From 612c9b5f9ed6f54744c1d22e92dc2cd96d220549 Mon Sep 17 00:00:00 2001
From: Ramya Payyavula <ramyaram48@gmail.com>
Date: Fri, 7 Aug 2020 11:29:05 -0500
Subject: [PATCH] Update package.json

older versions of lodash has vulnerabilities. lodash is vulnerable to injection vulnerability. An attacker can inject malicious code via `sourceURL` since it is not sanitized for the user-provided code that leads to the `eval()` function.
---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index adb1028..3dca9ee 100644
--- a/package.json
+++ b/package.json
@@ -44,7 +44,7 @@
     "@babel/helper-module-imports": "^7.0.0",
     "@babel/types": "^7.0.0",
     "glob": "^7.1.1",
-    "lodash": "^4.17.10",
+    "lodash": "^4.17.19",
     "require-package-name": "^2.0.1"
   },
   "files": [