385)
• [jest-core] Use workers in watch mode by default to avoid crashes (#14059 & #14085).
• [jest-reporters] Update istanbul-lib-instrument dependency to v6. (#14401)
• [jest-mock] Revert #13692 as it was a breaking change (#14429)
• [jest-mock] Revert #13866 as it was a breaking change (#14429)
• [jest-mock] Revert #13867 as it was a breaking change (#14429)
• [@jest/reporters] Marks Reporter's hooks as optional (#14433)
• [jest-runtime] Fix dynamic ESM import module bug when loaded module through jest.isolateModulesAsync (#14397)

Chore & Maintenance

• [jest-changed-files, jest-circus, jest-console, @jest/core, @jest/runtime, @jest/transform] Use invariant and notEmpty from jest-util rather than own internal (#14366)

29.6.2

Fixes

... (truncated)

Commits

• 4e56991 v29.7.0
• 55cd6a0 v29.6.4
• fb7d95c v29.6.3
• 49bacb9 chore: update jest repo organisation in urls (#14413)
• 0fd5b1c v29.6.2
• 1f019af v29.6.1
• c1e5b8a v29.6.0
• 6ffa48d chore: upgrade TypeScript to v5 (#14155)
• a95eeb6 chore: update tsd runner (#14020)
• 39f3bed v29.5.0
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by simenb, a new releaser for jest since your current version.

Updates dot-prop from 3.0.0 to 5.3.0

Release notes

Sourced from dot-prop's releases.

v5.3.0

• Make .delete() return a boolean (#66) 24916ff

sindresorhus/dot-prop@v5.2.0...v5.3.0

v5.2.0

• Allow specifying undefined as the object for .get() and .has() (#58) a6be343

sindresorhus/dot-prop@v5.1.1...v5.2.0

v5.1.1

• Prevent setting/getting some problematic path components 3039c8c
• TypeScript - Fix return type for undefined defaultValue (#56) e0f8abf

sindresorhus/dot-prop@v5.1.0...v5.1.1

v5.1.0

Maintenance release to update dependencies. No user-facing changes.

sindresorhus/dot-prop@v5.0.1...v5.1.0

v5.0.1

• Fix TypeScript 3.5 compatibility 9c1ef03

sindresorhus/dot-prop@v5.0.0...v5.0.1

v5.0.0

Breaking:

• Require Node.js 8 a19fd41

Enhancements:

• Add TypeScript definition (#52) 5dbf51c

sindresorhus/dot-prop@v4.2.0...v5.0.0

v4.2.1

• Backport sindresorhus/dot-prop@3039c8c to the v4.x release line.

Commits

• 614e74a 5.3.0
• 24916ff Make .delete() return a boolean (#66)
• be84f79 Simplify unit tests (#67)
• 282e984 5.2.0
• 4801a63 Meta tweaks
• a6be343 Allow specifying undefined as the object for .get() and .has() (#58)
• 0efd03e 5.1.1
• 3039c8c Prevent setting/getting some problematic path components
• e0f8abf TypeScript - Fix return type for undefined defaultValue (#56)
• b8b7124 5.1.0
• Additional commits viewable in compare view

Updates yargs-parser from 9.0.2 to 16.1.0

Release notes

Sourced from yargs-parser's releases.

yargs-parser yargs-parser-v15.0.3

Bug Fixes

• build: should use releases_created when using manifest (49ea4ef)

yargs-parser yargs-parser-v15.0.2

Bug Fixes

• perf: address slow parse when using unknown-options-as-args (#400) (bc387ec)

Changelog

Sourced from yargs-parser's changelog.

19.0.2 (2020-08-27)

Bug Fixes

• types: envPrefix should be optional (#305) (ae3f180)

19.0.1 (2020-08-09)

Bug Fixes

• build: push tag created for deno (2186a14)

19.0.0 (2020-08-09)

⚠ BREAKING CHANGES

• adds support for ESM and Deno (#295)
• ts: projects using @types/yargs-parser may see variations in type definitions.
• drops Node 6. begin following Node.js LTS schedule (#278)

Features

• adds support for ESM and Deno (#295) (195bc4a)
• expose camelCase and decamelize helpers (#296) (39154ce)
• deps: update to latest camelcase/decamelize (#281) (8931ab0)

Bug Fixes

• boolean numeric short option (#294) (f600082)
• raise permission error for Deno if config load fails (#298) (1174e2b)
• deps: update dependency decamelize to v3 (#274) (4d98698)
• types: switch back to using Partial types (#293) (bdc80ba)

