From a8c04a4a55a27430ff9f78b527266355744fbf6d Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 19 Jan 2026 18:59:39 +0000
Subject: [PATCH] deps: bump ejs from 3.1.10 to 4.0.1

Bumps [ejs](https://github.com/mde/ejs) from 3.1.10 to 4.0.1.
- [Release notes](https://github.com/mde/ejs/releases)
- [Changelog](https://github.com/mde/ejs/blob/main/RELEASE_NOTES_v4.md)
- [Commits](https://github.com/mde/ejs/compare/v3.1.10...v4.0.1)

---
updated-dependencies:
- dependency-name: ejs
  dependency-version: 4.0.1
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 apps/app/package.json  |  2 +-
 apps/auth/package.json |  2 +-
 pnpm-lock.yaml         | 16 ++++++++--------
 3 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/apps/app/package.json b/apps/app/package.json
index 874c0da..a74c14a 100644
--- a/apps/app/package.json
+++ b/apps/app/package.json
@@ -14,7 +14,7 @@
     "@apps/shared": "workspace:*",
     "cookie-parser": "^1.4.7",
     "dotenv": "^17.2.3",
-    "ejs": "^3.1.10",
+    "ejs": "^4.0.1",
     "express": "^5.2.1",
     "jose": "^6.1.3",
     "openid-client": "^6.8.1",
diff --git a/apps/auth/package.json b/apps/auth/package.json
index fc14d3d..1f6dc3a 100644
--- a/apps/auth/package.json
+++ b/apps/auth/package.json
@@ -13,7 +13,7 @@
   "dependencies": {
     "@apps/shared": "workspace:*",
     "dotenv": "^17.2.3",
-    "ejs": "^3.1.10",
+    "ejs": "^4.0.1",
     "express": "^5.2.1",
     "oidc-provider": "^9.6.0",
     "pino": "^10.2.0",
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index 5c98a7e..ed3c301 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -83,8 +83,8 @@ importers:
         specifier: ^17.2.3
         version: 17.2.3
       ejs:
-        specifier: ^3.1.10
-        version: 3.1.10
+        specifier: ^4.0.1
+        version: 4.0.1
       express:
         specifier: ^5.2.1
         version: 5.2.1
@@ -141,8 +141,8 @@ importers:
         specifier: ^17.2.3
         version: 17.2.3
       ejs:
-        specifier: ^3.1.10
-        version: 3.1.10
+        specifier: ^4.0.1
+        version: 4.0.1
       express:
         specifier: ^5.2.1
         version: 5.2.1
@@ -905,9 +905,9 @@ packages:
   ee-first@1.1.1:
     resolution: {integrity: sha512-WMwm9LhRUo+WUaRN+vRuETqG89IgZphVSNkdFgeb6sS/E4OrDIN7t48CAewSHXc6C8lefD8KKfr5vY61brQlow==}
 
-  ejs@3.1.10:
-    resolution: {integrity: sha512-UeJmFfOrAQS8OJWPZ4qtgHyWExa088/MtK5UEyoJGFH67cDEXkZSviOiKRCZ4Xij0zxI3JECgYs3oKx+AizQBA==}
-    engines: {node: '>=0.10.0'}
+  ejs@4.0.1:
+    resolution: {integrity: sha512-krvQtxc0btwSm/nvnt1UpnaFDFVJpJ0fdckmALpCgShsr/iGYHTnJiUliZTgmzq/UxTX33TtOQVKaNigMQp/6Q==}
+    engines: {node: '>=0.12.18'}
     hasBin: true
 
   emoji-regex@8.0.0:
@@ -2351,7 +2351,7 @@ snapshots:
 
   ee-first@1.1.1: {}
 
-  ejs@3.1.10:
+  ejs@4.0.1:
     dependencies:
       jake: 10.9.4