From c2d12de7a16f5c6391ce69d630de238bd70b8450 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 26 Feb 2021 03:30:00 +0000 Subject: [PATCH] fix: access-provider-backend/package.json & access-provider-backend/package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-1018905 - https://snyk.io/vuln/SNYK-JS-LODASH-1040724 --- access-provider-backend/package-lock.json | 6 +++--- access-provider-backend/package.json | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/access-provider-backend/package-lock.json b/access-provider-backend/package-lock.json index 2e1e6e9e..ed05d77c 100644 --- a/access-provider-backend/package-lock.json +++ b/access-provider-backend/package-lock.json @@ -4406,9 +4406,9 @@ } }, "lodash": { - "version": "4.17.15", - "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.15.tgz", - "integrity": "sha512-8xOcRHvCjnocdS5cpwXQXVzmmh5e5+saE2QGoeQmbKmRS6J3VQppPOIt0MnmE+4xlZoumy0GPG0D0MVIQbNA1A==" + "version": "4.17.21", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.21.tgz", + "integrity": "sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg==" }, "lodash.flattendeep": { "version": "4.4.0", diff --git a/access-provider-backend/package.json b/access-provider-backend/package.json index b45a2e69..e75dad1b 100644 --- a/access-provider-backend/package.json +++ b/access-provider-backend/package.json @@ -28,7 +28,7 @@ "cors": "^2.8.5", "dotenv": "^8.2.0", "express": "^4.17.1", - "lodash": "^4.17.15", + "lodash": "^4.17.21", "lowdb": "^1.0.0", "secp256k1": "^4.0.0", "web3": "^1.2.6"