[Snyk] Fix for 10 vulnerabilities

[cdobru]

Snyk has created this PR to fix 10 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• package.json
• package-lock.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Access of Resource Using Incompatible Type ('Type Confusion') SNYK-JS-HANDLEBARS-15803084	740
	Access of Resource Using Incompatible Type ('Type Confusion') SNYK-JS-HANDLEBARS-15803082	735
	Improper Check for Unusual or Exceptional Conditions SNYK-JS-HANDLEBARS-15807042	710
	Improper Encoding or Escaping of Output SNYK-JS-HANDLEBARS-15807040	695
	Access of Resource Using Incompatible Type ('Type Confusion') SNYK-JS-HANDLEBARS-15803086	660
	Arbitrary Code Injection SNYK-JS-LODASH-15869625	630
	Time-of-check Time-of-use (TOCTOU) Race Condition SNYK-JS-HANDLEBARS-15813000	590
	Prototype Pollution SNYK-JS-LODASH-15869619	545
	Prototype Pollution SNYK-JS-LODASH-15053838	495
	Prototype Pollution SNYK-JS-HANDLEBARS-15789775	380

Breaking Change Risk

Notice: This assessment is enhanced by AI.

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution
🦉 Access of Resource Using Incompatible Type ('Type Confusion')
🦉 Improper Encoding or Escaping of Output
🦉 More lessons are available in Snyk Learn

[cdobru]

This update includes minor and patch version upgrades for hbs and lodash.

• hbs 4.1.0 → 4.2.1: This is a minor version upgrade. The changes include the addition of a new, optional feature (rename option for partials) and several bug fixes. No breaking changes are documented.

• lodash 4.17.21 → 4.18.1: This is a patch upgrade that primarily includes security fixes for prototype pollution and code injection vulnerabilities. It also resolves a reference error from the previous release. These changes are not expected to impact standard functionality.

Overall, this is a low-risk upgrade with no anticipated breaking changes.

Notice 🤖: This content was augmented using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.

[cdobru]

⛔ Snyk checks have failed. 13 issues have been found so far.

Status	Scan Engine	Critical	High	Medium	Low	Total (13)
⛔	Open Source Security	0	5	8	0	13 issues
✅	Licenses	0	0	0	0	0 issues
✅	Code Security	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

[cdobru]

⛔ Snyk checks have failed. 13 issues have been found so far.

Status	Scan Engine	Critical	High	Medium	Low	Total (13)
⛔	Open Source Security	0	5	8	0	13 issues
✅	Licenses	0	0	0	0	0 issues
✅	Code Security	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

[bojtetami]

⛔ Snyk checks have failed. 13 issues have been found so far.

Status	Scan Engine	Critical	High	Medium	Low	Total (13)
⛔	Open Source Security	0	5	8	0	13 issues
✅	Licenses	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.