From b3d44da4133459766b4ca56d8919d6ba80464264 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 16 Apr 2024 05:34:27 +0000 Subject: [PATCH] fix: package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-6139239 --- package.json | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/package.json b/package.json index fcd5fdbc..0ea3453d 100644 --- a/package.json +++ b/package.json @@ -35,7 +35,7 @@ "async-helper-base": "^0.2.0", "base-loader": "^0.1.0", "chalk": "^1.1.1", - "composer": "^0.4.0", + "composer": "^0.11.3", "computed-property": "^0.1.2", "cwd": "^0.8.0", "data-store": "^0.8.2", @@ -65,7 +65,7 @@ "is-true": "^0.1.0", "js-comments": "^0.5.4", "lint-templates": "^0.1.2", - "lodash": "^3.10.1", + "lodash": "^4.17.17", "log-symbols": "^1.0.2", "logging-helpers": "^0.4.0", "markdown-toc": "^0.11.5", @@ -86,13 +86,13 @@ "relative-dest": "^0.1.0", "remarkable": "^1.6.0", "stringify-travis-url": "^0.1.0", - "template": "^0.14.3", + "template": "^0.15.0", "template-helper-apidocs": "^0.4.4", "template-helpers": "^0.3.2", "template-toc": "^0.3.3", "through2": "^2.0.0", "update-copyright": "^0.1.0", - "vinyl-fs": "^1.0.0", + "vinyl-fs": "^2.0.0", "year": "^0.2.1" }, "devDependencies": {