		@@ -469,3 +469,3 @@ // jslitmus.js
		queue = [], // test queue (to be run)
		currentTest; // currently runnning test
		currentTest; // currently running test

		@@ -472,0 +472,0 @@ // jslitmus gets EventEmitter API

doT.min.js

		@@ -1,2 +0,1 @@
		/* Laura Doktorova https://github.com/olado/doT */
		!function(){"use strict";function e(n,t,r){return("string"==typeof t?t:t.toString()).replace(n.define\|\|a,function(e,t,o,a){return 0===t.indexOf("def.")&&(t=t.substring(4)),t in r\|\|(":"===o?(n.defineParams&&a.replace(n.defineParams,function(e,n,o){r[t]={arg:n,text:o}}),t in r\|\|(r[t]=a)):new Function("def","def['"+t+"']="+a)(r)),""}).replace(n.use\|\|a,function(t,o){n.useParams&&(o=o.replace(n.useParams,function(e,n,t,o){if(r[t]&&r[t].arg&&o){var a=(t+":"+o).replace(/'\|\\/g,"_");return r.__exp=r.__exp\|\|{},r.__exp[a]=r[t].text.replace(new RegExp("(^\|[^\\w$])"+r[t].arg+"([^\\w$])","g"),"$1"+o+"$2"),n+"def.__exp['"+a+"']"}}));var a=new Function("def","return "+o)(r);return a?e(n,a,r):a})}function n(e){return e.replace(/\$'\|\$/g,"$1").replace(/[\r\t\n]/g," ")}var t,r={name:"doT",version:"1.1.1",templateSettings:{evaluate:/\{\{([\s\S]+?(\}?)+)\}\}/g,interpolate:/\{\{=([\s\S]+?)\}\}/g,encode:/\{\{!([\s\S]+?)\}\}/g,use:/\{\{#([\s\S]+?)\}\}/g,useParams:/(^\|[^\w$])def(?:\.\|\[[\'\"])([\w$\.]+)(?:[\'\"]\])?\s\:\s([\w$\.]+\|\"[^\"]+\"\|\'[^\']+\'\|\{[^\}]+\})/g,define:/\{\{##\s([\w\.$]+)\s(\:\|=)([\s\S]+?)#\}\}/g,defineParams:/^\s([\w$]+):([\s\S]+)/,conditional:/\{\{\?(\?)?\s([\s\S]?)\s\}\}/g,iterate:/\{\{~\s(?:\}\}\|([\s\S]+?)\s\:\s([\w$]+)\s(?:\:\s([\w$]+))?\s\}\})/g,varname:"it",strip:!0,append:!0,selfcontained:!1,doNotSkipEncoded:!1},template:void 0,compile:void 0,log:!0};r.encodeHTMLSource=function(e){var n={"&":"&","<":"<",">":">",'"':""","'":"'","/":"/"},t=e?/[&<>"'\/]/g:/&(?!#?\w+;)\|<\|>\|"\|'\|\//g;return function(e){return e?e.toString().replace(t,function(e){return n[e]\|\|e}):""}},t=function(){return this\|\|(0,eval)("this")}(),"undefined"!=typeof module&&module.exports?module.exports=r:"function"==typeof define&&define.amd?define(function(){return r}):t.doT=r;var o={append:{start:"'+(",end:")+'",startencode:"'+encodeHTML("},split:{start:"';out+=(",end:");out+='",startencode:"';out+=encodeHTML("}},a=/$^/;r.template=function(c,i,u){i=i\|\|r.templateSettings;var d,s,p=i.append?o.append:o.split,l=0,f=i.use\|\|i.define?e(i,c,u\|\|{}):c;f=("var out='"+(i.strip?f.replace(/(^\|\r\|\n)\t* +\| +\t(\r\|\n\|$)/g," ").replace(/\r\|\n\|\t\|\/\[\s\S]?