[Snyk] Upgrade mjml from 4.16.1 to 4.17.0

[rasulkireev]

Snyk has created this PR to upgrade mjml from 4.16.1 to 4.17.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 1 version ahead of your current version.

• The recommended version was released 24 days ago.

Release notes

Package name: mjml

• 4.17.0 - 2025-11-13
  

  What's Changed

  Features

  • mjml-wrapper: add gap between sections #2977 by @ dazgreer in #3004

  Fixes

  • mjml-social: respect align and icon-height attributes #3001 by @ dazgreer in #3002
  • mjml-carousel: hide thumbnails if not supported #2999 by @ dazgreer in #3000
  • mjml-accordion: respect font-family and padding-x attributes #2997 by @ dazgreer in #2998
  • mjml-table: respect cellspacing #2995 by @ dazgreer in #2996
  • mjml-navbar: fix ico-padding-x that was not working #2991 by @ dazgreer in #2992
  • mjml-column: fix border-radius that was not working #2989 by @ dazgreer in #2990

  Documentation

  • Added link to support matrix by @ dazgreer in #3005
  • Update image URLs by @ dazgreer in #3007
  • Examples indenting by @ EtienneHosman in #2974

  Other

  • Update local MJML testing by @ dazgreer in #2987
  • Add publish action by @ totocap in #3009

  New Contributors

  • @ EtienneHosman made their first contribution in #2974

  Full Changelog: v4.16.1...v4.17.0

• 4.16.1 - 2025-09-18
  

  Fixes

  • Fix build issue of version 4.16.0 for mjml-browser

  Full Changelog: v4.16.0...v4.16.1

from mjml GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[coderabbitai]

Important

Review skipped

Ignore keyword(s) in the title.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch snyk-upgrade-4734d4dd117e9a7e8bad9107bbf517ca

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[greptile-apps]

Greptile Overview

Greptile Summary

This PR upgrades mjml from 4.16.1 to 4.17.0, a minor version bump released on 2025-11-13.

What Changed:

• Updated mjml dependency version in package.json and package-lock.json
• No breaking changes - all changes are backwards-compatible bug fixes and features

Key Updates in 4.17.0:

• Bug fixes for mjml-social, mjml-carousel, mjml-accordion, mjml-table, mjml-navbar, and mjml-column components
• New feature: mjml-wrapper now supports gap between sections
• Documentation improvements

Impact on TuxSEO:
This upgrade is safe for the codebase. TuxSEO uses MJML templates for transactional emails (blog post ready, project setup complete, feedback request, create project reminder) via the Django MJML integration. The templates use basic MJML components (mj-section, mj-column, mj-text, mj-button) which are not affected by the bug fixes in this release. All fixes target edge cases in specific components that aren't heavily used in TuxSEO's email templates.

Recommendation:
Safe to merge. The upgrade brings bug fixes and improvements without any breaking changes.

Confidence Score: 5/5

• Safe to merge - backwards-compatible minor version upgrade with bug fixes only
• This is a clean dependency upgrade with no breaking changes. MJML 4.17.0 contains only bug fixes and minor feature additions that don't affect TuxSEO's email template usage. The upgrade was automatically generated by Snyk for security maintenance. All changes are backwards-compatible and the basic MJML components used in TuxSEO's templates remain stable.
• No files require special attention

Important Files Changed

File Analysis

Filename	Score	Overview
package.json	5/5	Updated mjml from 4.16.1 to 4.17.0 - clean minor version upgrade with bug fixes
package-lock.json	5/5	Lockfile updated to reflect mjml 4.17.0 upgrade with license metadata additions

Sequence Diagram

sequenceDiagram
    participant Dev as Developer
    participant Snyk as Snyk Bot
    participant NPM as NPM Registry
    participant App as TuxSEO App
    participant Django as Django MJML
    participant MJML as MJML Server
    participant Email as Email Service

    Dev->>Snyk: Configure auto-upgrade PRs
    Snyk->>NPM: Check for new versions
    NPM-->>Snyk: mjml 4.17.0 available
    Snyk->>Snyk: Analyze upgrade safety
    Snyk->>Dev: Create PR #129 (4.16.1→4.17.0)
    
    Note over Dev,Email: After PR merge
    
    Dev->>App: Merge PR and deploy
    App->>NPM: npm install mjml@4.17.0
    NPM-->>App: Install complete
    
    Note over App,Email: Email generation flow
    
    App->>Django: Trigger email (e.g., blog_post_ready)
    Django->>Django: Load MJML template
    Django->>MJML: POST /v1/render with MJML markup
    MJML->>MJML: Parse and render using v4.17.0
    MJML-->>Django: Return HTML email
    Django->>Email: Send HTML email via Mailgun
    Email-->>App: Email delivered

Loading

[greptile-apps]

_{1 file reviewed, no comments}

_{Edit Code Review Agent Settings | Greptile}