From 730020d8463160c5b8a32fe8fe55fd738809cdf3 Mon Sep 17 00:00:00 2001
From: Alan Ayoub <alanayoub@me.com>
Date: Thu, 25 Feb 2021 08:32:19 -0800
Subject: [PATCH] Update package.json

Current versions of underscore have a a vulnerability. The most recent non-vulnerable version is 1.3.1 and that is why it is specified that way.
---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index 8a9c8e8..68c7b84 100644
--- a/package.json
+++ b/package.json
@@ -19,7 +19,7 @@
     "dependencies": {
         "js-yaml": "3.13.x",
         "ports": "1.1.x",
-        "underscore": "1.9.x"
+        "underscore": "1.3.1"
     },
     "devDependencies": {
         "coffeescript": "1.12.x",