\\//g,""):f).replace(/'\|\\/g,"\\$&").replace(i.interpolate\|\|a,function(e,t){return p.start+n(t)+p.end}).replace(i.encode\|\|a,function(e,t){return d=!0,p.startencode+n(t)+p.end}).replace(i.conditional\|\|a,function(e,t,r){return t?r?"';}else if("+n(r)+"){out+='":"';}else{out+='":r?"';if("+n(r)+"){out+='":"';}out+='"}).replace(i.iterate\|\|a,function(e,t,r,o){return t?(l+=1,s=o\|\|"i"+l,t=n(t),"';var arr"+l+"="+t+";if(arr"+l+"){var "+r+","+s+"=-1,l"+l+"=arr"+l+".length-1;while("+s+"<l"+l+"){"+r+"=arr"+l+"["+s+"+=1];out+='"):"';} } out+='"}).replace(i.evaluate\|\|a,function(e,t){return"';"+n(t)+"out+='"})+"';return out;").replace(/\n/g,"\\n").replace(/\t/g,"\\t").replace(/\r/g,"\\r").replace(/(\s\|;\|\}\|^\|\{)out\+='';/g,"$1").replace(/\+''/g,""),d&&(i.selfcontained\|\|!t\|\|t._encodeHTML\|\|(t._encodeHTML=r.encodeHTMLSource(i.doNotSkipEncoded)),f="var encodeHTML = typeof _encodeHTML !== 'undefined' ? _encodeHTML : ("+r.encodeHTMLSource.toString()+"("+(i.doNotSkipEncoded\|\|"")+"));"+f);try{return new Function(i.varname,f)}catch(e){throw"undefined"!=typeof console&&console.log("Could not create a template function: "+f),e}},r.compile=function(e,n){return r.template(e,null,n)}}();
		!function(){"use strict";var u,d={name:"doT",version:"1.1.1",templateSettings:{evaluate:/\{\{([\s\S]+?(\}?)+)\}\}/g,interpolate:/\{\{=([\s\S]+?)\}\}/g,encode:/\{\{!([\s\S]+?)\}\}/g,use:/\{\{#([\s\S]+?)\}\}/g,useParams:/(^\|[^\w$])def(?:\.\|\[[\'\"])([\w$\.]+)(?:[\'\"]\])?\s\:\s([\w$\.]+\|\"[^\"]+\"\|\'[^\']+\'\|\{[^\}]+\})/g,define:/\{\{##\s([\w\.$]+)\s(\:\|=)([\s\S]+?)#\}\}/g,defineParams:/^\s([\w$]+):([\s\S]+)/,conditional:/\{\{\?(\?)?\s([\s\S]?)\s\}\}/g,iterate:/\{\{~\s(?:\}\}\|([\s\S]+?)\s\:\s([\w$]+)\s(?:\:\s([\w$]+))?\s\}\})/g,varname:"it",strip:!0,append:!0,selfcontained:!1,doNotSkipEncoded:!1},template:void 0,compile:void 0,log:!0};d.encodeHTMLSource=function(e){var n={"&":"&","<":"<",">":">",'"':""","'":"'","/":"/"},t=e?/[&<>"'\/]/g:/&(?!#?\w+;)\|<\|>\|"\|'\|\//g;return function(e){return e?e.toString().replace(t,function(e){return n[e]\|\|e}):""}},u=function(){return this\|\|(0,eval)("this")}(),"undefined"!