Update lodash to > 4.17.12

[Lavioli]

running npm audit shows a Prototype Pollution vulnerability, please update the lodash library to verions highter than 4.17.12

https://www.npmjs.com/advisories/1065

Current behavior:

Desired behavior:

Steps to reproduce: (app code and test code)

Versions

cypress 3.4.0

cypress 3.4.0
Mac OSX
Chrome

[Evanht]

fix already merged in develop, but not released yet :( #4684

[flotwig]

Duplicate of #4699

[jennifer-shehane]

The code for this is done in #4709, but this has yet to be released. We'll update this issue and reference the changelog when it's released.

You can run npm audit fix to fix the 'vulnerable' dependencies.

But also Cypress is immune to most if not all security vulnerabilities because its locally run software - not a web server hosted in the cloud, so this security issue doesn't even apply and is low priority for us.

[Lavioli]

Thanks for the prompt response :)

[cypress-bot]

Released in 3.4.1.