From 65b10bc846616d68b877ff2e06ec750a4671ada1 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 9 Jul 2020 21:19:02 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-567746 --- package-lock.json | 42 +++++++++++++++++++++++++++++++++++++++--- package.json | 2 +- 2 files changed, 40 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index b83eda2..6022ea7 100644 --- a/package-lock.json +++ b/package-lock.json @@ -183,6 +183,12 @@ "supports-color": "^5.2.0" } }, + "lodash": { + "version": "4.17.11", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.11.tgz", + "integrity": "sha512-cQKh8igo5QUhZ7lg38DYWAxMvjSAKG0A8wGSVimP07SIUEK2UO+arSRKbRZWtelMtN5V0Hkwh5ryOto/SshYIg==", + "dev": true + }, "supports-color": { "version": "5.5.0", "resolved": "https://registry.npmjs.org/supports-color/-/supports-color-5.5.0.tgz", @@ -207,6 +213,14 @@ "dev": true, "requires": { "lodash": "4.17.11" + }, + "dependencies": { + "lodash": { + "version": "4.17.11", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.11.tgz", + "integrity": "sha512-cQKh8igo5QUhZ7lg38DYWAxMvjSAKG0A8wGSVimP07SIUEK2UO+arSRKbRZWtelMtN5V0Hkwh5ryOto/SshYIg==", + "dev": true + } } }, "@commitlint/execute-rule": { @@ -256,6 +270,14 @@ "@commitlint/rules": "^7.5.2", "babel-runtime": "^6.23.0", "lodash": "4.17.11" + }, + "dependencies": { + "lodash": { + "version": "4.17.11", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.11.tgz", + "integrity": "sha512-cQKh8igo5QUhZ7lg38DYWAxMvjSAKG0A8wGSVimP07SIUEK2UO+arSRKbRZWtelMtN5V0Hkwh5ryOto/SshYIg==", + "dev": true + } } }, "@commitlint/load": { @@ -270,6 +292,14 @@ "cosmiconfig": "^4.0.0", "lodash": "4.17.11", "resolve-from": "^4.0.0" + }, + "dependencies": { + "lodash": { + "version": "4.17.11", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.11.tgz", + "integrity": "sha512-cQKh8igo5QUhZ7lg38DYWAxMvjSAKG0A8wGSVimP07SIUEK2UO+arSRKbRZWtelMtN5V0Hkwh5ryOto/SshYIg==", + "dev": true + } } }, "@commitlint/message": { @@ -323,6 +353,12 @@ "parent-module": "^1.0.0", "resolve-from": "^4.0.0" } + }, + "lodash": { + "version": "4.17.11", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.11.tgz", + "integrity": "sha512-cQKh8igo5QUhZ7lg38DYWAxMvjSAKG0A8wGSVimP07SIUEK2UO+arSRKbRZWtelMtN5V0Hkwh5ryOto/SshYIg==", + "dev": true } } }, @@ -4129,9 +4165,9 @@ } }, "lodash": { - "version": "4.17.11", - "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.11.tgz", - "integrity": "sha512-cQKh8igo5QUhZ7lg38DYWAxMvjSAKG0A8wGSVimP07SIUEK2UO+arSRKbRZWtelMtN5V0Hkwh5ryOto/SshYIg==" + "version": "4.17.16", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.16.tgz", + "integrity": "sha512-mzxOTaU4AsJhnIujhngm+OnA6JX4fTI8D5H26wwGd+BJ57bW70oyRwTqo6EFJm1jTZ7hCo7yVzH1vB8TMFd2ww==" }, "lodash._reinterpolate": { "version": "3.0.0", diff --git a/package.json b/package.json index c3c04e9..bab5969 100644 --- a/package.json +++ b/package.json @@ -29,7 +29,7 @@ "bluebird": "^3.5.2", "commander": "^2.18.0", "js-yaml": "^3.13.0", - "lodash": "^4.17.11", + "lodash": "^4.17.16", "node-docker-watchdog": "^1.2.3", "ow": "^0.8.0", "prompt": "^1.0.0",