From c9d3cc747755290e05d64ca6378d022a72fad4aa Mon Sep 17 00:00:00 2001
From: Lucas Feliciano <mail@lucasfeliciano.com>
Date: Thu, 11 Jul 2019 10:34:39 +0200
Subject: [PATCH] Update lodash

By updating lodash we remove a vulnerable version from the project.

See more at:
https://snyk.io/vuln/SNYK-JS-LODASH-73638

https://github.com/lodash/lodash/pull/4336
---
 package.json |  4 ++--
 yarn.lock    | 10 ++++++++++
 2 files changed, 12 insertions(+), 2 deletions(-)

diff --git a/package.json b/package.json
index 6caf61295..760ac28df 100644
--- a/package.json
+++ b/package.json
@@ -44,8 +44,8 @@
   "dependencies": {
     "deepmerge": "^2.1.1",
     "hoist-non-react-statics": "^3.3.0",
-    "lodash": "^4.17.11",
-    "lodash-es": "^4.17.11",
+    "lodash": "^4.17.14",
+    "lodash-es": "^4.17.14",
     "react-fast-compare": "^2.0.1",
     "scheduler": "^0.14.0",
     "tiny-warning": "^1.0.2",
diff --git a/yarn.lock b/yarn.lock
index 89a4805de..21e4ce2d7 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -7118,6 +7118,11 @@ lodash-es@^4.17.11:
   resolved "https://registry.yarnpkg.com/lodash-es/-/lodash-es-4.17.11.tgz#145ab4a7ac5c5e52a3531fb4f310255a152b4be0"
   integrity sha512-DHb1ub+rMjjrxqlB3H56/6MXtm1lSksDp2rA2cNWjG8mlDUYFhUj3Di2Zn5IwSU87xLv8tNIQ7sSwE/YOX/D/Q==
 
+lodash-es@^4.17.14:
+  version "4.17.14"
+  resolved "https://registry.yarnpkg.com/lodash-es/-/lodash-es-4.17.14.tgz#12a95a963cc5955683cee3b74e85458954f37ecc"
+  integrity sha512-7zchRrGa8UZXjD/4ivUWP1867jDkhzTG2c/uj739utSd7O/pFFdxspCemIFKEEjErbcqRzn8nKnGsi7mvTgRPA==
+
 lodash.chunk@^4.2.0:
   version "4.2.0"
   resolved "https://registry.yarnpkg.com/lodash.chunk/-/lodash.chunk-4.2.0.tgz#66e5ce1f76ed27b4303d8c6512e8d1216e8106bc"
@@ -7178,6 +7183,11 @@ lodash@^4.11.2, lodash@^4.17.10, lodash@^4.17.11, lodash@^4.17.5, lodash@^4.3.0:
   resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.11.tgz#b39ea6229ef607ecd89e2c8df12536891cac9b8d"
   integrity sha512-cQKh8igo5QUhZ7lg38DYWAxMvjSAKG0A8wGSVimP07SIUEK2UO+arSRKbRZWtelMtN5V0Hkwh5ryOto/SshYIg==
 
+lodash@^4.17.14:
+  version "4.17.14"
+  resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.14.tgz#9ce487ae66c96254fe20b599f21b6816028078ba"
+  integrity sha512-mmKYbW3GLuJeX+iGP+Y7Gp1AiGHGbXHCOh/jZmrawMmsE7MS4znI3RL2FsjbqOyMayHInjOeykW7PEajUk1/xw==
+
 log-symbols@^1.0.2:
   version "1.0.2"
   resolved "https://registry.yarnpkg.com/log-symbols/-/log-symbols-1.0.2.tgz#376ff7b58ea3086a0f09facc74617eca501e1a18"