From ccdddec9e68a1975c1fa2fba78db23ec8d04dda4 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 1 Apr 2021 08:45:30 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-UNDERSCORE-1080984 --- package-lock.json | 14 +++++++------- package.json | 2 +- 2 files changed, 8 insertions(+), 8 deletions(-) diff --git a/package-lock.json b/package-lock.json index d71db10..28369db 100644 --- a/package-lock.json +++ b/package-lock.json @@ -3883,17 +3883,17 @@ "integrity": "sha1-a7rwh3UA02vjTsqlhODbn+8DUgk=" }, "underscore-plus": { - "version": "1.6.8", - "resolved": "https://registry.npmjs.org/underscore-plus/-/underscore-plus-1.6.8.tgz", - "integrity": "sha512-88PrCeMKeAAC1L4xjSiiZ3Fg6kZOYrLpLGVPPeqKq/662DfQe/KTSKdSR/Q/tucKNnfW2MNAUGSCkDf8HmXC5Q==", + "version": "1.7.0", + "resolved": "https://registry.npmjs.org/underscore-plus/-/underscore-plus-1.7.0.tgz", + "integrity": "sha512-A3BEzkeicFLnr+U/Q3EyWwJAQPbA19mtZZ4h+lLq3ttm9kn8WC4R3YpuJZEXmWdLjYP47Zc8aLZm9kwdv+zzvA==", "requires": { - "underscore": "~1.8.3" + "underscore": "^1.9.1" }, "dependencies": { "underscore": { - "version": "1.8.3", - "resolved": "https://registry.npmjs.org/underscore/-/underscore-1.8.3.tgz", - "integrity": "sha1-Tz+1OxBuYJf8+ctBCfKl6b36UCI=" + "version": "1.12.1", + "resolved": "https://registry.npmjs.org/underscore/-/underscore-1.12.1.tgz", + "integrity": "sha512-hEQt0+ZLDVUMhebKxL4x1BTtDY7bavVofhZ9KZ4aI26X9SRaE+Y3m83XUL1UP2jn8ynjndwCCpEHdUG+9pP1Tw==" } } }, diff --git a/package.json b/package.json index 62f950e..6fc12da 100644 --- a/package.json +++ b/package.json @@ -220,7 +220,7 @@ "tidy-markdown": "2.0.4", "typescript": "^2.6.2", "typescript-formatter": "^7.0.0", - "underscore-plus": "^1.6.6", + "underscore-plus": "^1.7.0", "universal-analytics": "^0.4.16", "uuid": "^3.1.0", "which": "^1.3.0",