Merge pull request #7 from geodatagouv/dependabot/npm_and_yarn/lodash…

…-4.17.11 [Security] Bump lodash from 3.10.1 to 4.17.11
geodatagouv · Oct 23, 2018 · 3152d45 · 3152d45
2 parents 4efba51 + c7a0640
commit 3152d45
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 7 deletions.
diff --git a/package.json b/package.json
@@ -21,7 +21,7 @@
     "debug": "^4.1.0",
     "got": "^9.2.2",
     "libxmljs": "^0.19.5",
-    "lodash": "^3.6",
+    "lodash": "^4.17",
     "semver": "^4.3.3"
   },
   "devDependencies": {

diff --git a/yarn.lock b/yarn.lock
@@ -2170,12 +2170,7 @@ lodash.zip@^4.2.0:
   resolved "https://registry.yarnpkg.com/lodash.zip/-/lodash.zip-4.2.0.tgz#ec6662e4896408ed4ab6c542a3990b72cc080020"
   integrity sha1-7GZi5IlkCO1KtsVCo5kLcswIACA=
 
-lodash@^3.6:
-  version "3.10.1"
-  resolved "https://registry.yarnpkg.com/lodash/-/lodash-3.10.1.tgz#5bf45e8e49ba4189e17d482789dfd15bd140b7b6"
-  integrity sha1-W/Rejkm6QYnhfUgnid/RW9FAt7Y=
-
-lodash@^4.13.1, lodash@^4.17.10, lodash@^4.17.4, lodash@^4.17.5:
+lodash@^4.13.1, lodash@^4.17, lodash@^4.17.10, lodash@^4.17.4, lodash@^4.17.5:
   version "4.17.11"
   resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.11.tgz#b39ea6229ef607ecd89e2c8df12536891cac9b8d"
   integrity sha512-cQKh8igo5QUhZ7lg38DYWAxMvjSAKG0A8wGSVimP07SIUEK2UO+arSRKbRZWtelMtN5V0Hkwh5ryOto/SshYIg==