From 2963cef3903cbbe05737b94e5cb329bf4dff0724 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 17 Aug 2020 05:49:51 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-590103 --- package-lock.json | 6 +++--- package.json | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index a023418..f53a14b 100644 --- a/package-lock.json +++ b/package-lock.json @@ -235,9 +235,9 @@ } }, "lodash": { - "version": "4.17.11", - "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.11.tgz", - "integrity": "sha512-cQKh8igo5QUhZ7lg38DYWAxMvjSAKG0A8wGSVimP07SIUEK2UO+arSRKbRZWtelMtN5V0Hkwh5ryOto/SshYIg==" + "version": "4.17.20", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.20.tgz", + "integrity": "sha512-PlhdFcillOINfeV7Ni6oF1TAEayyZBoZ8bcshTHqOYJYlrqzRK5hagpagky5o4HfCzzd1TRkXPMFq6cKk9rGmA==" }, "minimatch": { "version": "3.0.4", diff --git a/package.json b/package.json index dec0a52..30f1d43 100644 --- a/package.json +++ b/package.json @@ -22,7 +22,7 @@ "tslint": "^5.12.1" }, "dependencies": { - "lodash": "^4.17.11", + "lodash": "^4.17.20", "sequential-event": "^0.4.5" } }