From 047683219daf7940590db1237f6826a038bdc41d Mon Sep 17 00:00:00 2001
From: Antonio Davi Macedo Coelho de Castro <adavimacedo@gmail.com>
Date: Tue, 23 Feb 2021 00:52:15 -0800
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities (#7218)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-LODASH-1018905
- https://snyk.io/vuln/SNYK-JS-LODASH-1040724

Co-authored-by: snyk-bot <snyk-bot@snyk.io>
---
 package-lock.json | 6 +++---
 package.json      | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 727e131684..1cb5a318f9 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -7861,9 +7861,9 @@
       }
     },
     "lodash": {
-      "version": "4.17.20",
-      "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.20.tgz",
-      "integrity": "sha512-PlhdFcillOINfeV7Ni6oF1TAEayyZBoZ8bcshTHqOYJYlrqzRK5hagpagky5o4HfCzzd1TRkXPMFq6cKk9rGmA=="
+      "version": "4.17.21",
+      "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.21.tgz",
+      "integrity": "sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg=="
     },
     "lodash.assignin": {
       "version": "4.2.0",
diff --git a/package.json b/package.json
index d904116557..aecd137b6a 100644
--- a/package.json
+++ b/package.json
@@ -43,7 +43,7 @@
     "jsonwebtoken": "8.5.1",
     "jwks-rsa": "1.12.2",
     "ldapjs": "2.2.3",
-    "lodash": "4.17.20",
+    "lodash": "4.17.21",
     "lru-cache": "5.1.1",
     "mime": "2.5.0",
     "mongodb": "3.6.3",