From be740c30d18e89dbf33bc8eb7dfaf805a954f607 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 3 Apr 2026 06:16:18 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-15869625 - https://snyk.io/vuln/SNYK-JS-LODASH-15869619 --- package-lock.json | 8 ++++---- package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index 7f30f7d..215352b 100644 --- a/package-lock.json +++ b/package-lock.json @@ -10,7 +10,7 @@ "license": "MIT", "dependencies": { "debug": "^4.4.3", - "lodash": "^4.17.23", + "lodash": "^4.18.1", "mkdirp": "^3.0.1", "rimraf": "^6.1.3", "write-file-atomic": "^7.0.0" @@ -2896,9 +2896,9 @@ } }, "node_modules/lodash": { - "version": "4.17.23", - "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.23.tgz", - "integrity": "sha512-LgVTMpQtIopCi79SJeDiP0TfWi5CNEc/L/aRdTh3yIvmZXTnheWpKjSZhnvMl8iXbC1tFg9gdHHDMLoV7CnG+w==", + "version": "4.18.1", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.18.1.tgz", + "integrity": "sha512-dMInicTPVE8d1e5otfwmmjlxkZoUpiVLwyeTdUsi/Caj/gfzzblBcCE5sRHV/AsjuCmxWrte2TNGSYuCeCq+0Q==", "license": "MIT" }, "node_modules/lodash.memoize": { diff --git a/package.json b/package.json index fd37be8..1b771be 100644 --- a/package.json +++ b/package.json @@ -42,7 +42,7 @@ "license": "MIT", "dependencies": { "debug": "^4.4.3", - "lodash": "^4.17.23", + "lodash": "^4.18.1", "mkdirp": "^3.0.1", "rimraf": "^6.1.3", "write-file-atomic": "^7.0.0"