=typeof module&&module.exports?module.exports=d:"function"==typeof define&&define.amd?define(function(){return d}):u.doT=d;var s={append:{start:"'+(",end:")+'",startencode:"'+encodeHTML("},split:{start:"';out+=(",end:");out+='",startencode:"';out+=encodeHTML("}},p=/$^/;function l(e){return e.replace(/\$'\|\$/g,"$1").replace(/[\r\t\n]/g," ")}d.template=function(e,n,t){var r,o,a=(n=n\|\|d.templateSettings).append?s.append:s.split,c=0,i=n.use\|\|n.define?function r(o,e,a){return("string"==typeof e?e:e.toString()).replace(o.define\|\|p,function(e,r,n,t){return 0===r.indexOf("def.")&&(r=r.substring(4)),r in a\|\|(":"===n?(o.defineParams&&t.replace(o.defineParams,function(e,n,t){a[r]={arg:n,text:t}}),r in a\|\|(a[r]=t)):new Function("def","def['"+r+"']="+t)(a)),""}).replace(o.use\|\|p,function(e,n){o.useParams&&(n=n.replace(o.useParams,function(e,n,t,r){if(a[t]&&a[t].arg&&r){var o=(t+":"+r).replace(/'\|\\/g,"_");return a.__exp=a.__exp\|\|{},a.__exp[o]=a[t].text.replace(new RegExp("(^\|[^\\w$])"+a[t].arg+"([^\\w$])","g"),"$1"+r+"$2"),n+"def.__exp['"+o+"']"}}));var t=new Function("def","return "+n)(a);return t?r(o,t,a):t})}(n,e,t\|\|{}):e;i=("var out='"+(n.strip?i.replace(/(^\|\r\|\n)\t* +\| +\t(\r\|\n\|$)/g," ").replace(/\r\|\n\|\t\|\/\[\s\S]?\\//g,""):i).replace(/'\|\\/g,"\\$&").replace(n.interpolate\|\|p,function(e,n){return a.start+l(n)+a.end}).replace(n.encode\|\|p,function(e,n){return r=!0,a.startencode+l(n)+a.end}).replace(n.conditional\|\|p,function(e,n,t){return n?t?"';}else if("+l(t)+"){out+='":"';}else{out+='":t?"';if("+l(t)+"){out+='":"';}out+='"}).replace(n.iterate\|\|p,function(e,n,t,r){return n?(c+=1,o=r\|\|"i"+c,n=l(n),"';var arr"+c+"="+n+";if(arr"+c+"){var "+t+","+o+"=-1,l"+c+"=arr"+c+".length-1;while("+o+"<l"+c+"){"+t+"=arr"+c+"["+o+"+=1];out+='"):"';} } out+='"}).replace(n.evaluate\|\|p,function(e,n){return"';"+l(n)+"out+='"})+"';return out;").replace(/\n/g,"\\n").replace(/\t/g,"\\t").replace(/\r/g,"\\r").replace(/(\s\|;\|\}\|^\|\{)out\+='';/g,"$1").replace(/\+''/g,""),r&&(n.selfcontained\|\|!u\|\|u._encodeHTML\|\|(u._encodeHTML=d.encodeHTMLSource(n.doNotSkipEncoded)),i="var encodeHTML = typeof _encodeHTML !== 'undefined' ? _encodeHTML : ("+d.encodeHTMLSource.toString()+"("+(n.doNotSkipEncoded\|\|"")+"));"+i);try{return new Function(n.varname,i)}catch(e){throw"undefined"!=typeof console&&console.log("Could not create a template function: "+i),e}},d.compile=function(e,n){return d.template(e,null,n)}}();

