From 1807fb75606bbd277c11e7c81669708f143f1d11 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 10 Jul 2020 00:16:56 +0000
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-LODASH-567746
---
 package-lock.json | 6 +++---
 package.json      | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 1c3b2a2..6ca35f4 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -2952,9 +2952,9 @@
       }
     },
     "lodash": {
-      "version": "4.17.15",
-      "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.15.tgz",
-      "integrity": "sha512-8xOcRHvCjnocdS5cpwXQXVzmmh5e5+saE2QGoeQmbKmRS6J3VQppPOIt0MnmE+4xlZoumy0GPG0D0MVIQbNA1A=="
+      "version": "4.17.16",
+      "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.16.tgz",
+      "integrity": "sha512-mzxOTaU4AsJhnIujhngm+OnA6JX4fTI8D5H26wwGd+BJ57bW70oyRwTqo6EFJm1jTZ7hCo7yVzH1vB8TMFd2ww=="
     },
     "lodash._reinterpolate": {
       "version": "3.0.0",
diff --git a/package.json b/package.json
index c479592..2034d13 100644
--- a/package.json
+++ b/package.json
@@ -52,7 +52,7 @@
     "backoff": "^2.4.1",
     "common-env": "^6.1.0",
     "debug": "^4.0.1",
-    "lodash": "^4.15.0",
+    "lodash": "^4.17.16",
     "npm-release": "^1.0.0",
     "update-notifier": "^4.1.0",
     "winston": "^3.2.1"