From 882cf7a8f2ac7d467c05c0b1231ae64a6ff618e8 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 31 Mar 2021 00:50:08 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-UNDERSCORE-1080984 --- package-lock.json | 14 +++++++------- package.json | 2 +- 2 files changed, 8 insertions(+), 8 deletions(-) diff --git a/package-lock.json b/package-lock.json index b4c136d..73c5155 100644 --- a/package-lock.json +++ b/package-lock.json @@ -6302,16 +6302,16 @@ "integrity": "sha512-VCj5UiSyHBjwfYacmDuc/NOk4QQixbE+Wn7MFJuS0nRuPQbof132Pw4u53dm264O8LPc2MVsc7RJNml5szurkg==" }, "underscore": { - "version": "1.6.0", - "resolved": "https://registry.npmjs.org/underscore/-/underscore-1.6.0.tgz", - "integrity": "sha1-izixDKze9jM3uLJOT/htRa6lKag=" + "version": "1.12.1", + "resolved": "https://registry.npmjs.org/underscore/-/underscore-1.12.1.tgz", + "integrity": "sha512-hEQt0+ZLDVUMhebKxL4x1BTtDY7bavVofhZ9KZ4aI26X9SRaE+Y3m83XUL1UP2jn8ynjndwCCpEHdUG+9pP1Tw==" }, "underscore-plus": { - "version": "1.6.6", - "resolved": "https://registry.npmjs.org/underscore-plus/-/underscore-plus-1.6.6.tgz", - "integrity": "sha1-ZezeG9xEGjXYnmUP1w3PE65Dmn0=", + "version": "1.7.0", + "resolved": "https://registry.npmjs.org/underscore-plus/-/underscore-plus-1.7.0.tgz", + "integrity": "sha512-A3BEzkeicFLnr+U/Q3EyWwJAQPbA19mtZZ4h+lLq3ttm9kn8WC4R3YpuJZEXmWdLjYP47Zc8aLZm9kwdv+zzvA==", "requires": { - "underscore": "~1.6.0" + "underscore": "^1.9.1" } }, "uri-js": { diff --git a/package.json b/package.json index bd6eb7a..f550f5e 100644 --- a/package.json +++ b/package.json @@ -101,7 +101,7 @@ "react": "^16.6.3", "react-dom": "^16.6.3", "typescript": "^3.2.2", - "underscore-plus": "^1.6.6" + "underscore-plus": "^1.7.0" }, "devDependencies": { "atom-transpiler-debug-tool": "^1.0.5",