index.js

		@@ -45,3 +45,3 @@ /* doT + auto-compilation of doT templates
		this.__rendermodule = o.rendermodule \|\| {};
		this.__settings = o.templateSettings ? copy(o.templateSettings, copy(doT.templateSettings)) : undefined;
		this.__settings = Object.prototype.hasOwnProperty.call(o,"templateSettings") ? copy(o.templateSettings, copy(doT.templateSettings)) : undefined;
		this.__includes = {};
		@@ -62,2 +62,8 @@ }
		for (var property in defs) {
		// It looks like the code block inside "if" below can never be executed,
		// because InstallDots constructor is private, compileToFile is only called from compileAll method
		// and def parameter is never passed to it, so the condition in if will always fail.
		// This code will be removed from the next major version.
		// For now it is only excluded from coverage report
		/* istanbul ignore if */
		if (defs[property] !== def[property] && defs[property] !== this.__includes[property]) {
		@@ -64,0 +70,0 @@ fn = undefined;

package.json

		@@ -10,3 +10,3 @@ {
		],
		"version": "1.1.2",
		"version": "1.1.3",
		"main": "index.js",
		@@ -26,3 +26,4 @@ "browser": "doT.js",
		"eslint": "if-node-version '>=4' eslint .js --ignore-pattern .min.js",
		"test-cov": "nyc mocha test/*.test.js",
		"test-spec": "mocha test/*.test.js",
		"test-cov": "nyc npm run test-spec",
		"test": "npm run eslint && npm run test-cov",
		@@ -35,9 +36,9 @@ "bundle": "uglifyjs doT.js -o doT.min.js -c -m --preamble '/* Laura Doktorova https://github.com/olado/doT */'",
		"commander": "*",
		"coveralls": "^2.11.14",
		"eslint": "^3.9.1",
		"if-node-version": "^1.1.0",
		"coveralls": "^3.0.9",
		"eslint": "^6.7.2",
		"if-node-version": "^1.1.1",
		"jshint": "*",
		"mkdirp": "*",
		"mocha": "*",
		"nyc": "^8.3.2",
		"nyc": "^14.1.1",
		"pre-commit": "^1.1.3",
		@@ -44,0 +45,0 @@ "uglify-js": "*"

README.md

		@@ -12,2 +12,13 @@ # doT

		## Note from the maintainer

		doT is a really solid piece of software engineering (I didn’t create it) that is rarely updated exactly for this reason.

		It took me years to grasp how it works even though it’s only 140 lines of code - it looks like magic.

		I used it in my other projects (e.g. [ajv](https://github.com/epoberezkin/ajv)) as the smallest, the fastest and the most functional (all three!) templating engine ever made, that is particularly useful in all code generation scenarios where manipulating AST is an overkill.

		It’s a race car of templating engines - doT lacks bells and whistles that other templating engines have, but it allows to achive more than any other, if you use it right (YMMV).


		## Features
		@@ -85,2 +96,14 @@ custom delimiters

		## Security considerations

		doT allows arbitrary JavaScript code in templates, making it one of the most flexible and powerful templating engines. It means that doT security model assumes that you only use trusted templates and you don't use any user input as any part of the template, as otherwise it can lead to code injection.

		It is strongly recommended to compile all templates to JS code as early as possible. Possible options:

		- using doT as dev-dependency only and compiling templates to JS files, for example, as described above or using a custom script, during the build. This is the most performant and secure approach and it is strongly recommended.
		- if the above approach is not possible for some reason (e.g. templates are dynamically generated using some run-time data), it is recommended to compile templates to in-memory functions during application start phase, before any external input is processed.
		- compiling templates lazily, on demand, is less safe. Even though the possibility of the code injection via prototype pollution was patched (#291), there may be some other unknown vulnerabilities that could lead to code injection.

		Please report any found vulnerabilities to npm, not via issue tracker.

		## Author
		@@ -87,0 +110,0 @@ Laura Doktorova [@olado](http://twitter.com/olado)

test/defines.test.js

		'use strict';

		var test = require('./util').test;
		var doT = require('../doT');
		var doT = require('..');
		var assert = require('assert');
		@@ -6,0 +5,0 @@

test/dot.test.js

		@@ -5,3 +5,3 @@ 'use strict';
		var assert = require("assert")
		var doT = require("../doT");
		var doT = require("..");

		@@ -8,0 +8,0 @@

.npmignore

.eslintrc.yml

Sorry, the diff of this file is not supported yet

.travis.yml

Sorry, the diff of this file is not supported yet

dot - npm Package Compare versions

New alerts

Fixed alerts

Improved metrics

Worsened metrics