From 79dacddfa8449c2ef7feb37e05f6f98ee4a1b741 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 9 Jul 2020 23:15:23 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-567746 --- package-lock.json | 6 +++--- package.json | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index 5e3d2b7..72a6a1b 100644 --- a/package-lock.json +++ b/package-lock.json @@ -2141,9 +2141,9 @@ } }, "lodash": { - "version": "4.17.13", - "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.13.tgz", - "integrity": "sha512-vm3/XWXfWtRua0FkUyEHBZy8kCPjErNBT9fJx8Zvs+U6zjqPbTUOpkaoum3O5uiA8sm+yNMHXfYkTUHFoMxFNA==" + "version": "4.17.16", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.16.tgz", + "integrity": "sha512-mzxOTaU4AsJhnIujhngm+OnA6JX4fTI8D5H26wwGd+BJ57bW70oyRwTqo6EFJm1jTZ7hCo7yVzH1vB8TMFd2ww==" }, "lodash._reinterpolate": { "version": "3.0.0", diff --git a/package.json b/package.json index c392ed0..ab4759f 100644 --- a/package.json +++ b/package.json @@ -40,7 +40,7 @@ }, "homepage": "https://github.com/yonjah/node_acl_sequelize", "dependencies": { - "lodash": "^4.17.13" + "lodash": "^4.17.16" }, "peerDependencies": { "sequelize": ">=3.0.0",