From 3879d2419ae98b0bc4f35f460d5fc568ea6384e2 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 22 Jan 2026 09:43:28 +0000 Subject: [PATCH] fix: package.json & pnpm-lock.yaml to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASHES-15053836 --- package.json | 2 +- pnpm-lock.yaml | 10 +++++----- 2 files changed, 6 insertions(+), 6 deletions(-) diff --git a/package.json b/package.json index 81b4e7c..19d9322 100644 --- a/package.json +++ b/package.json @@ -13,7 +13,7 @@ "escape-html": "^1.0.3", "form-serialize": "^0.7.2", "ky": "^1.4.0", - "lodash-es": "^4.17.21", + "lodash-es": "^4.17.23", "pinia": "^2.1.7", "vue": "^3.4.32", "vue-router": "^4.4.0" diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml index 32824e5..52e8f62 100644 --- a/pnpm-lock.yaml +++ b/pnpm-lock.yaml @@ -33,8 +33,8 @@ importers: specifier: ^1.4.0 version: 1.4.0 lodash-es: - specifier: ^4.17.21 - version: 4.17.21 + specifier: ^4.17.23 + version: 4.17.23 pinia: specifier: ^2.1.7 version: 2.1.7(vue@3.4.32) @@ -833,8 +833,8 @@ packages: resolution: {integrity: sha512-iPZK6eYjbxRu3uB4/WZ3EsEIMJFMqAoopl3R+zuq0UjcAm/MO6KCweDgPfP3elTztoKP3KtnVHxTn2NHBSDVUw==} engines: {node: '>=10'} - lodash-es@4.17.21: - resolution: {integrity: sha512-mKnC+QJ9pWVzv+C4/U3rRsHapFfHvQFoFB92e52xeyGMcX6/OlIl78je1u8vePzYZSkkogMPJ2yjxxsb89cxyw==} + lodash-es@4.17.23: + resolution: {integrity: sha512-kVI48u3PZr38HdYz98UmfPnXl2DXrpdctLrFLCd3kOx1xUkOmpFPx7gCWWM5MPkL/fD8zb+Ph0QzjGFs4+hHWg==} lodash.merge@4.6.2: resolution: {integrity: sha512-0KpjqXRVvrYyCsX1swR/XTK0va6VQkQM6MNo7PqW77ByjAhoARA8EfrP1N4+KlKj8YS0ZUCtRT/YUuhyYDujIQ==} @@ -2190,7 +2190,7 @@ snapshots: dependencies: p-locate: 5.0.0 - lodash-es@4.17.21: {} + lodash-es@4.17.23: {} lodash.merge@4.6.2: {}