From 98129512e312eafe5691e986df9d0d81af154c29 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 16 Jul 2020 20:28:46 +0000 Subject: [PATCH] Bump lodash from 4.17.10 to 4.17.19 in /graph Bumps [lodash](https://github.com/lodash/lodash) from 4.17.10 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.10...4.17.19) Signed-off-by: dependabot[bot] --- graph/package.json | 2 +- graph/yarn.lock | 6 +++--- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/graph/package.json b/graph/package.json index 86354ebb..515bba8d 100644 --- a/graph/package.json +++ b/graph/package.json @@ -31,7 +31,7 @@ "helmet": "^3.11.0", "http-errors": "^1.6.2", "jsonwebtoken": "^8.3.0", - "lodash": "^4.17.5", + "lodash": "^4.17.19", "moment": "^2.20.1", "mongoose": "^5.1.2", "mongoose-elasticsearch-xp": "^5.4.1", diff --git a/graph/yarn.lock b/graph/yarn.lock index 593669e7..f773e442 100644 --- a/graph/yarn.lock +++ b/graph/yarn.lock @@ -2551,9 +2551,9 @@ lodash.templatesettings@^3.0.0: lodash._reinterpolate "^3.0.0" lodash.escape "^3.0.0" -lodash@^4.17.10, lodash@^4.17.4, lodash@^4.17.5, lodash@^4.3.0: - version "4.17.10" - resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.10.tgz#1b7793cf7259ea38fb3661d4d38b3260af8ae4e7" +lodash@^4.17.10, lodash@^4.17.19, lodash@^4.17.4, lodash@^4.3.0: + version "4.17.19" + resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.19.tgz#e48ddedbe30b3321783c5b4301fbd353bc1e4a4b" lodash@~1.0.1: version "1.0.2"