fix(security): patch lodash.set dependency vulnerabilities (#1094)

package.json

@@ -27,7 +27,7 @@
   "dependencies": {
     "@babel/runtime": "7.15.4",
     "bluebird": "2.9.25",
-    "forest-express": "10.2.10",
+    "forest-express": "10.2.12",
     "http-errors": "1.7.2",
     "lodash": "4.17.21",
     "moment": "2.29.4",

yarn.lock

@@ -1295,15 +1295,14 @@
   resolved "https://registry.yarnpkg.com/@forestadmin/context/-/context-1.31.0.tgz#b4b5a3b589e52d337a1f45807db22c2860e640a7"
   integrity sha512-RQkDBkq+6ySMv+YNezz9VWSyCsqD7fj/+bXrXhQ6lJ62nbRUIUheH7ApvXwfnwFR1u55oT6Yhar11t6DaiE9Ig==
 
-"@forestadmin/forestadmin-client@1.2.1":
-  version "1.2.1"
-  resolved "https://registry.yarnpkg.com/@forestadmin/forestadmin-client/-/forestadmin-client-1.2.1.tgz#5ee07fa73096ae55880d1d19cae449c4fb182ba6"
-  integrity sha512-4ZvvERcH2IDsWOWrmN0SBx88aFvfj6vJt1xTGIrwXkGY/agod7TH5kn9XqbYtmyOxLApmwrd5+08Bq6t4mDKug==
+"@forestadmin/forestadmin-client@1.25.1":
+  version "1.25.1"
+  resolved "https://registry.yarnpkg.com/@forestadmin/forestadmin-client/-/forestadmin-client-1.25.1.tgz#1fcc1adccaee5da42a0a47e1a40c8b72fe7a8cf7"
+  integrity sha512-ReGXq+/g7FyQoELWANPrTxSNjbzkCJMnVWb2tbm3wlm8zTEa/KuKQra5Z22rwONCWM2YgwHbRw+wQ47ZK80DBA==
   dependencies:
     eventsource "2.0.2"
     json-api-serializer "^2.6.6"
     jsonwebtoken "^9.0.0"
-    lru-cache "^7.14.1"
     object-hash "^3.0.0"
     openid-client "^5.3.1"
     superagent "^8.0.6"
@@ -4457,15 +4456,14 @@ expect@^26.6.2:
     jest-message-util "^26.6.2"
     jest-regex-util "^26.0.0"
 
-express-jwt@8.3.0:
-  version "8.3.0"
-  resolved "https://registry.yarnpkg.com/express-jwt/-/express-jwt-8.3.0.tgz#fd317bb52bbe06bdd55afb8dad6bc65b44d39e14"
-  integrity sha512-3eMAlhv240YOzI0WRbufa2oBc6xR29GVY4HZ6AZfJQGnTtelXBmFRYPk+BojSdTa5JLlu9LVmOrTJRI9yg54ww==
+express-jwt@8.4.1:
+  version "8.4.1"
+  resolved "https://registry.yarnpkg.com/express-jwt/-/express-jwt-8.4.1.tgz#ba817c1ced7c6f1f7017fc2e6deac207011e8acb"
+  integrity sha512-IZoZiDv2yZJAb3QrbaSATVtTCYT11OcqgFGoTN4iKVyN6NBkBkhtVIixww5fmakF0Upt5HfOxJuS6ZmJVeOtTQ==
   dependencies:
     "@types/jsonwebtoken" "^9"
     express-unless "^2.1.3"
     jsonwebtoken "^9.0.0"
-    lodash.set "^4.3.2"
 
 express-unless@^2.1.3:
   version "2.1.3"
@@ -4728,14 +4726,14 @@ for-in@^1.0.2:
   resolved "https://registry.yarnpkg.com/for-in/-/for-in-1.0.2.tgz#81068d295a8142ec0ac726c6e2200c30fb6d5e80"
   integrity sha512-7EwmXrOjyL+ChxMhmG5lnW9MPt1aIeZEwKhQzoBUdTV0N3zuwWDZYVJatDvZ2OyzPUvdIAZDsCetk3coyMfcnQ==
 