Build System

• drops Node 6. begin following Node.js LTS schedule (#278) (9014ed7)

Code Refactoring

• ts: move index.js to TypeScript (#292) (f78d2b9)

18.1.3 (2020-04-16)

... (truncated)

Commits

• 36d31b6 chore: release 16.1.0 (#215)
• 920320a revert: revert 16.0.0 CHANGELOG entry
• b3a7a89 build: releases now handled by release-please (#212)
• a525234 feat: options that have had their default value used are now tracked (#211)
• 84a401f feat!: populate error if incompatible narg/count or array/count options are u...
• 212814f chore: release 16.0.0 (#210)
• f3a9316 build!: moving to c8 for coverage and dropping Node 6 from build matrix (#209)
• a44ffb3 build: add release-please configuration
• f942242 refactor: let to const
• f5f9e5a fix: address issue with array options with array default values (#206)
• Additional commits viewable in compare view

Updates glob-parent from 5.1.1 to 5.1.2

Release notes

Sourced from glob-parent's releases.

v5.1.2

Bug Fixes

• eliminate ReDoS (#36) (f923116)

Changelog

Sourced from glob-parent's changelog.

5.1.2 (2021-03-06)

Bug Fixes

• eliminate ReDoS (#36) (f923116)

6.0.2 (2021-09-29)

Bug Fixes

• Improve performance (#53) (843f8de)

6.0.1 (2021-07-20)

Bug Fixes

• Resolve ReDoS vulnerability from CVE-2021-35065 (#49) (3e9f04a)

6.0.0 (2021-05-03)

⚠ BREAKING CHANGES

• Correct mishandled escaped path separators (#34)
• upgrade scaffold, dropping node <10 support

Bug Fixes

• Correct mishandled escaped path separators (#34) (32f6d52), closes #32

Miscellaneous Chores

• upgrade scaffold, dropping node <10 support (e83d0c5)

Commits

• eb2c439 chore: update changelog
• 12bcb6c chore: release 5.1.2
• f923116 fix: eliminate ReDoS (#36)
• 0b014a7 chore: add JSDoc returns information (#33)
• 2b24ebd chore: generate initial changelog
• See full diff in compare view

Updates handlebars from 4.7.3 to 4.7.8

Release notes

Sourced from handlebars's releases.

v4.7.8

• Make library compatible with workers (#1894) - 3d3796c
• Don't rely on Node.js global object (#1776) - 2954e7e
• Fix compiling of each block params in strict mode (#1855) - 30dbf04
• Fix rollup warning when importing Handlebars as ESM - 03d387b
• Fix bundler issue with webpack 5 (#1862) - c6c6bbb
• Use https instead of git for mustache submodule - 88ac068

Commits

Changelog

Sourced from handlebars's changelog.

v4.7.8 - July 27th, 2023

• Make library compatible with workers (#1894) - 3d3796c
• Don't rely on Node.js global object (#1776) - 2954e7e
• Fix compiling of each block params in strict mode (#1855) - 30dbf04
• Fix rollup warning when importing Handlebars as ESM - 03d387b
• Fix bundler issue with webpack 5 (#1862) - c6c6bbb
• Use https instead of git for mustache submodule - 88ac068

Commits

v4.7.7 - February 15th, 2021

• fix weird error in integration tests - eb860c0
• fix: check prototype property access in strict-mode (#1736) - b6d3de7
• fix: escape property names in compat mode (#1736) - f058970
• refactor: In spec tests, use expectTemplate over equals and shouldThrow (#1683) - 77825f8
• chore: start testing on Node.js 12 and 13 - 3789a30

(POSSIBLY) BREAKING CHANGES:

• the changes from version 4.6.0 now also apply in when using the compile-option "strict: true". Access to prototype properties is forbidden completely by default, specific properties or methods can be allowed via runtime-options. See #1633 for details. If you are using Handlebars as documented, you should not be accessing prototype properties from your template anyway, so the changes should not be a problem for you. Only the use of undocumented features can break your build.

That is why we only bump the patch version despite mentioning breaking changes.

Commits

v4.7.6 - April 3rd, 2020

Chore/Housekeeping:

• #1672 - Switch cmd parser to latest minimist (@​dougwilson

Compatibility notes:

• Restored Node.js compatibility

Commits

v4.7.5 - April 2nd, 2020

Chore/Housekeeping:

• Node.js version support has been changed to v6+ Reverted in 4.7.6

Compatibility notes:

... (truncated)

Commits

• 8dc3d25 v4.7.8
• 668c4fb...

  Description has been truncated

[dependabot]

Superseded by #26.