From 137096a077622943cb1da20282e8f335594b62f5 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 30 Mar 2021 07:42:10 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-UNDERSCORE-1080984 --- package-lock.json | 6 +++--- package.json | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index 482cb30..374e0ac 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1178,9 +1178,9 @@ } }, "underscore": { - "version": "1.9.1", - "resolved": "https://registry.npmjs.org/underscore/-/underscore-1.9.1.tgz", - "integrity": "sha512-5/4etnCkd9c8gwgowi5/om/mYO5ajCaOgdzj/oW+0eQV9WxKBDZw5+ycmKmeaTXjInS/W0BzpGLo2xR2aBwZdg==" + "version": "1.12.1", + "resolved": "https://registry.npmjs.org/underscore/-/underscore-1.12.1.tgz", + "integrity": "sha512-hEQt0+ZLDVUMhebKxL4x1BTtDY7bavVofhZ9KZ4aI26X9SRaE+Y3m83XUL1UP2jn8ynjndwCCpEHdUG+9pP1Tw==" }, "urlish": { "version": "1.0.1", diff --git a/package.json b/package.json index 7dc993a..bd7d325 100644 --- a/package.json +++ b/package.json @@ -12,7 +12,7 @@ "buildjs.core": "^1.0.0", "debug": "^4.1.1", "getit": "^1.0.0", - "underscore": "^1.9.1" + "underscore": "^1.12.1" }, "devDependencies": { "coffee-script": "^1.12.7",