[Snyk] Security upgrade lodash from 4.17.21 to 4.17.23

[axlecoffee]

Snyk has created this PR to fix 1 vulnerabilities in the pnpm dependencies of this project.

Snyk changed the following file(s):

• package.json
• pnpm-lock.yaml

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Prototype Pollution SNYK-JS-LODASH-15053838	631

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution

[Copilot]

Pull request overview

Updates the lodash dependency to a newer patched version to address a reported prototype pollution vulnerability flagged by Snyk.

Changes:

• Bump lodash in package.json from ^4.17.21 to ^4.17.23
• Update pnpm-lock.yaml to lock lodash to 4.17.23 and reflect the updated dependency graph

Reviewed changes

Copilot reviewed 1 out of 2 changed files in this pull request and generated no comments.

File	Description
package.json	Updates the direct runtime dependency version range for lodash.
pnpm-lock.yaml	Updates the lockfile entries to resolve and pin lodash at 4.17.23 (including snapshots).

Files not reviewed (1)

• pnpm-lock.yaml: Language not supported

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.