-forest-express@10.2.10:
-  version "10.2.10"
-  resolved "https://registry.yarnpkg.com/forest-express/-/forest-express-10.2.10.tgz#bcfabcacaa043b8b290fa7870e51dc4031336729"
-  integrity sha512-Gzb0qGxcpfO2+E5rUH07y+AJ5qpjrtaA8BdA3P/uPHHPV9q0yGoHREUG6bA4wQM2V4qQNDicJNftmYl68A1DBw==
+forest-express@10.2.12:
+  version "10.2.12"
+  resolved "https://registry.yarnpkg.com/forest-express/-/forest-express-10.2.12.tgz#0eb4a285f7c001b15cb7cc46bf3390b5c921824b"
+  integrity sha512-2bAsr31b4qULRrFELVjyF3Qx0ITDD/56sW4KU67cgdbM0KEZq6J7EQejMYa/bPQdFlybRtmp7wh1iAKWizQi7w==
   dependencies:
     "@babel/runtime" "7.19.0"
     "@forestadmin/context" "1.31.0"
-    "@forestadmin/forestadmin-client" "1.2.1"
+    "@forestadmin/forestadmin-client" "1.25.1"
     base32-encode "1.1.1"
     bitwise-xor "0.0.0"
     bluebird "3.7.1"
@@ -4744,7 +4742,7 @@ forest-express@10.2.10:
     cors "2.8.5"
     csv-stringify "1.0.4"
     express "^4.18.2"
-    express-jwt "8.3.0"
+    express-jwt "8.4.1"
     forest-ip-utils "1.0.1"
     http-errors "1.7.3"
     inflected "2.0.4"
@@ -6902,11 +6900,6 @@ lodash.mergewith@^4.6.2:
   resolved "https://registry.yarnpkg.com/lodash.mergewith/-/lodash.mergewith-4.6.2.tgz#617121f89ac55f59047c7aec1ccd6654c6590f55"
   integrity sha512-GK3g5RPZWTRSeLSpgP8Xhra+pnjBC56q9FZYe1d5RN3TJ35dbkGy3YqBSMbyCrlbi+CM9Z3Jk5yTL7RCsqboyQ==
 
-lodash.set@^4.3.2:
-  version "4.3.2"
-  resolved "https://registry.yarnpkg.com/lodash.set/-/lodash.set-4.3.2.tgz#d8757b1da807dde24816b0d6a84bea1a76230b23"
-  integrity sha512-4hNPN5jlm/N/HLMCO43v8BXKq9Z7QdAGc/VGrRD61w8gN9g/6jF9A4L1pbUgBLCffi0w9VsXfTOij5x8iTyFvg==
-
 lodash.snakecase@^4.1.1:
   version "4.1.1"
   resolved "https://registry.yarnpkg.com/lodash.snakecase/-/lodash.snakecase-4.1.1.tgz#39d714a35357147837aefd64b5dcbb16becd8f8d"
@@ -6982,7 +6975,7 @@ lru-cache@^6.0.0:
   dependencies:
     yallist "^4.0.0"
 
-lru-cache@^7.14.1, lru-cache@^7.4.4, lru-cache@^7.5.1, lru-cache@^7.7.1:
+lru-cache@^7.4.4, lru-cache@^7.5.1, lru-cache@^7.7.1:
   version "7.14.1"
   resolved "https://registry.yarnpkg.com/lru-cache/-/lru-cache-7.14.1.tgz#8da8d2f5f59827edb388e63e459ac23d6d408fea"
   integrity sha512-ysxwsnTKdAx96aTRdhDOCQfDgbHnt8SK0KY8SEjO0wHinhWOFTESbjVCMPbU1uGXg/ch4lifqx0wfjOawU2+WA==