From 65c0d641d90de31863733b89a9c2cb822439f772 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 22 Feb 2021 21:30:10 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-1018905 - https://snyk.io/vuln/SNYK-JS-LODASH-1040724 --- package-lock.json | 8 ++++---- package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index a8886e9..0a54c2e 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,5 +1,5 @@ { - "name": "fullstack-tutorial-server", + "name": "jsdevtools-server", "version": "1.0.0", "lockfileVersion": 1, "requires": true, @@ -7450,9 +7450,9 @@ } }, "lodash": { - "version": "4.17.11", - "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.11.tgz", - "integrity": "sha512-cQKh8igo5QUhZ7lg38DYWAxMvjSAKG0A8wGSVimP07SIUEK2UO+arSRKbRZWtelMtN5V0Hkwh5ryOto/SshYIg==" + "version": "4.17.21", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.21.tgz", + "integrity": "sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg==" }, "lodash._reinterpolate": { "version": "3.0.0", diff --git a/package.json b/package.json index d84ef4f..82f4150 100644 --- a/package.json +++ b/package.json @@ -34,7 +34,7 @@ "graphql-tag": "^2.10.1", "isemail": "^3.1.3", "knex": "^0.16.3", - "lodash": "^4.17.11", + "lodash": "^4.17.21", "node-fetch": "^2.3.0", "nodemon": "^1.18.10", "pg": "^7.8.0",