Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency lodash to v4.17.21 #17

Open
wants to merge 1 commit into
base: dev
Choose a base branch
from
Open

Update dependency lodash to v4.17.21 #17

wants to merge 1 commit into from

Conversation

mend-for-github-com[bot]
Copy link

@mend-for-github-com mend-for-github-com bot commented Nov 30, 2022
edited

This PR contains the following updates:

Package Type Update Change
lodash (source) dependencies patch 4.17.15 -> 4.17.21

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity CVSS Score CVE
High High 7.4 CVE-2020-8203
High High 7.2 CVE-2021-23337
Medium Medium 5.3 CVE-2020-28500

Release Notes

lodash/lodash

v4.17.21

Compare Source

v4.17.20

Compare Source

v4.17.16

Compare Source

  • If you want to rebase/retry this PR, click this checkbox.

@mend-for-github-com mend-for-github-com bot added the security fix Security fix generated by Mend label Nov 30, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/lodash-4.x-lockfile branch 2 times, most recently from ef7c5c5 to 0272772 Compare December 3, 2022 01:35
@mend-for-github-com mend-for-github-com bot changed the title Update dependency lodash to v4.17.21 Update dependency lodash to v4.17.21 - autoclosed Dec 4, 2022
@mend-for-github-com mend-for-github-com bot deleted the whitesource-remediate/lodash-4.x-lockfile branch December 4, 2022 08:00
@mend-for-github-com mend-for-github-com bot changed the title Update dependency lodash to v4.17.21 - autoclosed Update dependency lodash to v4.17.21 Dec 4, 2022
@mend-for-github-com mend-for-github-com bot reopened this Dec 4, 2022
@mend-for-github-com mend-for-github-com bot restored the whitesource-remediate/lodash-4.x-lockfile branch December 4, 2022 08:19
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/lodash-4.x-lockfile branch 6 times, most recently from 444891b to a9374e3 Compare December 11, 2022 04:27
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/lodash-4.x-lockfile branch 2 times, most recently from 0ee629f to 4acb938 Compare December 15, 2022 12:39
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/lodash-4.x-lockfile branch 3 times, most recently from e0751e9 to 0490c12 Compare December 28, 2022 17:22
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/lodash-4.x-lockfile branch from 0490c12 to 1ad15fb Compare December 29, 2022 00:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
security fix Security fix generated by Mend
Projects
None yet
Milestone
No milestone
0 participants