[Backport 1.x] Bump ejs from 3.1.6 to 3.1.7 #1522

tmarkley · 2022-04-29T00:28:57Z

Backport 886f3e3 from #1512

Bumps [ejs](https://github.com/mde/ejs) from 3.1.6 to 3.1.7. - [Release notes](https://github.com/mde/ejs/releases) - [Changelog](https://github.com/mde/ejs/blob/main/CHANGELOG.md) - [Commits](mde/ejs@v3.1.6...v3.1.7) Resolves opensearch-project#1501 - CVE-2022-29078 --- updated-dependencies: - dependency-name: ejs dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Tommy Markley <[email protected]>

tmarkley added backport cve Security vulnerabilities detected by Dependabot or Mend v1.3.2 labels Apr 29, 2022

tmarkley changed the title ~~[Backport 1.x] Bump ejs from 3.1.6 to 3.1.7 (#1512)~~ [Backport 1.x] Bump ejs from 3.1.6 to 3.1.7 Apr 29, 2022

tmarkley requested a review from a team April 29, 2022 00:36

boktorbb approved these changes Apr 29, 2022

View reviewed changes

joshuarrrr approved these changes Apr 29, 2022

View reviewed changes

ashwin-pc merged commit 9bcb650 into opensearch-project:1.x Apr 29, 2022

tmarkley deleted the 1.x_1512 branch April 29, 2022 18:28

Provide feedback