-
**Problem:**
- You already use es-toolkit 🤩
- The dependency you just can't live without (recharts for me!) still uses Lodash 😒
- You have both es-toolkit _and_ Lodash in your bundle 😭
**So…
-
## CVE-2018-3721 - Medium Severity Vulnerability
Vulnerable Libraries - lodash-4.12.0.tgz, lodash-3.10.1.tgz, lodash-1.0.2.tgz
lodash-4.12.0.tgz
Lodash modular utilities.
Library home page: https:…
-
### What would you like?
Remove lodash as a dependency.
### Why is this needed?
Those guys don't take security seriously. See for example CVE-2021-41720
- They dispute the issue (questionable,…
-
A little on lodash library.
-
You've pushed the wrong files to this repository.
Please resubmit with the actual Lodash capstone project.
ghost updated
5 years ago
-
## CVE-2018-3721 - Medium Severity Vulnerability
Vulnerable Libraries - lodash.merge-3.3.2.tgz, lodash-4.17.4.tgz
lodash.merge-3.3.2.tgz
The modern build of lodash’s `_.merge` as a module.
Library…
-
## CVE-2018-3721 - Medium Severity Vulnerability
Vulnerable Libraries - lodash-1.0.2.tgz, lodash.merge-3.3.2.tgz, lodash-3.10.1.tgz, lodash-2.4.2.tgz
lodash-1.0.2.tgz
A utility library delivering …
-
## CVE-2019-10744 - Critical Severity Vulnerability
Vulnerable Libraries - lodash.merge-3.3.2.tgz, lodash-4.17.4.tgz
lodash.merge-3.3.2.tgz
The modern build of lodash’s `_.merge` as a module.
Libr…
-
lodash
OZZlE updated
2 months ago
-
This appears to be the only reason that `lodash` is included in our bundles. It would be great to migrate to the more tree-shakeable `lodash-es`.