From 7477566d25b49a036a8a932509a3fb6c988696a4 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 28 Jan 2026 08:59:28 +0000 Subject: [PATCH] build(deps): bump lodash from 4.17.21 to 4.17.23 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.21 to 4.17.23. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.21...4.17.23) --- updated-dependencies: - dependency-name: lodash dependency-version: 4.17.23 dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- package.json | 2 +- pnpm-lock.yaml | 24 +++++++++++++++--------- 2 files changed, 16 insertions(+), 10 deletions(-) diff --git a/package.json b/package.json index 04344046..464309fd 100644 --- a/package.json +++ b/package.json @@ -75,7 +75,7 @@ "cdktf": "^0.21.0", "cdktf-local-exec": "^0.6.28", "constructs": "^10.4.4", - "lodash": "^4.17.21", + "lodash": "^4.17.23", "moment": "^2.30.1", "nconf": "^0.13.0", "pluralize": "^8.0.0", diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml index 56af54d7..2c5403bf 100644 --- a/pnpm-lock.yaml +++ b/pnpm-lock.yaml @@ -69,8 +69,8 @@ importers: specifier: ^10.4.4 version: 10.4.4 lodash: - specifier: ^4.17.21 - version: 4.17.21 + specifier: ^4.17.23 + version: 4.17.23 moment: specifier: ^2.30.1 version: 2.30.1 @@ -3716,6 +3716,9 @@ packages: lodash@4.17.21: resolution: {integrity: sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg==} + lodash@4.17.23: + resolution: {integrity: sha512-LgVTMpQtIopCi79SJeDiP0TfWi5CNEc/L/aRdTh3yIvmZXTnheWpKjSZhnvMl8iXbC1tFg9gdHHDMLoV7CnG+w==} + log-symbols@4.1.0: resolution: {integrity: sha512-8XPvpAA8uyhfteu8pIvQxpJZ7SYYdpUivZpGy6sFsBuKRY/7rQGavedeB8aK+Zkyq6upMFVL/9AW6vOYzfRyLg==} engines: {node: '>=10'} @@ -4967,6 +4970,7 @@ packages: tar@6.2.1: resolution: {integrity: sha512-DZ4yORTwrbTj/7MZYq2w+/ZFdI6OZ/f9SFHR+71gIVUZhOQPHzVCLpvRnPgyaMpfWxxk/4ONva3GQSyNIKRv6A==} engines: {node: '>=10'} + deprecated: Old versions of tar are not supported, and contain widely publicized security vulnerabilities, which have been fixed in the current version. Please update. Support for old versions may be purchased (at exhorbitant rates) by contacting i@izs.me teeny-request@7.1.1: resolution: {integrity: sha512-iwY6rkW5DDGq8hE2YgNQlKbptYpY5Nn2xecjQiNjOXWbKzPGUfmeUBCSQbbr306d7Z7U2N0TPl+/SwYRfua1Dg==} @@ -6527,7 +6531,7 @@ snapshots: '@jsdoc/salty@0.2.9': dependencies: - lodash: 4.17.21 + lodash: 4.17.23 '@logdna/tail-file@2.2.0': {} @@ -7029,7 +7033,7 @@ snapshots: '@semantic-release/error': 3.0.0 aggregate-error: 3.1.0 fs-extra: 11.3.1 - lodash: 4.17.21 + lodash: 4.17.23 semantic-release: 25.0.2(typescript@5.9.3) '@semantic-release/commit-analyzer@13.0.1(semantic-release@25.0.2(typescript@5.9.3))': @@ -7876,7 +7880,7 @@ snapshots: dependencies: babel-runtime: 6.26.0 esutils: 2.0.3 - lodash: 4.17.21 + lodash: 4.17.23 to-fast-properties: 1.0.3 babylon@6.18.0: {} @@ -8026,7 +8030,7 @@ snapshots: catharsis@0.9.0: dependencies: - lodash: 4.17.21 + lodash: 4.17.23 cdktf-local-exec@0.6.28(@cdktf/provider-null@11.0.0(cdktf@0.21.0(constructs@10.4.4))(constructs@10.4.4))(cdktf@0.21.0(constructs@10.4.4))(constructs@10.4.4): dependencies: @@ -9306,7 +9310,7 @@ snapshots: cli-width: 3.0.0 external-editor: 3.1.0 figures: 3.2.0 - lodash: 4.17.21 + lodash: 4.17.23 mute-stream: 0.0.8 ora: 5.4.1 run-async: 2.4.1 @@ -9555,7 +9559,7 @@ snapshots: dependencies: '@babel/core': 7.28.5 jsdoc-regex: 1.0.1 - lodash: 4.17.21 + lodash: 4.17.23 jsdoc-mermaid@1.0.0: dependencies: @@ -9719,6 +9723,8 @@ snapshots: lodash@4.17.21: {} + lodash@4.17.23: {} + log-symbols@4.1.0: dependencies: chalk: 4.1.2 @@ -10588,7 +10594,7 @@ snapshots: requizzle@0.2.4: dependencies: - lodash: 4.17.21 + lodash: 4.17.23 reserved-identifiers@1.2.0: {}