From a343e1236783e99b03c8424002a350cb8e47a6d9 Mon Sep 17 00:00:00 2001
From: Cyd La Luz <quetzaluz@gmail.com>
Date: Tue, 23 Jul 2019 07:31:52 -0700
Subject: [PATCH] Upgrade: lodash.merge to prevent potential vulnerability (fix
 #141)

---
 package.json | 2 +-
 yarn.lock    | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/package.json b/package.json
index 84ecf6f..9cff72f 100644
--- a/package.json
+++ b/package.json
@@ -45,7 +45,7 @@
     "find-index": "^1.1.0",
     "fs-extra": "^4.0.3",
     "fs-tree-diff": "^0.5.7",
-    "lodash.merge": "^4.3.1",
+    "lodash.merge": "^4.6.2",
     "lodash.omit": "^4.1.0",
     "lodash.uniq": "^4.2.0",
     "walk-sync": "^0.3.2"
diff --git a/yarn.lock b/yarn.lock
index 3f5626e..724cb7a 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -1090,9 +1090,9 @@ lodash.keys@~2.3.0:
     lodash._shimkeys "~2.3.0"
     lodash.isobject "~2.3.0"
 
-lodash.merge@^4.3.1:
-  version "4.6.1"
-  resolved "https://registry.yarnpkg.com/lodash.merge/-/lodash.merge-4.6.1.tgz#adc25d9cb99b9391c59624f379fbba60d7111d54"
+lodash.merge@^4.6.2:
+  version "4.6.2"
+  resolved "https://registry.yarnpkg.com/lodash.merge/-/lodash.merge-4.6.2.tgz#558aa53b43b661e1925a0afdfa36a9a1085fe57a"
 
 lodash.noop@~2.3.0:
   version "2.3.0"