Skip to content

Commit

Permalink
Upgraded the lodash version to fix Prototype Pollution vulnerability (C…
Browse files Browse the repository at this point in the history 
…VE-2019-10744)  (#98)

* Upgraded the lodash version to fix Prototype Pollution vulnerability (CVE-2019-10744) https://app.snyk.io/vuln/SNYK-JS-LODASH-450202

* Added package-lock.json

* Fixed the order of loads in dependencies section of package.json. It is in alphabetical order now.
  • Loading branch information
@apoorvmalhotra @isaachinman
apoorvmalhotra authored and isaachinman committed Aug 1, 2019
1 parent 6d193aa commit 38e31a6
Show file tree
Hide file tree
Showing 2 changed files with 7 additions and 7 deletions.
12 changes: 6 additions & 6 deletions package-lock.json
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion package.json
View file
Expand Up @@ -16,7 +16,7 @@
},
"dependencies": {
"@types/joi": "^13.0.5",
"lodash": "^4.9.0"
"lodash": "^4.17.15"
},
"peerDependencies": {
"joi": "*"
Expand Down

0 comments on commit 38e31a6

Please sign in to comment.