From 7e416b8fb55e192c08d98c0e53b2bdb064b7db92 Mon Sep 17 00:00:00 2001 From: "dependabot-preview[bot]" <27856297+dependabot-preview[bot]@users.noreply.github.com> Date: Fri, 14 Aug 2020 04:48:12 +0000 Subject: [PATCH] [Security] Bump lodash from 4.17.15 to 4.17.20 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.20. **This update includes security fixes.** - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.20) Signed-off-by: dependabot-preview[bot] --- package-lock.json | 13 ++++++++++--- package.json | 2 +- 2 files changed, 11 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index d23740a..c4a5e30 100644 --- a/package-lock.json +++ b/package-lock.json @@ -3871,6 +3871,13 @@ "fs-extra": "8.1.0", "lodash": "4.17.15", "winston": "3.2.1" + }, + "dependencies": { + "lodash": { + "version": "4.17.15", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.15.tgz", + "integrity": "sha512-8xOcRHvCjnocdS5cpwXQXVzmmh5e5+saE2QGoeQmbKmRS6J3VQppPOIt0MnmE+4xlZoumy0GPG0D0MVIQbNA1A==" + } } }, "jmespath": { @@ -4074,9 +4081,9 @@ } }, "lodash": { - "version": "4.17.15", - "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.15.tgz", - "integrity": "sha512-8xOcRHvCjnocdS5cpwXQXVzmmh5e5+saE2QGoeQmbKmRS6J3VQppPOIt0MnmE+4xlZoumy0GPG0D0MVIQbNA1A==" + "version": "4.17.20", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.20.tgz", + "integrity": "sha512-PlhdFcillOINfeV7Ni6oF1TAEayyZBoZ8bcshTHqOYJYlrqzRK5hagpagky5o4HfCzzd1TRkXPMFq6cKk9rGmA==" }, "lodash.debounce": { "version": "4.0.8", diff --git a/package.json b/package.json index 9374a87..0839e54 100644 --- a/package.json +++ b/package.json @@ -23,7 +23,7 @@ "dependencies": { "chalk": "3.0.0", "generator-jhipster": "6.6.0", - "lodash": "4.17.15", + "lodash": "4.17.20", "mkdirp": "0.5.1", "pluralize": "8.0.0", "yeoman-generator": "4.4.0"