From dab5977c730ec5d391eee8e636c25c9902d61574 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 23 Jan 2026 09:15:02 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-15053838 --- package-lock.json | 8 ++++---- package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index 9c44d1f..be909c0 100644 --- a/package-lock.json +++ b/package-lock.json @@ -16,7 +16,7 @@ "@dvsa/mes-microservice-common": "1.2.2", "drizzle-orm": "^0.45.1", "escape-json-node": "^2.0.0", - "lodash": "^4.17.21", + "lodash": "^4.17.23", "luxon": "^3.4.4", "moment": "^2.29.4", "mysql2": "3.16.0", @@ -11792,9 +11792,9 @@ } }, "node_modules/lodash": { - "version": "4.17.21", - "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.21.tgz", - "integrity": "sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg==", + "version": "4.17.23", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.23.tgz", + "integrity": "sha512-LgVTMpQtIopCi79SJeDiP0TfWi5CNEc/L/aRdTh3yIvmZXTnheWpKjSZhnvMl8iXbC1tFg9gdHHDMLoV7CnG+w==", "license": "MIT" }, "node_modules/lodash.defaults": { diff --git a/package.json b/package.json index 65fcbde..077bb56 100644 --- a/package.json +++ b/package.json @@ -39,7 +39,7 @@ "@dvsa/mes-microservice-common": "1.2.2", "drizzle-orm": "^0.45.1", "escape-json-node": "^2.0.0", - "lodash": "^4.17.21", + "lodash": "^4.17.23", "luxon": "^3.4.4", "moment": "^2.29.4", "mysql2": "3.16.0",