From 17b18da9e40be1cfc00655f08f0432fabc97cf7a Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 17 Aug 2020 03:33:54 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-590103 --- package-lock.json | 6 +++--- package.json | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index 7166354c3..16623cbb6 100644 --- a/package-lock.json +++ b/package-lock.json @@ -5635,9 +5635,9 @@ } }, "lodash": { - "version": "4.17.15", - "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.15.tgz", - "integrity": "sha512-8xOcRHvCjnocdS5cpwXQXVzmmh5e5+saE2QGoeQmbKmRS6J3VQppPOIt0MnmE+4xlZoumy0GPG0D0MVIQbNA1A==" + "version": "4.17.20", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.20.tgz", + "integrity": "sha512-PlhdFcillOINfeV7Ni6oF1TAEayyZBoZ8bcshTHqOYJYlrqzRK5hagpagky5o4HfCzzd1TRkXPMFq6cKk9rGmA==" }, "lodash.get": { "version": "4.4.2", diff --git a/package.json b/package.json index bc3fd4724..889af7995 100644 --- a/package.json +++ b/package.json @@ -43,7 +43,7 @@ "chokidar": "3.0.2", "fast-glob": "3.0.4", "graphql-tools": "4.0.5", - "lodash": "4.17.15", + "lodash": "4.17.20", "merge-graphql-schemas": "1.5.8", "normalize-path": "3.0.0", "ts-morph": "3.1.3",