From c9b095a32fbf0f74a89b1480b69b266f03832ce2 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 24 Jan 2026 20:27:29 +0000
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-LODASH-15053838
---
 package-lock.json | 15 ++++++++-------
 package.json      |  2 +-
 2 files changed, 9 insertions(+), 8 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index d9309f9..3bae33c 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -22,7 +22,7 @@
                 "https-proxy-agent": "^7.0.4",
                 "json-groupby": "^1.1.1",
                 "jsonwebtoken": "^9.0.2",
-                "lodash": "^4.17.21",
+                "lodash": "^4.17.23",
                 "mime-types": "^2.1.35",
                 "ora-classic": "^5.4.2",
                 "performant-array-to-tree": "^1.11.0",
@@ -6471,9 +6471,10 @@
             }
         },
         "node_modules/lodash": {
-            "version": "4.17.21",
-            "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.21.tgz",
-            "integrity": "sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg=="
+            "version": "4.17.23",
+            "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.23.tgz",
+            "integrity": "sha512-LgVTMpQtIopCi79SJeDiP0TfWi5CNEc/L/aRdTh3yIvmZXTnheWpKjSZhnvMl8iXbC1tFg9gdHHDMLoV7CnG+w==",
+            "license": "MIT"
         },
         "node_modules/lodash.debounce": {
             "version": "4.0.8",
@@ -15273,9 +15274,9 @@
             }
         },
         "lodash": {
-            "version": "4.17.21",
-            "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.21.tgz",
-            "integrity": "sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg=="
+            "version": "4.17.23",
+            "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.23.tgz",
+            "integrity": "sha512-LgVTMpQtIopCi79SJeDiP0TfWi5CNEc/L/aRdTh3yIvmZXTnheWpKjSZhnvMl8iXbC1tFg9gdHHDMLoV7CnG+w=="
         },
         "lodash.debounce": {
             "version": "4.0.8",
diff --git a/package.json b/package.json
index 9d13221..a7101fb 100644
--- a/package.json
+++ b/package.json
@@ -61,7 +61,7 @@
         "https-proxy-agent": "^7.0.4",
         "json-groupby": "^1.1.1",
         "jsonwebtoken": "^9.0.2",
-        "lodash": "^4.17.21",
+        "lodash": "^4.17.23",
         "mime-types": "^2.1.35",
         "ora-classic": "^5.4.2",
         "performant-array-to-tree": "^1.11.0",