From 88abfb6ccf47dea031353e2bba6bdbcb2c0d78a8 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 27 Apr 2022 04:35:51 +0000
Subject: [PATCH] fix: packages/@vue/cli/package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-EJS-2803307
---
 packages/@vue/cli/package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/packages/@vue/cli/package.json b/packages/@vue/cli/package.json
index 8a3b677e59..f378e6147b 100644
--- a/packages/@vue/cli/package.json
+++ b/packages/@vue/cli/package.json
@@ -34,7 +34,7 @@
     "debug": "^4.1.0",
     "deepmerge": "^4.2.2",
     "download-git-repo": "^1.0.2",
-    "ejs": "^2.7.1",
+    "ejs": "^3.1.7",
     "envinfo": "^7.5.0",
     "fs-extra": "^7.0.1",
     "globby": "^9.2.0",