[Snyk] Fix for 1 vulnerable dependencies

[snyk-bot]

Description

This PR fixes one or more vulnerable packages in the yarn dependencies of this project. See the Snyk test report for more details.

Snyk Project: AOSC-Dev/website-site-ng:package.json

Snyk Organization: liushuyu

Lockfile

If you are using package-lock.json or yarn.lock, please re-lock your dependencies and push an updated lockfile before merging this PR.

Changes included in this PR

• A Snyk policy (.snyk) file, with updated settings.

Vulnerabilities that will be fixed

With a Snyk patch:

• SNYK-JS-LODASH-450202

You can read more about Snyk's upgrade and patch logic in Snyk's documentation.

Check the changes in this PR to ensure they won't cause issues with your project.

Stay secure, The Snyk team

Note: You are seeing this because you or someone else with access to this repository has authorised Snyk to open Fix PRs. To review the settings for this Snyk project please go to the project settings page.

[coveralls]

Coverage remained the same at 92.899% when pulling 591c9d22d1615b4aeb5de0233e2ede6e7239a402 on snyk-fix-612f70da41fd05c15b5a6244afe2ce46 into db055933d46d073d9d6cfad8387c9b93ec4afe56 on master.