From 4b2d1e0917d5c6dc3b0feece62fc29b3f7fad0fb Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 27 Aug 2020 21:30:12 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-608086 --- package-lock.json | 12 +++++++++--- package.json | 2 +- 2 files changed, 10 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index 0d21878..d23aec1 100644 --- a/package-lock.json +++ b/package-lock.json @@ -6073,9 +6073,9 @@ } }, "lodash": { - "version": "4.17.15", - "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.15.tgz", - "integrity": "sha512-8xOcRHvCjnocdS5cpwXQXVzmmh5e5+saE2QGoeQmbKmRS6J3VQppPOIt0MnmE+4xlZoumy0GPG0D0MVIQbNA1A==" + "version": "4.17.17", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.17.tgz", + "integrity": "sha512-/B2DjOphAoqi5BX4Gg2oh4UR0Gy/A7xYAMh3aSECEKzwS3eCDEpS0Cals1Ktvxwlal3bBJNc+5W9kNIcADdw5Q==" }, "lodash.find": { "version": "4.6.0", @@ -7145,6 +7145,12 @@ "mime-types": "^2.1.12" } }, + "lodash": { + "version": "4.17.15", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.15.tgz", + "integrity": "sha512-8xOcRHvCjnocdS5cpwXQXVzmmh5e5+saE2QGoeQmbKmRS6J3VQppPOIt0MnmE+4xlZoumy0GPG0D0MVIQbNA1A==", + "dev": true + }, "mime-db": { "version": "1.40.0", "resolved": "https://registry.npmjs.org/mime-db/-/mime-db-1.40.0.tgz", diff --git a/package.json b/package.json index fcc24f0..b87112a 100644 --- a/package.json +++ b/package.json @@ -33,7 +33,7 @@ "dependencies": { "cheerio": "^1.0.0-rc.3", "commander": "^4.1.1", - "lodash": "^4.17.15", + "lodash": "^4.17.17", "moment": "^2.24.0", "node-fetch": "^2.6.0", "open": "^7.0.2",