From 009fdcb1f2d679a767882eb7e9dbaf7d7cd5e64b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 9 Mar 2021 20:24:04 +0000 Subject: [PATCH] Bump lodash from 4.17.5 to 4.17.19 in /app Bumps [lodash](https://github.com/lodash/lodash) from 4.17.5 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.5...4.17.19) Signed-off-by: dependabot[bot] --- app/package.json | 2 +- app/yarn.lock | 11 ++++------- 2 files changed, 5 insertions(+), 8 deletions(-) diff --git a/app/package.json b/app/package.json index 8b3264ccbe22..f2d1f4aeefaf 100644 --- a/app/package.json +++ b/app/package.json @@ -20,7 +20,7 @@ "electron-squirrel-startup": "1.0.0", "file-uri-to-path": "1.0.0", "git-describe": "4.0.2", - "lodash": "4.17.5", + "lodash": "4.17.19", "mkdirp": "0.5.1", "ms": "2.1.1", "node-pty": "0.8.0", diff --git a/app/yarn.lock b/app/yarn.lock index 76a8cd9c3d5d..d593787e3774 100644 --- a/app/yarn.lock +++ b/app/yarn.lock @@ -292,13 +292,10 @@ locate-path@^2.0.0: p-locate "^2.0.0" path-exists "^3.0.0" -lodash@4.17.5: - version "4.17.5" - resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.5.tgz#99a92d65c0272debe8c96b6057bc8fbfa3bed511" - -lodash@^4.16.6: - version "4.17.4" - resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.4.tgz#78203a4d1c328ae1d86dca6460e369b57f4055ae" +lodash@4.17.19, lodash@^4.16.6: + version "4.17.19" + resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.19.tgz#e48ddedbe30b3321783c5b4301fbd353bc1e4a4b" + integrity sha512-JNvd8XER9GQX0v2qJgsaN/mzFCNA5BRe/j8JN9d+tWyGLSodKQHKFicdwNYzWwI3wjRnaKPsGj1XkBjx/F96DQ== loose-envify@^1.0.0, loose-envify@^1.1.0, loose-envify@^1.3.1: version "1.3.1"