Bump mustache from 3.2.1 to 4.2.0

[dependabot-preview]

Bumps mustache from 3.2.1 to 4.2.0.

Release notes

Sourced from mustache's releases.

v4.2.0

#773: Add package.json exports field, by @manzt.

Changelog

Sourced from mustache's changelog.

[4.2.0] / 28 March 2021

Added

• #773: Add package.json exports field, by [@manzt].

[4.1.0] / 6 December 2020

Added

• #764: render() now recognizes a config object argument, by [@pineapplemachine].

Fixed

• #764: Ask custom escape functions to escape all types of values (including numbers), by [@pineapplemachine].

[4.0.1] / 15 March 2020

Fixed

• #739: Fix custom delimiters in nested partials, by [@aielo].

[4.0.0] / 16 January 2020

Majority of using projects don't have to worry by this being a new major version.

TLDR; if your project manipulates Writer.prototype.parse | Writer.cache directly or uses .to_html(), you probably have to change that code.

This release allows the internal template cache to be customised, either by disabling it completely or provide a custom strategy deciding how the cache should behave when mustache.js parses templates.

const mustache = require('mustache');
// disable caching
Mustache.templateCache = undefined;
// or use a built-in Map in modern environments
Mustache.templateCache = new Map();

Projects that wanted to customise the caching behaviour in earlier versions of mustache.js were forced to override internal method responsible for parsing templates; Writer.prototype.parse. In short, that was unfortunate because there is more than caching happening in that method.

We've improved that now by introducing a first class API that only affects template caching.

The default template cache behaves as before and is still compatible with older JavaScript environments. For those who wants to provide a custom more sopisiticated caching strategy, one can do that with an object that adheres to the following requirements:

... (truncated)

Commits

• bd29972 Added 4.2.0 ref in CHANGELOG
• 813e273 4.2.0
• cc66a70 Preparing CHANGELOG for v4.2.0
• ea3adcf Add package.json exports field (#773)
• f15befd Build ESM -> CJS before running tests in browsers via Saucelabs
• 3e29d67 Build ESM -> CJS before running legacy Node.js tests and packaging tests
• 69bf4bd Avoid use of esm when running tests on legacy Node.js versions
• d4a5042 Use esm package locally when testing to use ESM syntax from CJS code
• a93c39e Bump mustache.js version via npm script instead of git pre-commit hook
• 2061046 Remove .min.js from git repository, will be kept in npm package
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will not automatically merge this PR because it includes a major update to a production dependency.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)