Fix lodash vulnerability

Dashlane · Jul 8, 2019 · 76481a9 · 76481a9
1 parent b305396
commit 76481a9
Show file tree

Hide file tree

Showing 2 changed files with 6 additions and 4 deletions.
diff --git a/package.json b/package.json
@@ -67,7 +67,8 @@
     "event-bus"
   ],
   "resolutions": {
-    "js-yaml": ">=3.13.1"
+    "js-yaml": ">=3.13.1",
+    "lodash": ">=4.17.11"
   },
   "license": "Apache-2.0"
 }
diff --git a/yarn.lock b/yarn.lock
@@ -2095,9 +2095,10 @@ lodash.get@^4.4.2:
   version "4.4.2"
   resolved "https://registry.yarnpkg.com/lodash.get/-/lodash.get-4.4.2.tgz#2d177f652fa31e939b4438d5341499dfa3825e99"
 
-lodash@^4.17.4:
-  version "4.17.5"
-  resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.5.tgz#99a92d65c0272debe8c96b6057bc8fbfa3bed511"
+lodash@>=4.17.11, lodash@^4.17.4:
+  version "4.17.11"
+  resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.11.tgz#b39ea6229ef607ecd89e2c8df12536891cac9b8d"
+  integrity sha512-cQKh8igo5QUhZ7lg38DYWAxMvjSAKG0A8wGSVimP07SIUEK2UO+arSRKbRZWtelMtN5V0Hkwh5ryOto/SshYIg==
 
 lolex@^2.2.0, lolex@^2.3.2:
   version "2.3.2"