[Snyk] Security upgrade ejs-lint from 1.1.0 to 1.2.1

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	526/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 4.1	Arbitrary Code Injection SNYK-JS-EJS-1049328	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: ejs-lint

The new version differs by 13 commits.

• 7390cb0 1.2.1
• bdc8fca Switch from TravisCI to GitHub actions (Update colour palette #96)
• a30c0c6 Update dependency ejs to v3.1.6 (Remove sanitizeText method, use library instead for sanitizing input #95)
• 068badb 1.2.0
• af1359a Linter fix
• 90f0551 Add slash dep to support Windows file paths (Bump file-type from 7.4.0 to 14.3.0 #87)
• b5ee5a2 Remove usage of rewire and access ejs.Template directly (Bump file-type from 7.4.0 to 14.2.0 #83)
• 00dc946 Update dependency ejs to v3.1.5 (Bump file-type from 7.4.0 to 14.1.4 #75)
• a247921 Add `await` option to both api and cli (Bump mongodb from 2.2.33 to 3.5.6 #82)
• 611bed9 Update dependency yargs to v16 ([ImgBot] Optimize images #80)
• 70bd939 Update dependency eslint-config-problems to v5 (Bump nodemon from 1.15.1 to 2.0.3 #79)
• ab55d3c Update dependency mocha to v8 (Bump validator from 9.2.0 to 13.0.0 #77)
• 960f1f5 Don't include unneeded files in published package

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

[codecov]

Codecov Report

Merging #275 (cf4fd70) into development (c4b92b5) will not change coverage.
The diff coverage is n/a.

@@             Coverage Diff              @@
##           development     #275   +/-   ##
============================================
  Coverage        53.91%   53.91%           
============================================
  Files               15       15           
  Lines             1137     1137           
============================================
  Hits               613      613           
  Misses             524      524           

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update c4b92b5...cf4fd70. Read the comment docs.