From a3d8b65f02f0846f2479c5af72204e9e4f4636ce Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 16 Jul 2020 20:46:54 +0000 Subject: [PATCH] build(deps): bump lodash from 3.10.1 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 3.10.1 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/3.10.1...4.17.19) Signed-off-by: dependabot[bot] --- package.json | 2 +- yarn.lock | 12 ++++-------- 2 files changed, 5 insertions(+), 9 deletions(-) diff --git a/package.json b/package.json index 443b281..e6cc3e2 100644 --- a/package.json +++ b/package.json @@ -25,7 +25,7 @@ "humanize-duration": "2.4.0", "istanbul-middleware": "0.2.2", "load-script": "0.0.5", - "lodash": "3.10.1", + "lodash": "4.17.19", "opener": "1.4.0", "osenv": "0.0.3", "shallow-copy": "0.0.1", diff --git a/yarn.lock b/yarn.lock index c41d9f4..521836e 100644 --- a/yarn.lock +++ b/yarn.lock @@ -796,7 +796,7 @@ compressible@~2.0.3: compression@1.5.0: version "1.5.0" - resolved "http://registry.npmjs.org/compression/-/compression-1.5.0.tgz#ccc1a54788da1b3ad7729c49f6a00b3ac9adf47f" + resolved "https://registry.npmjs.org/compression/-/compression-1.5.0.tgz#ccc1a54788da1b3ad7729c49f6a00b3ac9adf47f" dependencies: accepts "~1.2.9" bytes "2.1.0" @@ -2297,13 +2297,9 @@ lodash.memoize@~3.0.3: version "3.0.4" resolved "https://registry.yarnpkg.com/lodash.memoize/-/lodash.memoize-3.0.4.tgz#2dcbd2c287cbc0a55cc42328bd0c736150d53e3f" -lodash@3.10.1: - version "3.10.1" - resolved "https://registry.yarnpkg.com/lodash/-/lodash-3.10.1.tgz#5bf45e8e49ba4189e17d482789dfd15bd140b7b6" - -lodash@^4.17.10: - version "4.17.10" - resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.10.tgz#1b7793cf7259ea38fb3661d4d38b3260af8ae4e7" +lodash@4.17.19, lodash@^4.17.10: + version "4.17.19" + resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.19.tgz#e48ddedbe30b3321783c5b4301fbd353bc1e4a4b" lodash@~2.1.0: version "2.1.0"